FedRAMP Security Assurance Automation Developer (Multiple Levels)

Posted Date 8 months ago(4/3/2024 3:07 PM)
Requisition #
23082
Security Clearance
Public Trust
Employment Type
Full Time
Portal Location : Location
US-Remote
Telework Options
Remote
Company
Noblis

Responsibilities

Noblis is seeking a FedRAMP Security Assurance Automation Developers to help design, develop, and deploy modern technology solutions that will drive substantial gains in FedRAMP business process efficiency, and address key internal and external process challenges.

The ideal candidate possesses a combination of software development skills and cybersecurity assurance experience, with a passion for process improvement and automation. 

 

Responsibilities:

  • OSCAL Integration: Work closely with our FedRAMP teams to integrate OSCAL machine readable data formats into our software solutions, to ensure that cloud service offering (CSO) security controls are accurately represented, implemented, and are capable of being assessed in an automated way.
  • Automation Implementation: Develop, enhance, and maintain software components that enable automated review, validation, and assessment of CSO control implementations.  Additionally, ensure developed solutions enable scaling FedRAMP authorization and continuous monitoring processes to support hundreds of current and new FedRAMP CSOs.
  • Collaboration: Collaborate with cross-functional teams to create robust and secure OSCAL-capable solutions for processing documents (e.g. SSP, SAP, SAR, and POA&M) submitted by cloud service provider (CSP) and 3PAOs, and sharing pertinent information (e.g. via APIs and dashboards) with stakeholders, including cloud service providers’ federal agency customers.
  • Documentation: Create and maintain detailed documentation of software designs, implementations, and compliance measures, facilitating transparency and knowledge transfer within the team.

Required Qualifications

  • While experience with Open Security Controls Assessment Language (OSCAL) is essential, we will consider relevant experience operationalizing NIST standards for automating assessments, such as Security Content Automation Protocol (SCAP) and Open Vulnerability and Assessment Language (OVAL).
  • Proficient in programming languages such as Java, C#, Python, TypeScript, NodeJS, and GoLang.
  • Extensive experience with structured data formats such as XML, JSON, and YAML
  • Experience developing scripts for continuous integration / continuous development (CI/CD) environment pipelines.
  • Experience implementing and/or integrating with APIs. 
  • Experience working in a Linux-based environment, including familiarity with containers.
  • Proven experience as a software developer, with a focus on cybersecurity compliance.
  • Strong understanding of NIST Risk Management Framework (RMF), ISO/IEC 27001, and others.
  • Excellent problem-solving skills and the ability to work in a collaborative team environment.
  • Strong communication skills, both written and verbal.
  • Must be an US citizen and able to obtain a public trust. 

Jr level

Bachelor's or Master’s degree in Computer Science, Software Engineering, or a related field plus 1 years of experience; or associate degree + 4 years of experience; or high school + 7 years of experience,

Compensaton: $61,600 - $96,250

 

Mid level

Bachelor's degree in Computer Science, Software Engineering, or a related field plus 5 years of experience. Or master's degree + 3 years of experience; or associate degree + 8 years of experience, Or high school + 11 years of experience,

Compensation: $74,500 - $154,825

 

Senior level

Bachelor's degree in Computer Science, Software Engineering, or a related field plus 8 years of experience; or master's degree + 6 years of experience; or associate degree + 11 years of experience; or high school + 14 years of experience,

Compensation: $99,100 - $170,450

 

 

Desired Qualifications

  • Familiarity with rules-based validation, transformation, and query languages such as Schematron, XSD, XSLT, and XPath are strongly desired.
  • Some experience with markup languages, including HTML or Markdown. 

Overview

Noblis and our wholly owned subsidiaries, Noblis ESI, and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us

 

Why work at a Noblis company?

Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards. Noblis maintains a drug-free workplace.

Total Rewards

At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits page on our Careers site.

 

Compensation at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, clearance level, as well as contract-specific affordability, organizational requirements and applicable employment laws. The projected compensation range for this position is based on full time status. For part time or on-call staff, compensation is proportionately adjusted based on hours worked. While monetary compensation is important, it's just one component of Noblis’ total compensation package.

Posted Salary Range

USD $61,600.00 - USD $170,450.00 /Yr.

Equal Employment Opportunity

Noblis is an Equal Opportunity Employer. Employment decisions are made without regard to race (as well as because of or on the basis of traits historically associated with race, including hair texture, hair type, and protective hairstyles such as braids, locks, and twists), color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, pregnancy, childbirth, lactation and related medical conditions, genetic factors, military/veteran status, or other characteristics protected by law.

 

Noblis is committed to the full inclusion of all qualified individuals. As part of this commitment, Noblis will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact employee-relations@noblis.org.

Apply for this job

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Connect With Us!

Want to know about available job opportunities at Noblis? Want to receive personalized alerts with jobs that match your skills and interests? Join the Noblis Talent Connection.