2024-0279 Cybersecurity Endpoint Engineering Support NS BELGIUM - 1 Aug

• Deadline Date: Friday 1 August 2025
• Location: Mons, BELGIUM
• Required Start Date: 8 September 2025

Deadline Date: Friday 1 August 2025

Requirement: Cybersecurity Endpoint Engineering Support

Location: Mons, BELGIUM

Time On-Site: 100%

Not to Exceed: 2025 BASE: 3,307 EUR/sprint (18 sprints, total NTE 59,535 EUR)
2026, 2027, 2028 OPTIONS

Period of Performance: 2025 Base period: 8 September 2025

Required Security Clearance: NATO SECRET (NATO COSMIC TOP SECRET will be required as of 2026)

Please do NOT apply for any NATO contract positions unless you meet ALL the following criteria:

1. Current National or NATO SECRET clearance
2. Nationality of one of the NATO member countries
3. Current work visa for the specific location if applying for an in-country position

Any applications that do NOT meet all the above – and do not CLEARLY show these on the CV - will be deleted.

Introduction:

• NATO Cyber Security Centre (NCSC) is looking for a contractor to support the work of Enable Branch: to ensure the availability, performance, and security of NATO’s data centre across multiple sites. Focus will be on setting up software or hardware to make it operational and providing technical expertise in compliance with NATO’s operational requirements and security standards.
• Currently, endpoint devices are managed through fragmented systems with manual processes, leading to inconsistent updates, inefficiencies, and security vulnerabilities across the organization.

Objectives:

The aim of this SOW is to support NCSC with technical expertise specifically related to the operation and maintenance of NATO’s CYBERSECURITY ENDPOINT ENGINEERING with a deliverable based (completion-type) contract to be executed in 2025.
The main objective is to secure advisory services that provide expert guidance and support to achieve:

• Operational Efficiency: Achieve faster deployment, reduced manual intervention, and minimized human error through automation.
• Enhanced Security: Strengthened endpoint protection and real-time monitoring to mitigate security risks and ensure compliance with industry standards.
• Scalability: A future-ready infrastructure capable of supporting the organization’s growth without compromising performance or security.

The desired outcome is a centralized, automated endpoint management system is in place, offering real-time monitoring, enhanced security, and scalability, ensuring consistency and compliance across all devices.

Qualifications:

• Minimum 5 in endpoint management and cybersecurity, well-versed in supporting NATO networks within a Cyber Security Centre.
• Demonstrated proficiency in managing centralized endpoint solutions and automating workflows in highly secure environments.
• Trellix Expertise: Proficient in managing Trellix (formerly McAfee Enterprise) cybersecurity solutions, including Endpoint Detection and Response (EDR), which is crucial for monitoring and mitigating threats across NATO’s secure networks.
• Minimum 2 years of NATO-Specific Experience: Extensive experience with NATO’s network security protocols, including managing endpoint security and ensuring adherence to NATO’s strict compliance and data protection standards.
• Proficiency in Automation and Scalability: Developed automated workflows for endpoint provisioning and patch management, reducing manual workload and increasing operational efficiency while maintaining security compliance within NATO environments.
• 5+ years expertise in deploying, configuring, managing, and optimizing Trellix Endpoint Security solutions, including: Endpoint Detection & Response (EDR); Threat Prevention; Data Loss Prevention (DLP); Drive Encryption; Application Control; Trellix ePolicy Orchestrator (ePO)
• Proficiency in Endpoint Configuration Manager (SCCM) for patching, deployment, and configuration enforcement.
• Experience in the implementation and management of Multi-Factor Authentication (MFA) solutions, including Yubikeys integration.
• Minimum 2 years of NATO-specific experience, familiar with NATO protocols and compliance standards.
• Knowledge / expertise in automation and scalability skills with patch management and endpoint provisioning.

The following performance and qualifications are not mandatory but will be a benefit:

• Experience in project management and coordination of endpoint security infrastructure deployments.
• Ability to manage project timelines, coordinate with multiple stakeholders, and ensure adherence to best practices.
• Experience in Agile delivery frameworks, including sprint planning, review, and iteration cycles.
• Familiarity with NATO compliance tooling and incident reporting standards.