Staff Assistant (CIS Security) at NATO

Norfolk, New York, United States -

Full Time

Start Date

Immediate

Expiry Date

25 Jan, 26

Salary

0.0

Posted On

27 Oct, 25

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

CIS Security, Information Security, Cybersecurity, Network Protection, Microsoft Operating Systems, Linux Operating Systems, Antimalware Protection, Security Designs, CIS Logging, Monitoring, Event Management, Communication Skills, Teamwork, Security Policy Development, Risk Management, Security Training, Security Inspections

Industry

IT Services and IT Consulting

Description

Post Context ACT contributes to preserving the peace, security and territorial integrity of Alliance member states by leading, at Strategic Command level, Warfare Development required to enhance NATO’s posture, military structures, forces, capabilities and doctrines. The Resources and Management (RM) Directorate acts on behalf of SACT on all internal management and resource-related issues. It monitors the coherency of ACT plans to ensure that ACT remains an effective and efficient organization and improves continuously. The ACT Office of Security has staff responsibility to execute, provide and coordinate security services to the headquarters, its subordinate commands, and to the NATO community at large, operating at all levels of command to ensure the security of its personnel, assets, and resources. The Principal Assistant (CIS Security) within the ACT Office of Security is responsible for the security testing, evaluation, and verification of HQ SACT CIS implementations. The post-holder supports the security risk management processes mandatory within NATO and supports security governance of CIS operations. Principal Duties: Advising and supporting on CIS Security requirements all ACT driven CIS projects lead by CAPDEV Cyber, CAPDEV CIS, ACT Innovation-Hub or any other ACT lead CIS project. Advising and Supporting CIS Security during the deployment and implementation of all CIS within HQ ACT to include Personal Security, Physical Security and Emission Security and Industrial Security in relation to CIS Security. Advising and supporting on CIS Security requirements all ACT driven CIS projects lead by CAPDEV Cyber, CAPDEV CIS, ACT Innovation-Hub or any other ACT lead CIS project. Advising and Supporting the HQ ACT Secondary Security Officer, and the CIS Operating Authority on all CIS Security matters relating to HQ SACT. Support HQ SACT Primary and secondary CIS Security Officers at the different boards and meeting organize by NCIA CSU Norfolk to include the Change Advisory Board, the Change Configuration Board, any project sync boards. Supporting ACT Security Policy Staff Officer in the development of the local HQ SACT CIS Security Directive and guidelines. Managing, operating and monitoring the HQ SACT operated CIS and ensure their adequate security posture. Assisting in the monitoring, asset management, configuration, patching and vulnerability management of the HQ SACT managed CIS. Tracking all confirmed security violations and advising on possible subsequent mitigation and remediation measures. Analyzing historical trends in security violations and proposing corrective measures. Supporting and managing HQ SACT Staff annual security training requirements. Supporting the Security awareness programme for HQ SACT for all cybersecurity matters. Supporting CIS Security support for all HQ SACT Exercises, Experimentation and wargaming taking place within HQ SACT. Supporting and Conducting local Security Inspections of HQSACT CIS posture and cyber hygiene. Supporting and participating in investigations of CIS security breaches within HQ SACT Area of Responsibility. Participating in investigations of other CIS security breaches as required. Undertaking any other tasking as directed by line management. Essential Qualifications / Experience: Higher Secondary education and intermediate vocational training in information security, computer science or related discipline which might lead to a formal qualification with 2 years experience, or Secondary education and completed advanced vocational training in that discipline leading to a professional qualification or professional accreditation with 4 years post related experience. At least three years’ experience in a CIS environment associated with the analysis, design, development or installation of CIS, two years of which were associated with the administration of Information systems in a secure environment. Good knowledge of CIS operations and the management Local Area Networks including Network protection (Routers, Firewalls, IDS/IPS), Microsoft and Linux-based operating systems, Antimalware protection Services and Security designs and configurations. Excellent knowledge in CIS logging, monitoring and event management. Previous experience of providing CIS Support within a large organization. Strong communication skills. Language: English – SLP 3322 - (Listening, Speaking, Reading and Writing) Desirable Qualifications / Experience: Knowledge in the application of security to CIS to medium and large CIS. Experience as a system administrator and