# 2026-0109 Cyber Security Accreditation Support (NS) - WED 29 Jul

> EMW, Inc. · Braine-l'Alleud, Belgium (Hybrid) · Contract · Posted 2026-07-16

**Workplace:** hybrid

**Department:** AAS

## Description

**Deadline Date:** Wednesday 29 July 2026

**Requirement:** Cyber Security Accreditation Support

**Location:** 50% On-site NCI Agency Braine-L'Alleud, Belgium / 50% Off-site

**Period of Performance:** As soon as possible but not later than 1 September 2026 until 31 December 2026, with the possibility to exercise the following options:

2027 Option (1 January 2027 to 31 December 2027);

2028 Option (1 January 2028 to 31 December 2028).

**Required Security Clearance:** NATO SECRET

**1\. INTRODUCTION**

The ITM Recovery Increment 1 (ITM RC1) project will replace the legacy Automated Information Systems (AIS) NS classification network with a modernized ITM Operational Network (ON) at NS in a private cloud across the NATO Command Structure (NCS). The project structure includes 14 Work Packages, organized in 4 pillar teams with about 30 people interacting daily with each other and externally too. This RFQ falls under WP02 Cyber Security scope.

**2\. OBJECTIVES**

The NCI Agency is seeking to engage a suitably qualified and experienced CIS Security Accreditation Specialist to support its Cybersecurity and Accreditation activities. The Contractor personnel shall provide expert advice, conduct security risk assessments, and manage the full lifecycle of security accreditation documentation for NATO Communication and Information Systems (CIS).

**3\. SCOPE OF WORK**

The Contractor personnel shall deliver the following services throughout the contract period:

**3.1 Security Accreditation Advisory**

Provide security accreditation advice and guidance to NCI Agency Project and System Managers across the full lifecycle of NATO CIS.

Act as the focal point between NCI Agency and NATO Security Accreditation Authorities (SAAs).

Build and sustain effective communications with Security Accreditation Boards, NATO SAAs, and NCI Agency organisational units supporting the accreditation process.

**3.2 Security Risk Assessment**

Conduct Security Risk Assessments (SRA) in support of NATO CIS projects, including identification of threat levels and vulnerabilities for all assets comprising NATO CIS, derivation of residual risks, and provision of risk management recommendations.

**3.3 Accreditation Documentation**

Identify, plan, request, and manage the development of all required accreditation documentation, including but not limited to the CIS Description, Security Accreditation Plan (SAP), Security Risk Assessment Report (SRAR), Security Requirement Statements (SRS), Security Operating Procedures (SecOPs), and Security Test and Verification Plan (STVP).

**3.4 Subject Matter Expertise and Coordination**

Stay abreast of technological developments relevant to cybersecurity, network security, and cloud security.

Provide subject-matter-related briefings and presentations to NCI Agency stakeholders and management.

Coordinate and cooperate with activities across other Business Areas within NCI Agency.

Perform any other related duties as directed by the section head.

**4\. MANDATORY REQUIREMENTS**

\[See Requirements\]

**5\. DESIRABLE EXPERIENCE AND KNOWLEDGE**

\[See Requirements\]

**6\. CONTRACT EXECUTION AND DELIVERY**

The delivery will include planning, execution, and review processes, which are detailed below:

**6.1 Sprint Planning**

**Objective:** Plan the objectives for the upcoming sprint, as a part of the overall plan.

**Kick-off Meeting:** The Contractor shall conduct a monthly meeting with the ITM-RC1 POC to plan the objectives of upcoming months and review the Contractor's manpower to meet the agreed deliverables.

**Set Sprint Goals:** Define clear, achievable goals for the sprint and associated acceptance criteria, including specific delivery targets, quality standards, as well as Key Performance Indicators (KPIs) for each task, to be recorded in the monthly meeting minutes.

**Agree Resourcing:** Agree on the required level of effort for the various monthly tasks.

**Backlog Review:** Review and prioritise the backlog of tasks, issues, and improvements from previous months.

**Payment Assessment:** Assess each payment milestone cycle duration of one calendar month. State of completion and validation of each monthly status and sign off monthly to be submitted for payment.

**6.2 Sprint Execution**

**Objective:** Contractor personnel to execute the agreed sprint plans with continuous monitoring and adjustments.

**Weekly Meetings:** Between the ITM-RC1 POC and the Contractor personnel, to review sprint progress, address issues, and make necessary adjustments to the processes or production methodology. The meetings will be conducted physically in the office, or remotely via electronic means, as planned by the BCM.

