Security Engineer

Security Engineer (Fully Remote) – NATO Project

• Security Engineer
• Must be from and living in a NATO Country
• Contract
• Fully remote
• Start Date – ASAP

Eligibility: Candidates must hold nationality / right-to-work in a NATO member country (NATO project requirement)

Overview

We’re seeking a Security Engineer to support a NATO-aligned programme, contributing to the secure design, accreditation, operation and continuous improvement of CIS (communications and information systems) across the full system lifecycle.

This is a fully remote role; however, you must be based in (and working from) a NATO member country due to project constraints.

Key Responsibilities

You will:

• Support the achievement and maintenance of security accreditation for systems/applications, including data acquisition, processing, storage, and integrations across the lifecycle (design → build → operate → enhance → retire).
• Advise on cost-effective security countermeasures to reduce risk during development and operational phases.
• Implement and operate required security controls within an accreditation framework, working under the direction of the CIS Provider and Security Staff.
• Document CIS architecture, configuration, and security posture to inform risk management activity.
• Plan, implement, maintain and upgrade CIS in line with security best practice.
• Investigate security breaches/incidents and perform root cause analysis.
• Contribute to defining, implementing and maintaining security policies and standards.
• Lead or supervise technical teams and/or security workstreams where required.
• Undertake security testing in line with an agreed Security Testing & Verification (ST&V) Plan.
• Support the creation of Security Operating Procedures (SecOPs).
• Maintain configuration baselines via configuration management and change control.
• Support periodic vulnerability assessments and remediation activities in line with accreditation authority expectations.
• Provide security awareness/training to project staff as needed.
• Support periodic security audits led by Security Staff and relevant accreditation authorities.

Essential Requirements

Experience / Technical

• Proven experience designing and/or implementing security controls within a formal security framework (e.g., ISO 27001/27000, NIST SP 800-series, or national equivalents).
• Strong hands-on knowledge across one or more of:
• Endpoint protection / anti-malware
• Content filtering
• Firewalls
• Authentication & access controls
• Vulnerability management
• IDS/IPS
• DLP
• SIEM platforms
• Experience supervising technical teams and/or delivering security projects/workstreams.
• Strong documentation skills (technical documentation, standards, SOPs).

Education

• Bachelor’s degree (or equivalent) in a relevant discipline (e.g., Computer Science, Computer Engineering) plus 3-5 years relevant experience.

Language

• English SLP 3333 (or equivalent professional proficiency).

Desirable / Nice to Have

• Master’s degree in a relevant discipline.
• Experience with NATO and/or national security accreditation processes and policies.
• Security certifications (e.g., CISSP, CRISC, CISM or equivalent).
• Technical certifications (e.g., GIAC, CCNP Security, CompTIA Security+ or equivalent).
• Web application security knowledge (e.g., OWASP Top 10, secure SDLC, authN/authZ, API security).
• Azure/Databricks security experience (e.g., Unity Catalog, workspace security, cluster policies, secret scopes, network isolation, secure data access patterns).
• Web application penetration testing / security assessments.
• Container security / orchestration platform security.
• Cisco network design/implementation/operations experience.
• Monitoring/event management tools (e.g., Splunk, SolarWinds).
• Security incident management and security risk management experience.