Deadline Date: Thursday, 1 May 2025
Requirement: Cyber Security Firewall Support
Location: Mons, BELGIUM
Full Time On-Site: Yes
Time On-Site: 100%
Not to Exceed: NTE 70,902 EUR (26 sprints at 2,727 EUR/sprint NTE)
Period of Performance: 9 June 2025, with the possibility to exercise the following options:
2026 Option, 2027 Option, 2028 Option
Required Security Clearance: NATO COSMIC TOP SECRET
Background:
The NCI Agency has been established with a view to meeting the collective requirements of some or all NATO nations in the fields of capability delivery and service provision related to Consultation, Command & Control as well as Communications, Information and Cyber Defence functions, thereby also facilitating the integration of Intelligence, Surveillance, Reconnaissance, Target Acquisition functions and their associated information exchange.
Introduction:
The NATO Cyber Security Centre (NCSC) is a team of over 200 members working to monitor and protect NATO networks. In the NCSC’s role to deliver robust security services to the NATO Enterprise and NATO Allied Operations and Missions (AOM), the centre executes a portfolio of programmes and projects around 219 MEUR euros per year, in order to uplift and enhance critical cyber security services.
In order to execute this work, the NCI Agency is seeking additional manpower through contracted resources to support the work undertaken by the NATO Cyber Security Centre (NCSC) in the area of Communications and Information System (CIS) security, cyber defence and cyberspace operations.
The Gateway Security Services (GSS) Section facilitates and accounts for all lifecycle aspects of Boundary Protection Components deployed within and on the edge of NATO networks in order to protect key NATO information while allowing NATO staff to work securely and process their information.
NCI Agency is looking for subject matter expertise for the delivery of this complex and critical cybersecurity capability.
Purpose:
This contract is to provide consistent support on a deliverable-based contract to NCSC based on the deliverables that are described in the scope of work below. Purpose
The Cyber Security SECURE Branch delivers a wide suite of enabling services in specific areas of Technical Services and CIS protection.
Gateway Security Services operate (amongst others) various technologies such as data diodes, secure guard components and firewalls to support the secure cross-domain data exchange.
This Statement of Work (SOW) outlines the services to be provided by the Supplier to NCIA Cyber Security Centre Secure Branch to fulfil identified CYBER SECURITY FIREWALL Support more effectively
Objectives:
The main objective of the statement of work is to underline the Cyber Security needs of the NCSC and to look for support to Gateway Security Service. The ‘Level 2/3 Cyber Security Firewall support should be manned by the service supplier on a daily basis to ensure service objectives are met continuously.
The aim of this SOW is to support NCSC with technical expertise specifically related to the operation and maintenance of CYBER SECURITY FIREWALL Support with a deliverable based (completion-type) contract to be executed in 2025.
The contractor’s personnel will be required to deliver a daily activities schedule, mainly operating the firewalls and supporting on the BAU (Business As Usual) activities, like request fulfilment (ITSM work) and system patching, as well as represent NCSC business unit on an Enterprise Level where required.
Tasks performed by a contractor include:
* Build, implement, maintain, and support Next-Generation Firewalls (NGFW) (System Administration).
* Configure, maintain and review security policies on Next-Generation Firewalls (System Configuration)
Constraints:
All the documentation provided under this statement of work will be based on NCIA templates or agreed with project point of contact.
All support, maintenance, documentation, and required code will be stored under configuration management and/or in the provided NCIA tools.
All developed solutions, tools and code under this project will be the property of the NCIA.
Security and Non-Disclosure Agreement:
The services performed under this SOW require that the assigned personnel have a Valid NATO COSMIC TOP SECRET security clearance
It is acceptable for personnel to have a valid NATO SECRET security clearance prior to the start of the engagement and obtain COSMIC TOP SECRET during the first year of the execution of deliverables under this SoW
The signature of a Non-Disclosure Agreement between any Service Provider’s individuals contributing to this task and NCIA will be required prior to execution.
Practical Arrangement:
This is a deliverables-based contract.
Services under current SOW are to be delivered by ONE resource that
The contractor will be required to provide the service 100% on-site at NCIA Mons, Belgium. Exceptional off-site activities to support service delivery can also be arranged with the line manager’s coordination and approval.
The service will be conducted during normal office hours following the NCIA Mons calendar, as well as outside office hours and on weekends, if necessary (maintenance and on-call hours).
NCI Agency will provide access to relevant networks and resources as required by the project.
Contractor’s personnel will be part of the NCIA NCSC GSS team.
There might be requirements to perform out-of-hours work to support planned maintenance activities or delivery of critical services as well as to provide on-call support outside regular business hours.
NCIA IT equipment will be provided (one REACH laptop will be provided). This equipment can be used by one person only and associated to that individual.
Required Profile:
The contractor’s personnel who is going to perform the identified tasks as CYBER SECURITY FIREWALL Support must have demonstrated skills, knowledge and experience as listed below. Activities performed by the contractor’s personnel include facilitation of all lifecycle aspects of
Boundary Protection Components deployed within and on the edge of NATO networks. The contractor’s personnel meet the following experience, qualities and qualifications:
* Bachelor's degree in Computer Science, Information Technology, or related field Or equivalent experience.
* Minimum qualifications required
o Official firewall certification (such as PCNSA,)
o Official Network Management certification (such as Network+)
o Official Service Management certification (such as ITIL Foundation) ∙ 2+ years of experience in IT security, with a focus on Security Tools Management in large organisations.
* Strong understanding of security best practices
* Good engineering skills including programming
* Demonstrable experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours.
* More than 2 years of experience in the following areas:
o Palo Alto Networks Firewalls and Palo Alto Networks Panorama for Enterprise level deployments
o Firewall installation and management of other vendors
o Scripting/Automation (Bash, Python, Ansible)
o System monitoring and troubleshooting
o Experience with network protocols and traffic analysis
o Ability to troubleshoot complex network security issues
o LAN/WAN networking, including protocol network architecture
o TCP/IP protocols and services
* Profound communication abilities, both written and verbal, with the ability to clearly and successfully articulate complex issues to a variety of audiences and teams
* Additionally, the following experience, qualities and qualifications are desirable: ∙ Understanding of
* Information Security Practices; relating to the Confidentiality, Integrity and Availability of information (CIA triad.)
* Possession of Industry leading certification in the area of Cybersecurity such as CISSP, CISM, CISA, GSNA, SANS GIAC
* In addition to the above, it is desirable for the contracted individual to have working experience and knowledge in the following areas:
* Experience in working with NATO.
* Experience of working with NATO Communications and Information Agency.
* Experience of working with national Defence or Government entities.
* Previous work in an international environment comprising both military and civilian elements.