**Continuous Improvement:** The Contractor personnel shall establish a continuous feedback loop to gather input from stakeholders for ongoing improvements and their subsequent implementation depending on NCIA approval.

**Progress Tracking:** The Contractor personnel shall use a shared dashboard or tool to track the status of the monthly deliveries and any issues.

**Quality Assurance/Quality Check:** The Contractor personnel shall ensure that the quality standards agreed for the monthly deliverables are maintained throughout the month.

**Quality Control:** NCIA will perform the final quality control of the agreed deliverables and provide feedback on any issues.

**6.3 Sprint Review**

**Objective:** Review the monthly performance and identify areas for improvement.

At the end of each month, there will be a meeting between the NCIA POC and the Contractor personnel to review the outcomes against the acceptance criteria comprising monthly goals, agreed quality criteria, and Key Performance Indicators (KPIs).

Define specific actions to address issues and enhance the next sprint.

**6.4 Sprint Payment**

For each sprint to be considered as complete and payable, the Contractor personnel must report the outcome of their work during the sprint, first verbally during the previous sprint review meeting, and then in writing within five days after the month's end date. A report must be sent by email to the NCIA service manager, listing all the work achieved against the agreed tasking list set for the month.

The Contractor personnel's payment for each sprint will depend upon the achievement of agreed Acceptance Criteria for each task, defined at the month planning stage. This will include specific delivery targets, quality standards, as well as Key Performance Indicators (KPIs) for each task/sprint.

Payment shall be dependent upon successful acceptance as set in the above planning/review meetings, following the payment milestones that shall include a completed Delivery Acceptance Sheet (DAS) (Annex B) including the EBA Receipt number.

Invoices shall be accompanied with a Delivery Acceptance Sheet (DAS) (Annex B) signed by the Contractor and project authority.

If the Contractor personnel fails to meet the agreed Acceptance Criteria for any task, the NCIA reserves the right to withhold payment for that task/sprint.

At the end of the project, the Contractor personnel shall provide a Project Closure Report that summarizes the activities undertaken and completed during the period of performance at a high level.

The Contractor personnel will continuously strive to document processes and methodology so a handover set can be delivered to the purchaser.

Completion of the activities/tasks agreed in each sprint meeting, and associated deliverables, is expected.

Sprint completion reports (format: e-mail update) shall be produced, including details of activities performed and the list of deliverables of the week.

The Contractor will participate in the daily reporting and planning activities (daily stand-ups), as well as required participation in workshops, meetings, events, and conferences related to the supported services, as requested by the service delivery manager.

The payment schedule will be according to payment milestones upon completion of each month, upon completion and validation of each sprint and at the end of the monthly milestone, following acceptance of the sprint report.

The NCIA team reserves the possibility to exercise options, during the same scrum deliverable timeframe, at a later time, depending on project priorities and requirements.

Payment shall be dependent upon successful acceptance of the month report and the Delivery Acceptance Sheet (DAS) (Annex B), including the EBA receipt number.

Invoices shall be accompanied with a Delivery Acceptance Sheet (Annex B) signed by the Contractor and the NCIA POC.

**2026 BASE (Period of Performance: 10 September 2026 to 31 December 2026):** Deliverable: Up to 4 sprints (number of sprints will be adjusted based on actual starting date). Payment Milestone: Upon completion of each sprint acceptance.

**2027 Option (Period of Performance: 1 January 2027 to 31 December 2027):** Deliverable: Up to 12 sprints. Cost Ceiling: Price per sprint will be determined by applying the price adjustment formula as outlined in CO-115786-AAS+ Special Provisions Article 6.5. Payment Milestone: Upon completion of each sprint acceptance.

**2028 Option (Period of Performance: 1 January 2028 to 31 December 2028):** Deliverable: Up to 12 sprints. Cost Ceiling: Price per sprint will be determined by applying the price adjustment formula as outlined in CO-115786-AAS+ Special Provisions Article 6.5. Payment Milestone: Upon completion of each sprint acceptance.

**7\. COORDINATION AND REPORTING**

The Contractor personnel shall participate in daily status update meetings, planning meetings, and other meetings, physically in the office, or in person via electronic means using conference call capabilities, according to the project manager's instructions.

For each report to be considered as complete and payable, the Contractor personnel must report the outcome of his/her work during the reporting period, first verbally during the specific meeting, and then in writing within three (3) days after the reporting period's end date. The format of this report shall be a short email to the NCIA Point of Contact mentioning briefly the work held and the development achievements during the month.

