Job Specifications
SCOPE OF WORK
The main objective of the statement of work is to underline the Cyber Security needs of the NCSC and to look for support to Gateway Security Services, the ‘Level 3 Cyber Security and Guard that should be manned by the service supplier on a daily basis to ensure service objectives are met continuously.
The aim of this SOW is to support NCSC with technical expertise specifically related to the operation and maintenance of CYBER SECURITY AND GUARD Support with a deliverable based (completion-type) contract to be executed in 2025.
Required
The service provider will be required to deliver a daily activities schedule, orchestrate NCIA processes as well as represent NCSC business unit on an Enterprise Level where required. Tasks performed by a contractor include:
Build, implement, maintain, and support systems within existing cross-domain gateways (System Administration).
Configure, maintain, review and update configuration settings and policies on guard components and data diodes (System Configuration)
Under the direction / guidance of the NCSC Point of Contact, a contractor will be the part of the NCSC Team supporting the following activities:
Central system administration of Guards and Data Diodes to ensure continuing functionality and availability.
Hardware and software systems installation and configuration
User and access management
Back up and restore systems data
Monitor system performance and availability
Log forwarding towards archiving and/or forensic systems
Analyze, troubleshoot and resolve application issues
Development of automation scripts to meet day to day system administration tasks
Central configuration of Guards and Data Diodes
Implementation and verification of guards and data diode configuration to meet customer cross-domain data exchange requirements
Adaptation of release markings
Adaptation of email attachment types
Configuration of additional cross-domain flows
Back up and restore configuration data
Updating of Guard and Data Diode software/patches
Monitor patch releases
Test new software and patches
Support A2SL process for approval of software updates
Installation and configuration of software and patch updates
Documentation of Guards and Data Diode systems
Development of SOPs and other documentation for repetitive activities
Produce and maintain comprehensive documentation for all implemented systems
Review and update security documentation
Education/training/familiarization of other teams
Support of Guards and Data Diodes
Technical support in troubleshooting infrastructure and operational issues
Collaborate with other teams for a successful resolution;
Provide technical support and guidance by answering end-user requests to identify issues in secure cross-domain data exchange
COORDINATION AND REPORTING
The contractor shall participate in daily status update meetings, activity planning and other meetings as instructed, via electronic means using Conference Call capabilities, according to the Operation Managers / Team Leaders instructions.
Due to the AGILE approach of this project, there is a need to define a set of specific arrangements between the NCIA and the contractor that specifically defines the deliverables to be provided for each sprint as well as their associated acceptance criteria. This includes sprint planning, execution and review processes.
SCHEDULE
It is expected the service starts as soon as possible but no later than 18 May 2025 and ending no later than 31st December 2025.
if the 2026 option is exercised, the period of performance is 01st January 2026 to 31st December 2026
if the 2027 option is exercised, the period of performance is 01st January 2027 to 31st December 2027
The work will be conducted during normal office hours following the NCIA Brussels calendar, as well as outside office hours and on weekends, if necessary.
SECURITY AND NON-DISCLOSURE AGREEMENT
Any proposed resource providing services under this SOW must be in possession of a security clearance NATO SECRET or above to facilitate follow-on engagements and coordination at NATO venues.
The signature of a Non-Disclosure Agreement between any Service Provider’s individuals contributing to this task and NCIA will be required prior to execution.
PRACTICAL ARRANGEMENTS
The contractor will be required to provide the service 100% on-site at NCIA Mons, Belgium. Exceptional off-site activities to support service delivery can also be arranged with the line manager’s coordination and approval.
NCI Agency will provide access to relevant networks and resources as required by the project.
There might be requirements to perform out-of-hours work to support planned maintenance activities or delivery of critical services as well as to provide on-call support outside regular business hours.
TRAVEL
There may be limited travel required (max.3 times/per year, each travel up to 3 working days), specifically to Brussels, Belgium, The Hague, Netherlands or Brunsum, Netherlands.
No additional cost for travel (including accommodation, per diem, travel expenses, etc.,) will be claimed separately. All travel arrangements are the responsibility of the contractor.
Required Profile
The contractor that is going to perform the identified tasks as an operation and maintenance expert of CYBER SECURITY AND GUARD must have demonstrated skills, knowledge and experience as listed below.
Activities performed by the contractor include facilitation of all lifecycle aspects of Boundary Protection Components deployed within and on the edge of NATO networks
Bachelor's degree in Computer Science, Information Technology, or related field Or equivalent experience.
5+ years of experience in IT security, with a focus on Security Tools Management in large organisations.
Strong understanding of security best practices
Good engineering skills including programming
Demonstrable experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours.
Experience with system instrumentation solutions such as below:
Linux System Administration (preferred RedHat Enterprise Linux)
Scripting/Automation (Bash, Python, Ansible)
Other Boundaries Protections Devices such as firewalls
System security, including hardening and SELinux
System monitoring and troubleshooting
Experience with network protocols and traffic analysis
Ability to troubleshoot complex network security issues
LAN/WAN networking including protocol network architecture
TCP/IP protocols and services
Excellent communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams
Official Linux certification (such as RHCSA, GCUX,)
Official Network Management certification (such as Network+)
Official Service Management certification (such as ITIL Foundation )
In addition to the above, it is desirable for the contracted individual to have working experience and knowledge i...
About the Company
Contact One Communications, Inc. is a worldwide systems integration company providing leading edge Information Technology services including Engineering and Installation (E&I), Operations and Maintenance (O&M) and Force Protection in the fields of Cyber Security and Information Assurance, Perimeter Security and Telecommunications Infrastructure.
We are a "go to" organization for rapid response requirements in support of expeditionary missions. We work on US Department of Defense (DoD), North Atlantic Treaty Organization (NA...
Know more