Overview
The Senior Engineer (Cyberspace Security) role supports Cyberspace Security and Risk Management activities, including providing strategic advice and oversight for cyberspace functional area activities.
Key Responsibilities
- Reviews, analyses and/or initiates reports based on Cyber Situational Awareness data.
- Advises on strategic Cyberspace security risk management.
- Prepares recommendations for utilization of operational/training Cyber Defence operations resources.
- Preparation and dissemination of cyber operations doctrine, strategic plans, orders, and training directives.
- Development of standards, including doctrine, tactics, techniques and procedures, across the Cyberspace domain.
- Leads, initiates and recommends Strategy for Cryptographic Modernisation.
- Identifies cryptographic options and requirements.
- Provides ACO interface for Cyberspace Security to NATO Bodies.
- ACO-lead in identifying operational requirements for ACO CIS Security including cryptography.
- Provides guidance to CyOC operational planners regarding strategic Cyber security requirements and limitations.
- Plans for the continuing maturity of the Cyberspace Security and cryptographic capabilities of NATO.
- Ensures coherence of operational requirements between Cyberspace Security related projects and all other Cyberspace related projects.
- Utilizes information and requirements gathered from Policy documents and technical assessments.
- Supports ACO strategic initiatives as tasked.
- Co-Chairs the Alliance Crypto Task Force (ACTF).
- Contributor to CaP4 (IA & CD) and subordinate CaTs.
- Contributor to the Information Security Systems Sub-Committee.
Required Experience
- Minimum 4 years of experience in CIS risk management and cybersecurity in defence, government, or large critical infrastructures.
- Strong knowledge of cybersecurity governance frameworks (risk management, accreditation, security controls, compliance).
- Minimum 4 years of experience of military CIS systems (satcom, tactical radios, data links, radar) and experience supporting system accreditation, security risk assessments, and authority-to-operate processes.
- Good knowledge of NATO CIS security policies and governance within NATO environments.
- Knowledge on cloud security, cross-domain solutions, and information assurance in classified networks (desirable).
- Experience supporting operations, exercises, or mission networks from a cybersecurity perspective (desirable).
- Experience in cyber incident management, vulnerability management, or security monitoring in operational environments (desirable).
- Broad military background/staff experience at high level HQ including previous experience within NATO structures, commands, or agencies (desirable).
Qualifications
- University Degree in engineering, electronics or Communications Electronics, and 4 years function related experience, or Higher Secondary education and completed advanced vocational training leading to a professional qualification or professional accreditation with 7 years post related experience.
- Professional cybersecurity certifications such as CISSP, CISM, CISA, or certified in Risk and Information Systems Control (CRISC) (desirable).
- PRINCE II or Project Management Professional (PMP) or internationally recognized equivalent (desirable).
- ITIL version 3 or internationally recognized equivalent (desirable).
- COBIT5 or internationally recognized equivalent (desirable).
