Deadline Date:
Tuesday 4 March 2025
Requirement Title: Support to NATO Cyber Security Centre (NCSC) Crypto Engineering
Location:
Mons, Wallonia, Belgium
Full time on-site:
Yes
Not to Exceed:
90,405 EUR
Required Start Date:
14 April 2025
Required Security Clearance:
NATO Secret
Background:
The NCI Agency has been established with a view to meeting the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange.
The NATO Communications and Information Agency (NCI Agency) is dedicated to acquiring, deploying, and defending communication systems for NATO’s political decision-makers and Commands. It operates on the frontlines against cyber-attacks, collaborating closely with governments and industry to prevent future debilitating attacks. The NCI Agency plays a crucial role in maintaining NATO’s technological edge and ensuring the collective defence and crisis management capabilities of the Alliance.
Introduction:
The NATO Cyber Security Centre (NCSC) is a team of over 200 members working to monitor and protect NATO networks. In the NCSC’s role to deliver robust security services to the NATO Enterprise and NATO Allied Operations and Missions (AOM), the centre executes a portfolio of programmes and projects around 219 MEUR euros per year, in order to uplift and enhance critical cyber security services.
The NCI Agency has been established with a view to meeting the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange.
Purpose:
The Cyber Security Enabling Branch performs comprehensive Support to Cyber Security, continually accessible advice and action to support the customer in the maintenance of efficient and compliant cyber security services.
This Statement of Work (SOW) outlines the services to be provided by the Supplier to NCI Agency Cyber Security Enabling Services Branch.
The desired vision is that the crypto projects will be delivered in a professional and timely manner for the user to be sure their networks / circuits are secure and installed in accordance with NATO directives and regulations.
Objectives:
The main objective of this Statement of Work (SOW) is to secure advisory services that provide expert guidance and support in delivering and installing NATO Cryptographic equipment, providing training and keep track of the inventory. Moreover, it specifies the required skillset and experience.
Scope of Work:
The aim of this SOW is to support NATO Cyber Security Centre (NCSC) with technical expertise specifically related
Crypto Engineering
with a deliverable based (completion-type) contract to be executed in 2025.
Problem statement
The Cyber Security ENABLE Branch, in charge of managing a large scale of projects in its daily operations, is facing a heavy workload and a lack of personnel. This situation is impacting all the Cyber Security services and numerous other projects.
Service details and Deliverables
The service provider will be required to deliver a daily activities schedule,
orchestrate NCIA processes as well as represent NCSC business unit on an Enterprise Level where required.
Under the direction / guidance of the NCSC Point of Contact, a contractor will be the part of the NCSC Team supporting the following activities:
Support Package to CP 122 project Enhance and Sustain the IP/Packet Encryption Capability
The Service Provider will:
- project planning, coordination, testing and resource management;
- the lead on site survey, integration/installation and inspection of cryptographic systems for secure end to end services;
- focal point for subject matter expertise helpdesk in support of cryptographic issues;
- build and test prototype IA designs to support new/modified requirements such as deployable secure CIS;
- Advice and guidance to NCI Agency Project and System Managers during the whole life cycle of NATO CIS as well as providing subject matter related briefings and presentations.
The Service Provider:
- will be responsible for the day to day installation and commissioning of all Infrastructure-funded, and other, crypto equipment NATO wide, in support of NATO HQs, NATO Nations, NATO Operations and NATO Exercises.
The contractor shall participate in daily status update meetings, activity planning and other meetings as instructed, physically in the office, or via digital means using conference call capabilities, according to the manager’s / team leader’s instructions.
Due to the agile approach of this project, there is a need to define a set of specific arrangements between the NCI Agency and the contractor
Required Profile:
The consultancy support for this work requires following skills, knowledge and experience as listed below:
- Bachelor's degree in Computer Science, Information Technology, or related field Or equivalent experience.
- Strong understanding of security best practices
- Good engineering skills
- 5+ years of experience in IT security in large organisations, with a focus on the following areas:
- Knowledge of cryptographic installation techniques and standards; ✔ Experience with Cryptographic Systems, design, management and implementation of modern Cryptographic systems and applications; ✔ Very good knowledge of modern communication and Internet Protocol (IP) based networking technologies and systems including security aspects; ✔ Experienced and excellent knowledge of COMSEC principles and practices, including physical security standards relating to COMSEC;
- Extensive experience in the analysis of risk and in the implementation and integration of INFOSEC protective measures;
- Good experience with latest Virtualization Technologies;
- Extensive experience in operating systems backup and restore; ✔ Knowledge of CRYPTO accounting and distribution;
- Working knowledge of the operation of communications systems and troubleshooting techniques;
- Experience with implementation projects within NATO and/or National military organizations is desirable.
- Ability to work independently and in teams to achieve the desired goals, including the ability to monitor and support a team of industry;
- Good understanding of the constraints related to IT systems on NATO networks is desirable;
- Strong stakeholder management skills – can demonstrate evidence of developing and maintaining strong and effective relationships with internal stakeholders at all levels in an organization;
- Flexible and adaptable; able to work in ambiguous situations;
- Excellent coaching skills;
- Excellent communication skills, both written and verbal;
- The contracted individual must be able to perform effectively and efficiently with minimal supervision.