Support To the ACT Security CIS Accreditation Authority

EXPERIENCE AND EDUCATION:

Essential Qualifications/Experience:

·         3 or 4 year university degree or equivalent national academic qualification in computer science, network security, cyber-security or related field

·         Certification in CIS security or cyber defence disciplines provided by a recognised certification scheme, as a Certified Information Systems Security Professional (CISSP), GIAC Security Expert or ISACA Certified Information Security Manager (CISM)

·         At least 5 years demonstrated experience in CIS security, CIS development or CIS service delivery

·         4. Within the 5 years’ experience above, at least 3 years of demonstrated experience working in or in direct support of a national, international or multi-national CIS security accreditation, certification or similar field

·         Demonstrated proficiency in English as defined in STANAG 6001 (Standardized Linguistic Profile (SLP) 3333 - Listening, Speaking, Reading and Writing) or equivalent

·         Valid NATO Nation passport with no travel restrictions to NATO nations

·         Writing - Ability to prepare written documentation to transfer technical information about concepts, situations, products, services, or results to audiences with varying levels of technical knowledge. Thorough understanding of grammar, sentence structure, and intended audiences to the process of reviewing, editing, or constructively critiquing a document, publication, or message

·         Communication - Skill in clearly and effectively conveying information verbally to senior leadership. Ability to deliver clear, effective communication and ability to take responsibility for understanding others. Ability to ask appropriate questions

·         Computer Skills - Has the knowledge and ability to use computers and related technology efficiently. Proficient in Microsoft Office products (e.g. Word, PowerPoint, Excel, Access, Project, MS Teams, and SharePoint)

DUTIES/ROLE: 

·         Maintain records of the progress of a CIS through NATO security accreditation processes and the application of NATO security regulations

·         Review of security accreditation documentation for CIS and make recommendations for approval. Security accreditation documentation includes the CIS Description, Risk Assessment Results, System-Specific Security Requirements Statement, Security Operating Procedures, Security Test & Validation Plan, Security Test & Validation Results, Incident Reports, etc.

·         Ensure that verification activities are properly executed, to confirm that the agreed security measures have been implemented

·         Provide support and guidance to CIS developers and service providers. Note that some developers and service providers are based in Europe

·         Contribute to updates of the statement of the security risk for ACT CIS

·         Liaising with other roles in the Security Accreditation process

·         Representing the ACT SAA in NATO Enterprise meetings, either in person or via VTC