Engineer (CIS Security)

Who we are

For more than 70 years NATOs mission has been to preserve peace and security in the Alliance for nearly one billion citizens. The NATO Communications and Information Agency and its predecessors have worked tirelessly to provide the means that enable the connectedness and togetherness that keep our Alliance strong.

Our technology and cyber experts allow NATO to conduct critical operations protect NATOs airspace make data-driven decisions defend against cyber-attacks secure NATO networks and maintain superiority in space. This is possible because of our greatest force: our people.

When you join the NCIA you will be part of an organisation where you can contribute authentically to NATOs mission and help us keep our technological edge.

About the job

Based in The Hague you will join the Agency as we continue to strengthen and secure NATOs digital services and mission-critical information systems.

We are looking for a driven and enthusiastic CIS Security Specialist who will support the protection of NATOs web applications systems and services through hands-on security implementation monitoring risk management and technical assurance.

You will take on the following roles and responsibilities:

• Configure deploy and administer SaaS-based security solutions for websites applications and APIs.

• Implement tune and maintain Web Application Firewall rules signatures and security configurations to mitigate threats such as SQLi XSS and other web vulnerabilities.

• Monitor CDN DDoS protection bot management and website performance settings to ensure secure and continuous availability.

• Conduct vulnerability assessments business impact analysis and security risk activities for medium-complexity information systems.

• Support incident investigation security breach analysis first-line incident management and corrective action implementation.

• Manage technical activities related to public certificates website registries site revalidation and technical decommissioning.

• Provide technical guidance to website owners and translate functional requirements into secure configurations aligned with CIS benchmarks NATO directives and customer needs.

For a full list of duties please review the job description on the NCIA career site.

About you

The valuable knowledge and experience that you bring to this role are:

• A minimum requirement of a Bachelors degree at a nationally recognised/certified University in a related discipline and 2 years role-related experience. Or exceptionally the lack of a university degree may be compensated by the demonstration of a candidates particular abilities or experience that is/are of interest to NCI Agency that is at least 6 years extensive and progressive expertise in duties related to the function of the role.

• Comprehensive knowledge of computer and communication security principles networking modern operating systems applications and common vulnerabilities.

• Extensive experience implementing and integrating CIS security protective measures in enterprise environments.

• Knowledge and experience of network and security technologies including firewall and IDS/IPS configurations SIEM systems log correlation and alert triaging.

• Experience conducting vulnerability assessments supporting incident response activities and applying containment remediation and basic forensic approaches.

• Strong knowledge of CIS Critical Security Controls threat hunting insider threat capabilities cloud security practices and governance risk and compliance frameworks.

• Experience writing or enforcing security policies and procedures supporting compliance audits and reporting security events to improve CIS control implementation.

• Fluency in English both written and spoken is required.

Desirable experience includes hands-on work with SASE WAF CDN bot management DDoS protection PKI cloud networking OWASP standards patching cycles CVSS V2/V3 and security controls within public cloud ecosystems such as Azure AWS or GCP. Certifications such as ITIL v4 Foundation or specialised training in application security SASE WAF or CDN technologies would be an asset.

What we offer:

• Genuinely meaningful work as part of the most successful alliance in history;

• 5 year contract with competitive tax-free salary and household and childrens allowances;

• Privileges for expatriate staff including expatriation and education allowances (where appropriate) and additional home leave;

• Excellent private health insurance scheme;

• Generous annual leave of 30 days plus official holidays;

• NATO Pension Scheme;

• Development programs such as professional training wellbeing and more

To learn more about NCIA and our work please visit our website.

The NCIA prides itself on being an equal opportunity employer. We are committed to fostering an inclusive environment of mutual respect and value uniqueness and differences in gender gender identity race ethnic or cultural origin age religion sexual orientation and physical or neurocognitive ability.

Additional details on the conditions of application can be found via the NCIA career site.