At the head of the Authority is its director, who is responsible for its activities, manages the Authority and represents it externally. During their absence they are substituted by the Deputy Director to a previously determined extent. The Deputy Director is normally responsible for the coordination of the Authority’s individual units and project teams. The Authority is organisationally divided into departments or directly managed divisions. Departments are divided into divisions.
The NSA Office coordinates the Authority’s individual units and provides and conducts essential administrative and organisational activities connected with the management and function of the Authority. It also supports legislative and legal matters of the Authority, carries out personnel and salary policy of the Authority, coordinates international cooperation, builds and develops external relations and cooperation with state bodies, the academic community and public sector, and provides communication to the public.
The Security Clearance Department conducts activities concerning security clearances of citizens and entrepreneurs and provision of dossiers to the Judicial Council of the Slovak Republic, deciding on fulfilment of conditions regarding to the judicial competence of judge nominees. Apart from issuing national security clearance certificates for access to national classified information, it issues security clearance certificates for access to NATO and EU classified information both for persons and entrepreneurs.
The Technical Department conducts accreditation and certification processes in the field of classified information protection (concerning areas of personnel security, security of information, physical security, and information assurance). It is also responsible for encrypted protection of information, facility security, cybersecurity, and trust services. It operates the Authority’s CISs. It coordinates with and fulfils tasks within the National Security Analytical Centre and National SK-CERT unit.
The National SK-CERT Unit fulfils the tasks of the national CSIRT unit and other tasks in the field of cybersecurity.
The Regulation and Supervision Division fulfils tasks in the area of the provision of inspections, audits and supervisions. It issues positions and methodologies to generally binding legislation and international agreements and documents within the scope of the Authority. It grants and revokes qualified status. It elaborates conceptual and strategical documents, security and knowledge standards, certification policies and signature policies, policies of behaviour in cyberspace, rules for the prevention of cybersecurity incidents and rules on incident solutions. It elaborates analysis and reports on the status of classified information protection, encrypted protection of information, cybersecurity, and trusted services, and it advises appropriate measures, drafts of generally binding legislation and other binding documents within the competence of the Authority.
The Economy and Operations Department administers the Authority’s budgetary affairs, coordination in the process of effective management of financial recourses including accounting, reporting, management and maintenance of the Authority’s property and Authority’s public procurements.
The Internal Security Division assures the internal security of the Authority and conducts physical and technical protection of the Authority’s premises. It carries out internal and finance inspections, it processes complaints and petitions.
The Internal Auditor carries out internal audit of the Authority and fulfils other tasks according to the Act on Financial Inspection and Audit.