Advisor on Risk Management to provide expertise for the Head of the Defence Procurement Agency under the Ministry of Defence of Ukraine

General background

The EUACI is a collaborative initiative funded by the European Union and the Government of Denmark, with the aim of supporting Ukraine in its efforts to reduce corruption at both national and local levels. The new phase, launched in January 2024, focuses on key strategic objectives: reducing corruption in Ukraine, advancing anticorruption reforms, and implementing reconstruction efforts in war-affected areas with a strong emphasis on transparency, accountability, and integrity.

Also, against the backdrop of challenges and institutional threats resulting from the wartime, the EUACI is implementing the project “Enhancing Integrity in the Defence Sector” with funding from, the European Union’s Foreign Policy Instruments (FPI) (hereinafter – EUACI Defence Program).

One of the beneficiaries of the EUACI Defence Program is the Defence Procurement Agency under the Ministry of Defence of Ukraine (hereinafter – DPA).

DPA – is a state enterprise, established to optimize and centralize procurement processes in the field of national security and defence. Its main goal is to ensure transparency and efficiency in defence procurement, as well as the timely and high-quality supply of equipment and materials to the Armed Forces of Ukraine.

Previously, the DPA was responsible only for the procurement of lethal defence equipment. However, from January 1, 2026, following the integration of the State Operator for Non-Lethal Acquisition (SE DOT), the DPA functions as a unified agency that also carries out defence procurement of non-lethal nomenclature.

The scope of activity and tasks set before the DPA regarding procurement program management require continuous improvement of processes and procedures based on a risk-oriented approach that comply with national legislation requirements and take into account internationally recognized practices and standards.

The NATO-Ukraine Strategic Review of Defence Procurement also endorsed a recommendation to develop a robust compliance system for the defenсe procurement process, which includes the need to establish a risk management approach for the procurement system that will reduce risks and ensure continuous long-term improvement of the process.

Objective

To provide expert advisory support to the Head of the DPA on the development, implementation, and operation of an effective integrated risk management system with an emphasis on countering corruption risks and in line with national legislation, international and NATO standards, and best practices.

The assignment aims to promote good governance, improve decision-making and coordination between risk owners, control units, management bodies (the Supervisory Board and the Head of the DPA), and in particular to contribute to preventing fraud, corruption, and other risks within the Agency.

Scope of work

The scope of work of the assignment stipulates the providing following tasks, including, but not necessarily limited to:

1. Assist the Head of the DPA in ensuring the overall risk assessment process for seven procurement programmes and the Agency’s functional environment with a particular focus on the governance of corruption risks;
2. Develop/update the methodology of a risk-assessment process to strengthen and refine applicable approaches;
3. Facilitate and drive risk analysis process and supporting documentation;
4. Contribute to the development, maintenance, and review of the Agency’s risk register and its Action Plan for eliminating and/or mitigating identified risks (hereinafter – the Action Plan), including corruption risks;
5. Provide support the Head of the DPA in the implementation of the Agency’s risk register and the corresponding Action Plan;
6. Support the assessment and rating of the Agency’s risk tolerance, risk appetite and overall risk profile, including participation in the preparation, finalisation, and implementation of the Agency’s risk appetite statement (declaration);
7. Contribute to the preparation and improvement of internal regulatory documents (policies, procedures, regulations, methodologies, etc.) on risk-management and compliance issues related to the DPA’s sphere of activities and operations;
8. Provide expertise and advisory services to the Head of the DPA regarding risk minimization, integrity and good governance practices applicable to the Agency’s operations and defence procurement activities;
9. Provide advice and mentoring for DPA staff and Supervisory Board members on risk management standards, corruption risk mitigation, and other relevant matters;
10. Ensure coordination of all assignment-related activities with the Head of the DPA and other authorised Agency staff;
11. Liaise with the EUACI Programme team to maintain adequate and proactive cooperation with the DPA, provide written reports on the results of assignment activities;
12. Perform other tasks related to the scope of work and as agreed with the EUACI Programme leadership.

Expected deliverables:

1. Policy recommendations on enhancing Agency risk-management system, including:
   • Input to the overall risk assessment process with a particular focus on the governance of corruption risks and preparation a report on the results was ensured;
   • A risk register and an action plan for its implementation were developed;
   • The Agency’s risk tolerance, risk appetite was assessed and determined for each procurement program and risk area;
   • The Agency’s risk tolerance, risk appetite was assessed and determined for each procurement program and risk area;The risk profile of the DPA was determined;
   • A risk appetite statement (declaration) of the Agency was prepared.
2. Input to implementation of developed policy recommendations was provided.
3. Analytical notes, presentations, memos, peer-review of the draft internal policies and regulations, as agreed with the Agency.
4. Participations in working-level meetings, working groups, public meetings and event (if needed) to present findings and analysis of the activity’s implementation, provide advice, training and mentoring support.
5. Written reports on the results of the advisor’s work and developed documents or activities held.
6. Coordination meeting and processes under the request of the Head of the Agency, 
7. Providing relevant capacity building activities.
8. Monthly timesheets (progress reports) summarising actual days worked, key tasks performed, and results achieved over the reporting period (in English).
9. Completion report consolidating key results, delivered policy recommendations and proposals for further strengthening the DPA’s risk management capacity (in English).
10. Other deliverables as agreed upon with the Agency and the EUACI.

The Advisor is expected to achieve specific deliverables in accordance with a workplan developed with the DPA under the coordination of the EUACI.

