FedRAMP Security Assurance Automation Developer

Responsibilities

Noblis is seeking a FedRAMP Security Assurance Automation Developers to help design, develop, and deploy modern technology solutions that will drive substantial gains in FedRAMP business process efficiency, and address key internal and external process challenges.

The ideal candidate possesses a combination of software development skills and cybersecurity assurance experience, with a passion for process improvement and automation. 

Responsibilities:

• OSCAL Integration: Work closely with our FedRAMP teams to integrate OSCAL machine readable data formats into our software solutions, to ensure that cloud service offering (CSO) security controls are accurately represented, implemented, and are capable of being assessed in an automated way.
• Automation Implementation: Develop, enhance, and maintain software components that enable automated review, validation, and assessment of CSO control implementations.  Additionally, ensure developed solutions enable scaling FedRAMP authorization and continuous monitoring processes to support hundreds of current and new FedRAMP CSOs.
• Collaboration: Collaborate with cross-functional teams to create robust and secure OSCAL-capable solutions for processing documents (e.g. SSP, SAP, SAR, and POA&M) submitted by cloud service provider (CSP) and 3PAOs, and sharing pertinent information (e.g. via APIs and dashboards) with stakeholders, including cloud service providers’ federal agency customers.
• Documentation: Create and maintain detailed documentation of software designs, implementations, and compliance measures, facilitating transparency and knowledge transfer within the team.

Required Qualifications

• Bachelors degree in related technical field.
• While experience with Open Security Controls Assessment Language (OSCAL) is essential, we will consider relevant experience operationalizing NIST standards for automating assessments, such as Security Content Automation Protocol (SCAP) and Open Vulnerability and Assessment Language (OVAL).
• Proficient in programming languages such as Java, C#, Python, TypeScript, NodeJS, and GoLang.
• Extensive experience with structured data formats such as XML, JSON, and YAML
• Experience developing scripts for continuous integration / continuous development (CI/CD) environment pipelines.
• Experience implementing and/or integrating with APIs. 
• Experience working in a Linux-based environment, including familiarity with containers.
• Proven experience as a software developer, with a focus on cybersecurity compliance.
• Strong understanding of NIST Risk Management Framework (RMF), ISO/IEC 27001, and others.
• Excellent problem-solving skills and the ability to work in a collaborative team environment.
• Strong communication skills, both written and verbal.
• Must be an US citizen and able to obtain a public trust. 

 

Desired Qualifications

• Familiarity with rules-based validation, transformation, and query languages such as Schematron, XSD, XSLT, and XPath are strongly desired.
• Some experience with markup languages, including HTML or Markdown. 

Overview

Noblis and our wholly owned subsidiaries, Noblis ESI, and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us

 

Why work at a Noblis company?

Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards. Noblis maintains a drug-free workplace.

Salary Range Explanation

At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits page on our Careers site.

 

Salary at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, and clearance level, as well as contract-specific affordability and organizational requirements and applicable employment laws. The projected compensation range for this position is provided within the posting and are based on full time status. Part time staff receive a prorated salary based on regularly scheduled hours. The estimated minimum and maximum displayed represents the broadest range for this position (inclusive of high geographic and high clearance requirements), and is just one component of Noblis’ total compensation package for employees.

 

Posted Salary Range

USD $67,800.00 - USD $118,700.00 /Yr.

Equal Employment Opportunity

Noblis is an Equal Opportunity Employer. Employment decisions are made without regard to race (as well as because of or on the basis of traits historically associated with race, including hair texture, hair type, and protective hairstyles such as braids, locks, and twists), color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, pregnancy, childbirth, lactation and related medical conditions, genetic factors, military/veteran status, or other characteristics protected by law.

 

Noblis is committed to the full inclusion of all qualified individuals. As part of this commitment, Noblis will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact employee-relations@noblis.org.