Senior Cyber Security Assessors (Vulnerability Assessment)

Who we are:

For more than 70 years NATOs mission has been to preserve peace and security in the Alliance for nearly one billion citizens. The NATO Communications and Information Agency (NCIA) and its predecessors have worked tirelessly in providing the means that enable the connectedness and togetherness that keep our Alliance strong. We are the NCIA a team of 3000 civilian and military staff in 29 locations throughout Europe North America and Asia.

Our technology and cyber experts allow NATO to conduct critical operations protect NATOs airspace make data-driven decisions defend against cyber-attacks secure NATO networks and maintain superiority in space. This is all possible because of our greatest force our order to keep this edge we aim to hire train and retain the very best staff.

Our staff members represent both the diversity and unity of our Alliance. When you join the NCIA you will be part of an organization where you can contribute authentically to the mission and purpose of NATO and help us keep our technological edge.

About the job:

Based in Mons Belgium you will join the Agency as we embark on a journey to transform our IT services to support NATOs Digital Endeavour. You will join NATO Cyber Security Centre (NCSC) which is responsible for planning and executing all lifecycle management activities for cyber executing this responsibility NCSC provides specialist cyber security-related services covering the spectrum of scientific technical acquisition operations maintenance and sustainment support throughout the lifecycle of NATO Communications and Information Systems (CIS).

We are looking for driven and enthusiastic Senior Cyber Security Assessors (Vulnerability Assessment) who will take on the following roles and responsibilities:

• Provide guidance on the application and operation of elementary physical procedural and technical security controls;

• Perform technical assessments in support of accreditation of complex or higher-risk information systems;

• Design and implement customized tools/scripts for vulnerability identification;

• Collate and analyse catalogues of information and technology assets for vulnerability assessment;

• Perform vulnerability assessments for NATO on-premise hybrid or cloud CIS (communication and information systems) and also weapons platforms and ICS/SCADA systems.

For a full list of duties please review the job description on the NCIA career site.

About you:

The valuable knowledge and experience that you bring to this role are:

• Bachelors degree at a nationally recognised/certified University in a related discipline and 3 years of experience. Or exceptionally the lack of a university degree may be compensated by the demonstration of a candidates particular abilities or experience that is/are of interest to NCIA that is at least 10 years extensive and progressive expertise in duties related to the function of the post;

• At least 3 years practical and recent experience working in the field of cyber security assessments;

• Comprehensive understanding of the principles of computer and communications security networking and the vulnerabilities of modern operating systems and applications acquired through a blend of academic or professional training coupled with practical professional experience;

• Demonstrated expertise in applying and assessing the security hardening of Windows and Linux operating systems including a thorough understanding of system policies patch management privilege management and mitigation of common vulnerabilities;

• Extensive knowledge of Active Directory security configuration and associated vulnerabilities;

• Comprehensive understanding of cloud-native security frameworks across AWS Azure and GCP with the ability to assess and report on specific vulnerabilities;

• Comprehensive knowledge of the deployment configuration and security management of border protection devices including firewalls intrusion detection and prevention systems (IDS/IPS) and secure gateways;

• Proficiency in the automation of data processing workflows through the application of scripting languages such as PowerShell Python and Bash enabling efficiency accuracy and scalability in security operations;

• Proven capacity to present complex security findings technical reports and testing outcomes at the executive level translating technical detail into actionable strategic insight for senior decisionmakers;

• Established expertise in authoring precise and wellstructured technical documentation including executive summaries detailed findings and remediation plans tailored to audiences ranging from technical specialists to senior leadership;

• Proven leadership experience in directing and coordinating technical Vulnerability Assessment teams within large organizations preferably in an international or multinational context ensuring operational excellence and fostering collaborative performance;

• Fluency in English both written and spoken.

What we offer:

• Genuinely meaningful work as part of the most successful alliance in history;

• 5 year contract with competitive tax-free salary and household and childrens allowances;

• Privileges for expatriate staff including expatriation and education allowances (where appropriate) and additional home leave;

• Excellent private health insurance scheme;

• Generous annual leave of 30 days plus official holidays;

• NATO Pension Scheme;

• Development programs such as professional training wellbeing and more.

To learn more about NCIA and our work please visit our website.

The NCIA prides itself on being an equal opportunity employer. We are committed to fostering an inclusive environment of mutual respect and value uniqueness and differences in gender gender identity race ethnic or cultural origin age religion sexual orientation and physical or neurocognitive ability.

Additional details on the conditions of application can be found via the NCIA career site.