The Contractor personnel shall organize and/or participate in project meetings, or any other ITM meetings when asked by the PO, physically in the office or in person via electronic means according to the project manager's instructions.

The Contractor personnel shall agree weekly with the PO a schedule of work, products, and delivery dates, which will form the basis of the monthly deliverables report.

The monthly deliverables report will support the monthly invoicing.

**8\. PURCHASER FURNISHED EQUIPMENT**

Purchaser will provide to the Contractor personnel a standard IT work position setup to allow access to the necessary networks, IT systems, and tools.

The Contractor personnel shall follow Purchaser policies and procedures and take due care of the Purchaser-furnished equipment.

Access to relevant environments and licenses to commercial third-party libraries required to perform the contract will be provided by NCIA.

At the end of the project, the Contractor personnel shall provide a Project Closure Report summarizing the activities during the period of performance at a high level.

**9\. SCHEDULE**

It is expected the service starts as soon as possible but no later than 1 September 2026, ending no later than 31 December 2026.

If the 2027 option is exercised, the period of performance is 1 January 2027 to 31 December 2027.

If the 2028 option is exercised, the period of performance is 1 January 2028 to 31 December 2028.

**10\. CONSTRAINTS**

All deliverables provided under this Statement of Work will be based on NCI Agency templates or agreed with the project point of contact.

All code, scripts, documentation, etc. will be stored under configuration management and/or in the provided NCI Agency tools.

**11\. SECURITY**

Any resource proposed for this Statement of Work requires a valid NATO SECRET security clearance prior to the start of the engagement.

**12\. PRACTICAL ARRANGEMENTS**

The Contractor personnel will be required to work 50% on-site at NCI Agency Braine-L'Alleud (BEL).

NCIA Braine-L'Alleud hours of operation are Monday to Thursday 0830-1700 and Friday 0830-1500 (CET).

Access to relevant environments and licenses to commercial third-party libraries required to perform the contract will be provided by NCIA.

The work depicted in this Statement of Work is expected to be carried out by one (1) resource.

**13\. TRAVEL**

This task order requires scheduled travel as detailed in this section, consisting of up to 10 visits to Mons, Brussels, and The Hague, for a maximum of 3 working days each visit. Travel, lodging, and associated expenses for travel are included in the price of the bid (NTE), such that the purchaser shall not be invoiced.

Extraordinary Travel (Purchaser Directed Travel) may be required to other NATO or non-NATO locations as necessary. In the event of such unforeseen meetings being called, the cost of all travel and subsistence will be addressed through a contract amendment.

Extraordinary Travel expenses will be reimbursed in accordance with Article 5.5 of the AAS+ Framework Contract. Such costs will be set as a separate PO line with a not-to-exceed value to cover and reimburse actual expenses upon submission of all receipts and invoices in line with NCIA processes.

## Requirements

**4\. MANDATORY REQUIREMENTS**

**Qualifications**

-   The candidate must hold a university degree in Information Security, Telecommunications, Electronics, or Avionics.
-   Alternatively, in the absence of such a degree, the candidate must have compensating relevant professional experience and hold at least one of the following certifications: CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), or CISM (Certified Information Security Manager).

**Minimum Experience**

-   The candidate must have at least 2 years of experience in Security Accreditation of major Communication and Information Systems (CIS) within acquisition and/or development programmes for a large organisation.
-   The candidate must have at least 2 years of experience applying security risk assessment methodologies and tools.
-   The candidate must have at least 2 years of experience in the planning, design, and implementation of security components for major CIS.

**Communication Skills**

-   The candidate must have a proven ability to communicate effectively both orally and in writing.
-   The candidate must have demonstrated briefing and presentation skills to senior stakeholders.

**5\. DESIRABLE EXPERIENCE AND KNOWLEDGE**

-   Demonstrated interest and expertise in Cyber Security, Network Security, and Cloud Security is desirable and will be positively weighted during technical evaluation.
-   Familiarity with international security standards, in particular ISO/IEC 27001, is desirable and will be positively weighted during technical evaluation.
-   Experience working in or with NATO or other international defence organisations is desirable and will be positively weighted during technical evaluation.

**11\. SECURITY**

-   Any resource proposed for this Statement of Work requires a valid NATO SECRET security clearance prior to the start of the engagement.

## Apply

[Apply at EMW, Inc.](https://apply.workable.com/emw/j/B97A7C3AD1/apply)

---
Powered by [Workable](https://www.workable.com)
