Staff Assistant (Security Accreditation)

NATO

About The Position

ACT contributes to preserving the peace, security and territorial integrity of Alliance member states by leading, at Strategic Command level, Warfare Development required to enhance NATO’s posture, military structures, forces, capabilities and doctrines. The Resources and Management (RM) Directorate acts on behalf of SACT on all internal management and resource-related issues. It monitors the coherency of ACT plans to ensure that ACT remains an effective and efficient organization and improves continuously. The ACT Office of Security has staff responsibility to execute, provide and coordinate security services to the headquarters, its subordinate commands, and to the NATO community at large, operating at all levels of command to ensure the security of its personnel, assets, and resources. The incumbent serves as Staff Assistant (Security Accreditation) with the ACT Office of Security, supporting the coordinating authority within HQ SACT and all ACT subordinate Commands for all matters relating to CIS Security and Security Accreditation. The post-holder contributes to the development of NATO and ACT policy, directives and guidance with respect to all aspects of CIS Security.

Requirements

Higher Secondary education and completed higher vocational training in information security, computer science, information technology, information systems engineering, business administration, quality engineering or related discipline leading to a formal technical or professional certification with 3 years function related experience, or Secondary education and completed advanced vocational training in that discipline leading to a professional qualification or professional accreditation with 5 years post related experience.
4 years’ accrued experience in the design, development and implementation of complex CIS and Networks.
4 years’ experience as an Information Security officer in relation to the exploitation of sensitive or classified CIS.
Experience providing security accreditation and/or regulatory compliance within a large organization.
Demonstrated experience in the application of structured methodologies and security principles associated with CIS Security Risk Management.
Experience in writing and developing policy-level documents.
Strong oral and written communication skills.
English - SLP 3322 - (Listening, Speaking, Reading and Writing)

Nice To Haves

Knowledge of policies, procedures and organizations related to NATO CIS.
Knowledge of CIS project management or software engineering methods within NATO.
Knowledge in the design, implementation, management and audit of large enterprise CIS.
Knowledge the Security Risk Management principles and processing to support CIS risk assessment.
At least one active following certification: Certified Information Systems Security Professional (CISSP). Certified Information System Auditor (CISA). Certified Information Security Manager (CISM). GIAC Security Essentials (GSEC). CompTIA Security +. ITIL Practitioner provided by Industry. Methodology for Information Systems Risk Analysis and Management (MARGERIT) – provided by CNI.ES. PILAR Risk Analysis and Management Tool - provided by ES-CYBER.com. Project Management Professional (PMP) – PMI.
French - SLP 2211 - (Listening, Speaking, Reading and Writing)

Responsibilities

Advising and supporting the organization during the implementation of all CIS Security programs within ACT and all subordinate commands.
Support ACT Security Accreditation Authority representative at the NATO Security Accreditation Board (NSAB) in both Plenary and Working Level Sessions. Reviewing and commenting Security Accreditation Packages during the review periods.
Supporting AC/35 related workshops, working groups in relation to the Security Committee in CIS Format.
Advising, Supporting the work of CIS Security monitoring and CIS Security Accreditation Staff for HQ SACT.
Advising the HQ SACT Security Officer, and CIS Operating Authority on all CIS Security matters relating to HQ SACT.
Advising and Supporting the ACT Security Accreditation Authority at appropriate NATO CIS Security and Security accreditation fora. This includes for example the NATO CIS Security Accreditation Board (NSAB) and its different workshops.
Supporting the representative of the ACT Security Accreditation Authority to the Board of CISOAs, the Cyber Risk Management Group (CRMG), inform and advice those communities on all ACT CIS risks that may impact ACT CIS risk Posture.
Advising and Supporting the ACT Security Accreditation Authority during all the enterprise ad-hoc and cyber incident response activities to include but not limited to Cyber Incident Task Forces (CITF), Incident Coordination and Decision-Making Groups (ICDMG), Working groups, workshops etc.
Supporting ACT Security Policy Staff Officer in the development of ACT CIS Security Directives and guidelines.
Supporting the Security awareness programme for HQ SACT and ACT subordinate commands for all cybersecurity matters.
Managing CIS Security support for Joint Exercises and Experimentation and Research and Development activities.
Advising during the development and update of the ACT CIS security accreditation plans and strategies.
Supporting and participating in investigations of CIS security breaches within ACT area of Responsibility.
Participating in investigations of other CIS security breaches as required.
Undertaking any other tasking as directed by line management.