cybersecurity administrator. Experience in the management of Data Loss Prevention tools. Practical knowledge of military organization missions, functions, and operations. ITIL Practitioner provided by Industry. Methodology for Information Systems Risk Analysis and Management (MARGERIT) – provided by CNI.ES. PILAR Risk Analysis and Management Tool - provided by ES-CYBER.com French - 2211-(Listening, Speaking, Reading and Writing) At least one active following certification: System Security Certified Practitioner (SSCP). Certified Information Security Manager (CISM). GIAC Security Essentials (GSEC). CompTIA Security +. Attributes/Competencies: Personal Attributes: The post-holder must demonstrate excellent verbal and written communication skills, interpersonal tact and the ability to work in a fast-paced, changing international environment. The candidate must be comfortable dealing directly with individuals holding all ranks on a daily basis and be capable of building rapport with customers and other stakeholders. Strong teamwork is essential. Must be able to work independently. Must be flexible and react quickly and without concern to last minute changes. Must display initiative in planning ahead and ability to find solutions to problems that arise in the daily conduct of responsibilities. Managerial Responsibilities: This post has management oversight of 1 x B-4/G10. The post-holder will be responsible for providing tasking and prioritization of workload for their subordinate. Strong teamwork is essential. Professional Contacts: The post holder must be able to liaise effectively, both internally and externally, with military and civilian personnel at all levels. Interactions may require explanation, discussion, recommendations and approval of action. Contacts include staffs across ACT including National Liaison Representatives and Host Nation, and on occasion with NATO HQ, ACO and other external stakeholders. Contribution To Objectives: The incumbent will be responsible for providing essential management, monitoring, configuration and implementation of all hardware, software and firmware enhancements across HQ SACT. The post-holder will also perform periodic security reviews of HQ SACT CIS to ensure compliance with NATO and HQ SACT security policies and provide technical support to ensure HQ SACT’s compliance with security rules and regulations. The outputs of this role directly support HQ SACT in the delivery of his strategic mission. Security Clearance The successful applicant will be required to apply for and receive a NATO SECRET Security Clearance prior to final confirmation of contract and commencement of employment. Contract Serving NATO International Civilian staff will be offered a contract in accordance with the NATO Civilian Personnel Regulations. Newly recruited staff will be offered a three year definite duration contract. Notes for Candidates The HQ SACT web site gives full details on the eligibility criteria and application processes to be adopted by all candidates. However, candidates should particularly note: Please answer each of the pre-screening questions completely in English. Expressions such as: “please see attached CV, please see annex, please see enclosed document, etc” are not acceptable; this is a cause of immediate rejection of the application. Particular attention should be given to Education and Experience section of your application form, which should be populated with details of your career to date and educational achievements and certifications as they relate to your application. The candidature of NATO redundant staff at grade G10 will be considered with priority. NATO will not accept any phase of the recruitment and selection prepared, in whole or in part, by means of generative artificial-intelligence (AI) tools, including and without limitation to chatbots, such as Chat Generative Pre-trained Transformer (Chat GPT), or other language generating tools. NATO reserves the right to screen applications to identify the use of such tools. All applications prepared, in whole or in part, by means of such generative or creative AI applications may be rejected without further consideration at NATO’s sole discretion, and NATO reserves the right to take further steps in such cases as appropriate. NATO is committed to diversity and inclusion, and strives to provide equal access to employment, advancement and retention, independent of gender, age, nationality, ethnic origin, religion or belief, cultural background, sexual orientation, and disability. NATO welcomes applications of nationals from all member Nations, and strongly encourages women to apply. Please note that this role is pending formal establishment. The selected candidate will be informed of the outcome of their interview but will not receive an offer until the position is officially validated. This vacancy will close on 10 November 2025 @ 17:59hrs (EDT)/11:59hrs (CEST).

Responsibilities

The post-holder is responsible for the security testing, evaluation, and verification of HQ SACT CIS implementations. They support security risk management processes and governance of CIS operations within NATO.