GRC Security Specialist for NATO with security clearance

Would you like to join the leading international intergovernmental organization

Cyber Digital Transformation Division (CDT) drives NATOs Digital Transformation a key objective is to strengthen the ability of Allies and the NATO Enterprise to deter defend against and counter the full spectrum of cyber and cyber-enabled threats at the speed of relevance comprehensively across the political military and technical particular strengthen mechanisms and tools to enhance readiness and resilience against cyber threats across the Alliance focusing in particular on Mission Vital Infrastructure (MVI).

The Cyber Security Standard Engineering Support Services require a professional who can provide expert support in the analysis coordination development and maintenance of NATO Cyber Security and CIS standards. The contractor will contribute to the design and evolution of NATO standardization artefacts within the cyber security domain working closely with engineers national subject matter experts standards custodians and relevant NATO stakeholders.

Responsibilities:

• Requirements Analysis and Stakeholder Engagement

• Development and Maintenance of Cyber Security Standards

• Development of Cyber Security Conformance Criteria and Audit Objectives

• Development of Cyber Security Reference Architectures

• Interoperability and Standards Harmonization

• Reporting Briefings and Technical Communication

• Support to Unforeseen and Ad Hoc Requirements.

Essential Qualifications & Experience:

• A university degree in a relevant engineering or technical field such as computer science systems science or an equivalent technical qualification.

• Comprehensive knowledge of the principles of computer and communications security networking and the vulnerabilities of modern operating systems and applications.

• At least five (5) years of demonstrated experience working with national or international CIS and cyber security standards including their application and auditing at both governance and operational levels. Demonstrated experience working with NIST and ISO standards is essential.

• Demonstrated experience in securing cloud-based environments.

• Demonstrated experience in defining and implementing cyber security architectures including Zero Trust principles.

• Good knowledge of securing AI-enabled systems and datadriven capabilities.

• Knowledge of high-level programming languages. Experience with languages such as Python is desirable.

• Strong communication and presentation skills including the ability to convey complex cyber security concepts to both technical and non-technical audiences.

• Strong project management skills.

• The ability to analyse complex cyber security specifications and translate them into clear actionable requirements or standards artefacts.

• Strong security-focused and analytical mindset with attention to detail and problem-solving capability.

• Knowledge of NATO Security Policy and its supporting Directives is desirable.

• Knowledge of the NATO Digital Policy Committee (DPC) and its substructure is desirable.

• Knowledge of NATO standardization artefacts including STANAGs Allied Communications Publications (AComP) and Standards Related Documents (SRD) is desirable.

• Knowledge of NATO CIS Security Accreditation processes or equivalent national processes is desirable.

• Knowledge of additional cyber security standards and frameworks such as PCI-DSS FedRAMP or C5 is desirable.

• Recognised professional certifications in cyber security and/or project management are desirable.

If youve read the description and feel this role is a great match wed love to hear from you! Click Apply for this job to be directed to a brief questionnaire. It should only take a few moments to complete and well be in touch promptly if your experience aligns with our needs.