Job Description

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who we are supporting

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

• Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
• Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
• Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
• Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
• Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role ID – C004904

Role Duties and Responsibilities

The purpose of this role is to support the establishment, maintenance, and enforcement of a coherent cyber security architecture. The role will be located in The Hague, Netherlands, and travel to other sites in Belgium will be required. The output from the work will sit on the appropriate network consummate to the level of information referenced.

Scope of Work

The cyber enterprise architect fulfils the role of Cyber Segment architecture and Engineer and works closely with the NCSC Solution and Roadmaps Section head and NCSC cyber solution architects to support the development and maintenance of business and architecture objectives, and corresponding approaches to cyber security processes, applications, and technology that when applied leads to a coherent and secure implementation. In addition, the cyber enterprise architect will support projects and project/programme managers in the implementation of the architecture through a portfolio of projects. This includes production of an array of architectural models and views, establishing and communicating the approach taken and its role in the overall cyber security landscape. General Requirements Synchronization of cyber approach with the NCI Agency's existing and future business goals. Optimisation of cyber security approaches via a perception of growing operational and business requirements and technological functionalities. Promotion of shared applications and infrastructure to maximise efficiencies and enhance the capability. Work closely with solutions architects to provide an opinion based enterprise solution that is flexible, scalable and capable of synchronising with continuously changing business requirements. Administration of risks related to cyber

security by means of proper security policies and standards.

Direct/indirect participation in developing policies, guidelines and standards that steer the development, selection, application and utilization of cyber security capabilities within NCIA. Promote and support the expertise of the team. Develop team know-how and abilities in particular areas of expertise. Responsibility for the tactical direction of COO NCSC in conjunction with solution architects, peers, and SME's.

The Cyber Enterprise Architect will play a key role undertaking the NCSC business intake process. When it comes to new intake (from cyber and non cyber projects) and assessment of 1) what needs to be done from an enterprise perspective and coherency, 2) alignment to NCSC services in order to identify impacts andrequirements, 3) support to NCSC solutions architecture development in key areas such as cloud, PKI, post quantum cryptography, cyber resilience by design, next generation cyber security monitoring, artificial intelligence for Cyber security capabilities, and several other cyber related capability development, converging both enterprise architectural needs and service transition aspects.

The cyber enterprise architect will need to keep a holistic view of all activities in the Portfolio, assist the operational, scientific, and project teams to ensure the articulation and delivery of requirements are met and to provide the appropriate level of Assurance. The cyber enterprise architect shall issue related documentation as required in support of NCI Agency's service delivery to NATO.

Essential Skills, Experience and Certifications

• Preventive security measures such as endpoint protection, boundary protection, and identity and access management. Defensive security measures such as monitoring, correlation, detection, and response to security incidents.
• Assessment of cyber security including risk management and vulnerability assessments. Sustainment of cyber security through continual improvement, governance processes, and design and implementation of cyber security systems.
• Information collection, analysis, and reporting to ensure situational awareness.
• The cyber enterprise architect shall have knowledge and experience (at least 3 years) in developing and applying ICT architectures in support of the business objectives in a service based context. This shall include knowledge of one or more architectural frameworks, preferably TOGAF, the Archimate meta model and the NATO Architecture Framework. The cyber enterprise architect shall hold relevant certifications in cyber security, such as Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) or GIAC Security.
• The cyber enterprise architect must have excellent communications skills, spoken and written, being able to clearly explain complicated technical matters to non-technical audiences.
• Further, the cyber security architect must have good organizational, project, and programme management skills, as good leadership and interpersonal skills.
• Up-to-date knowledge is required in the following cyber security technology areas:
  • Cryptographic technologies including Public Key Infrastructure and key management.
  • Identity and access management.
  • Network monitoring and detection technologies.
  • Segmentation: Boundary protection (firewalls), on-premise and cloud-based equivalents.
  • The design of the above cyber security capabilities on cloud infrastructure.

Working Location

• The Hague, Netherlands

Working Policy

• Onsite

Travel

• Some travel to other NATO sites may be required

Security Clearance

• Valid National or NATO Secret personal security clearance