DevSecOps Engineer

Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who we are supporting 

The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium.

The NCIA provides a wide range of services, including:

• Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats.
• Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations.
• Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces.
• Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks.
• Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers.

Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities.

The program

Assistance and Advisory Service (AAS)

The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V.

To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce.

Role Background

NCI Agency is undertaking a major infrastructure modernization project, enabling comprehensive application lifecycle management. In addition, existing applications will have to be migrated to the new infrastructure. The main objective of this statement of work is to support the ITM RC1 team with planning, performing, testing, validating and documenting this body of work. Specifically, this comprises of:

• Implementing DevSecOps and automation capabilities (GitOps, Kubernetes, Ansible)
• Transitioning suitable applications from a hypervisor to a container platform
• Migrating legacy virtual machine payloads

Role Duties and Responsibilities

Under the direction / guidance of the NCIA Point of Contact or delegated staff, the DevSecOps engineer will support building the ITM RC1 Application Migration team

This includes the following activities:

• Develop containers and Terraform and Ansible scripts for existing applications
• Develop / maintain infrastructure as code for deployment and configuration of infrastructure (VMs, Disks), core services (AD, CA, Exchange etc.), and applications (NATO and Commercial Application)
• Contribute to design and implementation of infrastructure as code and container orchestration services
• Contribute to the design and implementation of an overall DevSecOps capability
• Migrate Virtual Machines legacy payloads
• Implement hardening, compliancy and security scanning
• Create pipelines and self-service solutions for deploying test environments using infrastructure as code
• Participate in entire lifecycle activities – including design, testing, training anssd documentation

Essential Skills and Experience

• They have relevant and recent experience in administrating complex applications or systems.
• They have a track record in DevSecOps and has strong problem solving skills.
• They have extensive and recent experience with and knowledge of Continuous integration and delivery, including the following tools and technologies and concepts:
  • Git (mandatory)
  • Ansible (mandatory)
  • Docker (mandatory)
  • Jenkins (mandatory)
  • Terraform/OpenTofu (mandatory)
  • VMWare vSphere (mandatory)
  • Designing and implementing build/deploy pipelines
• They have extensive and recent experience with and knowledge of Continuous Operations, including the following tools and technologies and concepts:
  • Kubernetes
  • GitOps
  • Container Registry
• They have experience with designing and maintaining Sharepoint, SQL Server, Postgres, Active Directory and Exchange solutions
• They have relevant and recent experience in using Scrum methodology.
• They have strong customer relationship skills, including negotiating complex and sensitive situations under pressure.
• They are able to speak and write fluent English since the work is conducted in English.
• They must have the nationality of one of the NATO nations.

Working Location

• Possibility of 2 locations, The Hague, Netherlands or Braine L'Alleud, Belgium.

Working Policy

• On-Site

Travel

• Some travel to other NATO sites may be required

Security Clearance

• Valid National or NATO Secret personal security clearance