# NATOIS-0042 ICT Security Accreditation Expert (NS) - WED 22 Jul

> EMW, Inc. · Brussels, Belgium · Contract · Posted 2026-07-09

**Workplace:** on_site

**Department:** AAS

## Description

**Deadline Date:** Wednesday 22 July 2026

**Requirement:** ICT Security Accreditation Expert

**Location:** Brussels, BE

**Full Time On-Site:** Flexibility for part-time teleworking

**Total Scope of the request (hours):** On the basis of 38 hours per week, a total of 2500 hours is requested until 31/08/2028. There is a possibility to work 28-32 hours per week.

**Period of Performance:** 01 Sep 2026 – 31 December 2026 (~500 hours)

Extension options:

Option 1: 01 January – 31 December 2027 (~1200 hours)

Option 2: 01 January – 31 August 2028 (~800 hours)

**Required Security Clearance:** NATO SECRET

**Note:** For all Level-of-Effort and Completion-Type requests processed outside of the IWC Value Stream, and for which the contractor will not be reimbursed directly by NCIA for travel expenses, additional travel funding shall be allocated on a Not-to-exceed basis when the yearly Option is exercised.

**Profile Description Summary:** The Information and Communication Technology Management (ICTM) Directorate has a portfolio of ICT-related projects with a diverse nature, some rather infrastructure related and others related to software acquisition and development. ICTM has a requirement for an expert in ICT security accreditation/approval for these projects.

Their efforts will focus on supporting the work of the Security Accreditation Authority being the JISD/NOS, by overseeing the security approval/accreditation process for ICT-related projects and contribute to CIS Security Risk Management activities: reviewing security-related documents, security risk assessments, security audit reports and remediation plans, and attending security-related meetings when required.

**Division:** International Staff (IS) - ICTM

**Mission:** ICTM provides support and services to the North Atlantic Council (NAC), its Committees, IS and IMS staff, and, when required, to Member and Partner Nation Delegations based in the HQ. The Directorate comprises of two pillars: Information Communication Technology (ICT) and Digital Information Management Services (DIMS).

**Vision:** ICTM is a recognised and trusted Directorate for the implementation of ICT-related projects for the IS. PRINCE2 has been adopted as methodology. In order to guarantee the (cyber-) security of systems that are being implemented, ICTM follows a security approval process, agreed by the Security Authority. As part of this process, security-related documentation needs to be submitted to a variety of stakeholders for review and approval.

**Background:** The incumbent will be embedded in the Security Accreditation Authority, being the Joint Intelligence and Security Division/NATO Office of Security (JISD/NOS), in order to enable the Security Approval/Accreditation Process of ICTM-led projects.

In the past years ICTM and JISD/NOS have developed templates and examples of the documentation set that needs to be submitted as part of a Security Approval/Accreditation Process, as well as specific procedures applicable within the NHQ CIS Governance. These templates and procedures will be made available to the expert.

**Objectives:**

-   Perform the oversight of the Security Approval/Accreditation process of NHQ ICT-related projects and contribute to CIS Planning and Implementation as well as Security Risk Management activities
-   Provide security architecture-related advice to NHQ ICT-related projects
-   Contribute to enhancing the Security Approval/Accreditation process

**Scope of Work:**

Security Accreditation/Approval and CIS Security Risk Management:

-   Review and contribute to the security-related documents or Approval/Accreditation Documentation Sets (ADS) from ICT-projects including but not limited to Non-Functional Requirements (NFRs), which is part of the Statement of Work (SoW), the Security Approval/Accreditation Plans, Security Risk Assessments, Security Requirements Statements, Security Test and Verifications, Security Audit Reports, etc.;
-   Draft security recommendations and Security Approval/Accreditation letters

Security Architecture:

-   Provide security-related advice and guidance to project managers and other project stakeholders regarding security design matters throughout the entire project lifecycle, including security approval-related activities;

Project Team member:

-   As required, to develop security-related documentation such as Security Risk Assessment (SRA), based on project scope
-   Make recommendations as necessary on how to improve the existing processes or templates
-   Represent the team in internal meetings related to cybersecurity and support security-related decision when representing the team in CIS security-related Boards.

**Reporting:** Bi-weekly status reports to NATO supervisor

**Duties and Role:**

-   Development of Security Accreditation/Approval Plan;
-   Review of Accreditation/Approval Documentation Sets;
-   Assess Security Accreditation/Approval requests;
-   Advice and Guidance to Project Managers;
-   Contribute to the continuous improvement of internal processes;
-   Other security-related duties as required by the NATO supervisor.

**Location:** The Service will be 100% at NATO Headquarters in Brussels. Due to the nature of the service, there will be flexibility for part-time teleworking from Belgium

**Period of Performance:** The services of the contractor are required for the period starting 1st September 2026 until 31st December 2026.

Option 2027: 01 January until 31 December 2027

Option 2028: 01 January until 31th August 2028.

**Travel:** None to minimal travel is expected.

## Requirements

**REQUIRED EXPERTISE AND QUALIFICATION**

-   The candidate must have a currently active NATO SECRET security clearance
-   Minimum 8 years of experience in ICT security-related functions;
-   Proven, strong expertise in ICT security architecture and security accreditation/approval;
-   Experience in participating in ICT systems and applications implementations.
-   Experience in both on-premise and cloud deployments.
-   Ideally, the incumbent should also have experience in working: in an international organization or governmental environment; in a classified environment; within complex multi-stakeholder environments;
-   Technically oriented university degree (information management, electronic engineering, etc.) or equivalent completed advanced vocational training;
-   Proven understanding and technical knowledge of the ICT infrastructure & security services (directory services, database, PKI, firewall, etc.), latest software technologies either on-premises or cloud-based;
-   Good understanding of project management methodologies and tools (e.g. PRINCE2);
-   Proven experience in organizing workshops and conducting meetings and presentations;
-   Excellent drafting and communication skills;
-   Desirable: knowledge and practice of NATO CIS security related directives.
-   Desirable: national certification on cybersecurity risk management or security accreditation processes (e.g. Prestataires d’accompagnement et de conseil en sécurité des systèmes d’information (PACS), IT-Grundschutz, ENS)
-   Desirable : Artificial Intelligence (AI) security knowledge
-   Language requirements: Possess the following minimum levels of NATO’s official languages (English): V (“Advanced”)

## Apply

[Apply at EMW, Inc.](https://apply.workable.com/emw/j/0D6FCD08D0/apply)

---
Powered by [Workable](https://www.workable.com)
