Engineer (CIS Security)

NATO - North Atlantic Treaty Organization

The Hague

International

NATO Grade G15 level

Speaks English

Application deadline: June 16, 2026 (14 days)

Apply

Summary by Impactpool

The NATO Communications and Information Agency is seeking a CIS Security Specialist to enhance and secure NATO's digital services and mission-critical information systems in The Hague. The role involves configuring and administering security solutions, monitoring web application security, conducting vulnerability assessments, and supporting incident management. Candidates should possess a Bachelor's degree or equivalent experience, along with extensive knowledge of security principles and technologies. Fluency in English is required, and desirable experience includes working with various security technologies and frameworks.

Candidate Requirements:

Bachelor's degree or 6 years relevant experience
Knowledge of computer and communication security principles
Experience with CIS security measures in enterprise environments
Familiarity with network and security technologies
Experience in vulnerability assessments and incident response
Strong knowledge of CIS Critical Security Controls
Experience in writing security policies and compliance audits
Fluency in English

Who we are

For more than 70 years, NATO’s mission has been to preserve peace and security in the Alliance for nearly one billion citizens. The NATO Communications and Information Agency and its predecessors have worked tirelessly to provide the means that enable the connectedness and togetherness that keep our Alliance strong.

Our technology and cyber experts allow NATO to conduct critical operations, protect NATO’s airspace, make data-driven decisions, defend against cyber-attacks, secure NATO networks and maintain superiority in space. This is possible because of our greatest force: our people.

When you join the NCIA, you will be part of an organisation where you can contribute authentically to NATO’s mission and help us keep our technological edge.

About the job

Based in The Hague you will join the Agency as we continue to strengthen and secure NATO’s digital services and mission-critical information systems.

We are looking for a driven and enthusiastic CIS Security Specialist who will support the protection of NATO’s web applications, systems and services through hands-on security implementation, monitoring, risk management and technical assurance.

You will take on the following roles and responsibilities:

Configure, deploy and administer SaaS-based security solutions for websites, applications and APIs.
Implement, tune and maintain Web Application Firewall rules, signatures and security configurations to mitigate threats such as SQLi, XSS and other web vulnerabilities.
Monitor CDN, DDoS protection, bot management and website performance settings to ensure secure and continuous availability.
Conduct vulnerability assessments, business impact analysis and security risk activities for medium-complexity information systems.
Support incident investigation, security breach analysis, first-line incident management and corrective action implementation.
Manage technical activities related to public certificates, website registries, site revalidation and technical decommissioning.
Provide technical guidance to website owners and translate functional requirements into secure configurations aligned with CIS benchmarks, NATO directives and customer needs.

For a full list of duties, please review the job description on the NCIA career site.

About you

The valuable knowledge and experience that you bring to this role are:

A minimum requirement of a Bachelor’s degree at a nationally recognised/certified University in a related discipline and 2 years role-related experience. Or exceptionally, the lack of a university degree may be compensated by the demonstration of a candidate’s particular abilities or experience that is/are of interest to NCI Agency, that is, at least 6 years extensive and progressive expertise in duties related to the function of the role.
Comprehensive knowledge of computer and communication security principles, networking, modern operating systems, applications and common vulnerabilities.
Extensive experience implementing and integrating CIS security protective measures in enterprise environments.
Knowledge and experience of network and security technologies, including firewall and IDS/IPS configurations, SIEM systems, log correlation and alert triaging.
Experience conducting vulnerability assessments, supporting incident response activities and applying containment, remediation and basic forensic approaches.
Strong knowledge of CIS Critical Security Controls, threat hunting, insider threat capabilities, cloud security practices, and governance, risk and compliance frameworks.
Experience writing or enforcing security policies and procedures, supporting compliance audits and reporting security events to improve CIS control implementation.
Fluency in English, both written and spoken, is required.

Desirable experience includes hands-on work with SASE, WAF, CDN, bot management, DDoS protection, PKI, cloud networking, OWASP standards, patching cycles, CVSS V2/V3, and security controls within public cloud ecosystems such as Azure, AWS or GCP. Certifications such as ITIL v4 Foundation or specialised training in application security, SASE, WAF or CDN technologies would be an asset.

What we offer:

Genuinely meaningful work as part of the most successful alliance in history;
5 year contract with competitive tax-free salary and household and children’s allowances;
Privileges for expatriate staff including expatriation and education allowances (where appropriate) and additional home leave;
Excellent private health insurance scheme;
Generous annual leave of 30 days plus official holidays;
NATO Pension Scheme;
Development programs such as professional training, wellbeing, and more

To learn more about NCIA and our work, please visit our website.

The NCIA prides itself on being an equal opportunity employer. We are committed to fostering an inclusive environment of mutual respect and value uniqueness and differences in gender, gender identity, race, ethnic or cultural origin, age, religion, sexual orientation and physical or neurocognitive ability.

Additional details on the conditions of application can be found via the NCIA career site.

At Impactpool we do our best to provide you the most accurate info, but closing dates may be wrong on our site. Please check on the recruiting organization's page for the exact info. Candidates are responsible for complying with deadlines and are encouraged to submit applications well ahead.

Before applying, please make sure that you have read the requirements for the position and that you qualify. Applications from non-qualifying applicants will most likely be discarded by the recruiting manager.

Summary by Impactpool

Candidate Requirements:

Bachelor's degree or 6 years relevant experience
Knowledge of computer and communication security principles
Experience with CIS security measures in enterprise environments
Familiarity with network and security technologies
Experience in vulnerability assessments and incident response
Strong knowledge of CIS Critical Security Controls
Experience in writing security policies and compliance audits
Fluency in English

Fellowship

Master the recruitment process of the impact sector!

Become a fellow and gain access to Impactpool's premium material that will boost your career in the impact sector

Explore fellowship

Show NATO - North Atlantic Treaty Organization that you are interested in them

Recruiters from the organization will be able to view your profile, contact you for current & future vacancies and engage you on opportunities that match your skills and interest.

Connect with organization