IT Cybersecurity Specialist

Gaithersburg, Maryland
Jan 18, 2022
Jan 25, 2022
Full Time

In this position the selected candidate will be working as an IT Cybersecurity Specialist (Software Developer) in the Information Technology Laboratory, Computer Security Division is thrilling and rewarding. You will serve as a member of a team of cybersecurity and engineering professionals responsible for designing, developing, implementing, and continually supporting novel security automation solutions for cloud-based and on premises systems.

These positions will involve the development of security automation solutions expanding on the NIST Open Security Controls Assessment Language (OSCAL) that sets the foundation for security assessment automation.

The selected individual will:
- Using data modeling techniques design, develop, and maintain OSCAL models using the XML Schema and JSON Schema formats. This includes developing requirements, presentations, technical documentation, and tutorials for these models.
- Develop guidance, reports, and special publications on OSCAL related topics.
- Coordinate and participate in public working groups and standards development organizations (SDOs) to develop international, consensus-based standards based on OSCAL.
- Develop tools and processing libraries in Javascript/NodeJS, .Net, GoLang, Python, or Ruby for creating, validating, processing, and converting content based on the OSCAL models in XML, JSON, and YAML formats. Integrate these tools using Bash scripts into a Linux-based, continuous integration/continuous deployment (CI/CD) environment.
- Apply agile development techniques to gather and manage requirements, develop user stories, implement code using test-driven development, communicate development progress to stakeholders, and manage software releases to production. Use Git-based tools (or equivalent) for source revision control and release management.


Conditions of Employment

  • U.S. citizenship
  • Males born after 12-31-59 must be registered for Selective Service
  • Suitable for Federal employment
  • Fully vaccinated against COVID-19


Basic Requirements:

Experience must be IT related; the experience may be demonstrated by paid or unpaid experience and/or completion of specific, intensive training (for example, IT certification), as appropriate GS-5 through GS-15 (or equivalent): For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below. The employing agency is responsible for identifying the specific level of proficiency required for each competency at each grade level based on the requirements of the position being filled. Attention to Detail- Is thorough when performing work and conscientious about attending to detail. Customer Service- Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication- Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately. Problem Solving- Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. In addition to the above requirements: applicants must have one year (52 weeks) of specialized experience equivalents to at least the GS-9 level. Specialized experience is defined as previous experience as junior software architect and software developer is required. Experience with data modeling techniques.

3 full years of progressively higher-level graduate education leading to a Ph.D. or equivalent doctoral degree.

Ph.D. or equivalent doctoral degree

For ZP-IV:

In addition to the above requirements: Applicants must have one year (52 weeks) of specialized experience equivalent to at least the GS-12 level (ZP-III at NIST). Specialized experience is defined as previous experience as senior software architect and software developer is required. Experience with data modeling techniques and technical documentation writing related to security automation.

Experience refers to paid and unpaid experience, including volunteer work done. We will credit all qualifying volunteer experience in your application.

The qualification requirements in this vacancy announcement are based on the U.S. Office of Personnel Management (OPM) Qualification Standards Handbook .

Applicant Reconsideration


This position has an education requirement. Transcripts must be submitted to validate that the education requirement has been met. Unofficial transcripts will be accepted in the application package. However, an official copy will be required prior to a final offer of employment.

Education completed outside of the U.S. must be evaluated by an accredited organization to ensure that it is comparable to education received in accredited institutions in the U.S. Click here to view a listing of accredited organizations from the Department of Education's website. A copy of the foreign education evaluation (containing the results with a course by course listing) is required with your application.

Additional information

As required by Executive Order 14043 , Federal employees are required to be fully vaccinated against COVID-19 regardless of the employee's duty location or work arrangement (e.g., telework, remote work, etc.), subject to such exceptions as required by law. If selected, you will be required to be vaccinated against COVID-19 and submit documentation of proof of vaccination by November 22, 2021 or onboarding with the agency, if after November 22. The agency will provide additional information regarding what information or documentation will be needed and how you can request of the agency a legally required exception from this requirement.

The physical worksite for this position is located in Gaithersburg, Maryland. However, the Computer Security Division is currently under a mandatory telework posture due to the COVID-19 pandemic; therefore, this position is currently under a 100 percent telework schedule. The position's telework schedule will likely change in the future when Computer Security Division moves away from its mandatory telework posture. At that time, the incumbent will be expected to report to the physical work site in accordance with the updated status requirements of their supervisor. The nature and scope of future telework opportunities will be subject to the unit's telework policy, any applicable bargaining unit agreements, and supervisory approval. Payment of relocation expenses, as applicable, will be paid in accordance with this Job Opportunity Announcement. Non-compliance with the supervisor's telework-schedule requirement could result in adverse action, including separation.

This position is covered under NIST's Alternative Personnel Management System (APMS). The APMS is a pay-for-performance system with excellent HR flexibilities to help NIST recruit and retain top talent. Find out more about the APMS here !

A probationary period may be required.

We may share your application package with other selecting officials at NIST with opportunities like this one. Additional selections may be made through this vacancy.

NIST strives to build a flexible and encouraging work environment to bring out the best in our employees. To help our employees balance responsibilities at home and at work, NIST offers a variety of work-life flexibilities such as:
  • Telework
  • Flexible work schedules
  • Paid parental leave
  • Paid vacation
  • Sick leave
  • Family-friendly leave
  • Child and elder-care resources
  • On-site childcare center
  • Lactation spaces
  • Wellness programs
  • Fitness center
  • Employee assistance programs

More searches like this