Description
CYBER SECURITY ACCREDITATION SUPPORT - The Hague
The NCI Agency has been established with a view to meeting to the best advantage the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange.
In order to execute this work, the NCI Agency is seeking additional manpower through contracted resources to support the work undertaken by the Cyber Security (CS) Service Line (SL) in the area of security accreditation support.
This is a level of effort contract where the contracted person shall deliver anything from 30 to 100 person days of work as yet to be decided by the NCI Agency
The work will be executed on-site at the facilities in The Hague under the direction of NCI Agency staff. Progress review meetings will be held regularly, at least once per week, with the NCI Agency task leads.
The aim is for the work to start on 1 July 2016 and the initial duration will be decided at the time.
There could be occasional travel to NATO HQ in Brussels, Belgium and SHAPE, Mons, Belgium.
SECURITY AND NON-DISCLOSURE AGREEMENT
You must be in possession of a security clearance for NATO Secret or above. The signature of a Non-Disclosure Agreement between the contractors contributing to this task and NCIA will be required prior to execution.
REQUIREMENTS
You must be able to perform effectively and efficiently with minimal supervision on any of the following tasks:
Provide advice and guidance on risk assessment and management matters
Conduct specific security risk assessment; in particular, identify the level of threats and vulnerabilities for all assets comprising CIS to be supported, derive residual risks and provide risk management recommendations;
Identify, plan, request and manage development of documents required for accreditation of CIS to be supported (CIS Description, Security Accreditation Plan, Security Risk Assessment Report, Security Requirement Statements, Security Operating Procedures, Security Test and Verification Plan);
Build and sustain effective communications with different stakeholders specifically Security Accreditation Boards, NATO Security Accreditation Authorities and NCI Agency organization units supporting accreditation process;
Provide subject matter related briefings and presentations;
Represent Project Manager during Security Accreditation Boards' meetings
You must have extensive knowledge and experience in the following areas:
Working experience in Security Accreditation domain related to implementation of major Communication and Information Systems (CIS) acquisition and/or development projects for a large organisation;
Working knowledge and experience with multiple security risk assessment methodologies;
Working experience with PILAR (software tool for security risk assessment);