Written deliverables should be in Ukrainian, unless otherwise specifically indicated herein or agreed with EUACI. Deliverables should be translated into English upon request of EUACI.

Budget, timeframe, and location

The maximum budget available for this assignment is up to EUR 33 000. The Advisor will be contracted as a private entrepreneur and will be responsible for paying his/her own taxes.

Payments to the Advisor shall be done on a monthly basis against Advisor’s timesheet and invoice for the respective period. Payments shall be based on the actual days worked, the agreed daily fee rate, and the expenses occurred by the Advisor during the period (if any).

The intended commencement date is the date of signature of the contract with the consultant and the period of implementation of the contract will be 10 months, with a start in March 2026, duration of maximum 220 working days.

The Advisor is expected to perform the assignment primarily on the Agency’s premises. Remote work arrangements are possible; however, attendance at the office may be required upon request of the DPA or the EUACI.

Requirements to the Service Provider

The contract will be awarded to the expert meeting the following criteria: 

General qualifications: 

1. a minimum of a Master’s degree in law, finance, economics, public administration, or similar field is required, 
2. proven experience in implementing risk management systems in accordance with international standards such as ISO 31000, COSO, IFRS, SOX, or equivalent frameworks,
3. proven knowledge and understanding of public procurement legislation, including its specific application during wartime; demonstrated familiarity with defence procurement legislation in a wartime context shall be considered an asset,
4. Experience working with promoting good governance, transparency, integrity and countering corruption risks within public authorities in Ukraine would be an advantage,
5. strong analytical skills, with the ability to work with complex data and develop practical, actionable recommendations for senior management,
6. demonstrated capacity for drafting high-quality policy documents and supporting templates,
7. experience in interacting with senior management bodies of public sector organizations or government agencies, preferably in the security and defence sector,
8. fluency in Ukrainian is required, 
9. ability to speak and write in English language is required,
10. having the professional certification such as COSO ERM Certificate, ISO 31000 Risk Management Professional Certificate or similar and/or in related sphere (may be consider as an advantage).

Adequacy for the assignment:

1. at least 7 years of proven experience in risk management, internal control, compliance or anti-corruption systems, particularly in the public sector, large private companies and/or in international projects;
2. proven experience in cooperation with stakeholders in national government, local self-government, development partners, procurement organisations, public or large private business; 
3. strong capacity to combine deep expertise in risk management principles with the ability to apply them pragmatically across process development and operational activities,
4. experience in guiding internal stakeholders to effectively cooperate through planning and implementation processes,
5. ability to provide advisory support, mentor key responsible and authorised staff and officials, and transfer practical knowledge and skills,
6. excellent written and verbal communication skills,
7. proven ability to meet tight deadlines and deliver high-quality results,
8. demonstrated professionalism, ethics, integrity and credibility

Monitoring and evaluation

Definition of indicators

The performance of the Advisor will be judged upon reaching the purpose of this contract as well as obtaining its results, as indicated in the section “Objective” and “Expected Deliverables” herein respectively. Moreover, the performance of the Advisor will be judged upon the successful implementation of all the specific activities indicated in Section “Scope of work” and “Specific Deliverables” of this document.

Reporting and management

The Advisor will work as an external consultant for the Head of the DPA and in close cooperation with the Director on risk management and compliance, and his subordinate units.

The Advisor will submit a monthly report to the EUACI Project Manager, who will review the deliverables indicated above and approve payment of the Advisor’s fees.

Special requirements

By signing the contract, the contractor (and its representatives) agrees to hold in trust and confidence any information or documents (“confidential information”), disclosed to the contractor or discovered by the contractor or prepared by the contractor in the course of or as a result of the implementation of the contract, and agrees that it shall be used only for the purposes of the contract implementation and shall not be disclosed to any third party without EUACI authorization.

By signing the contract, the сontractor undertakes to conclude with the DPA an agreement on non-disclosure of information obtained during the performance of the contract, in the form and on the terms determined by the Agency, including all annexes and documents necessary for its implementation.

The performance of the contract also provides for the mandatory passage of a security clearance conducted by the DPA both prior to the commencement of the assignment and, if required, during the term of the contract. A negative conclusion resulting from the security clearance shall constitute grounds for refusal of cooperation or for unilateral termination of the contract by the EUACI.

The contractor reports to the Head of the DPA and the EUACI. The contractor shall de-brief the EUACI prior to finalizing the assignment. Regularly planning and reporting sessions with the representative of the Agency and the EUACI are expected.

How to apply

The deadline for submitting the proposal is 24 February 2026, 18:00 Kyiv time.

All interested candidates should submit the following documents in English:

• The CV (no more than 5 pages long) that should include description of the previous relevant assignments, key duties on this assignment;
• Portfolio of previously implemented projects and outputs relevant to the position or description of assignments and deliverables similar to this project;
• Financial offer in EUR, including daily fee and inclusive of all taxes or other such charges with calculation daily rate and number of working days proposed for this activity.

If these documents are not submitted in line with the requirements above, the bid will not be considered.

The proposal shall include the aforementioned information and should be submitted within the above deadline to [email protected] cc to [email protected] indicating the subject line: “Risk management Advisor for the DPA”.

Bidding language: English.

Any clarification questions regarding the terms of reference should be addressed to [email protected], not later than 18 February 2026, 18-00 Kyiv time.

Evaluation criteria

Bids will be evaluated under the criteria provided below: