Office of Solutions: FedRAMP Cyber Data Engineer
This job posting has closed.
Please see our other open positions.
Basic information
Open to U.S. citizens or nationals (residents of American Samoa and Swains
Island). Subject to background check. Full information
is
available on
USAJOBS.
Supervisory status: Non-Supervisory
Job title: Office of Solutions: FedRAMP Cyber Data Engineer
Official title in USAJOBS: Data Scientist (CYBERSECURITY)
Number of vacancies: 1
Location: Anywhere in the U.S. (remote)
Salary range: GS-15 ($143,736 to $191,900)
Your salary, including base and locality, will be determined upon selection,
dependent on your actual duty location. Please note the maximum salary available
for the GS pay system is $191,900. For specific details on locality pay, please
visit OPM’s Salaries & Wages page
or for a salary calculator
OPM’s 2024 General Schedule (GS) Salary Calculator. You can find more
information in our
compensation and benefits section.
Travel requirement:
Occasional travel may be required up to 10%-20% per year.
Work schedule:
Full time.
Appointment type:
This is a term appointment. Initial appointments are made lasting longer than
1 year, but not to exceed 4 years. GSA, may extend an appointment up to 4
additional years. No individual hired under this DHA can serve in excess of 8
years with GSA, and cannot be transferred to positions that are not IT
positions.
Learn more about the benefits of working at
GSA and
TTS.
Role summary
FedRAMP’s Cyber Data Engineer will take the lead in the development of intuitive data products such as models, visualizations, and recommendation engines that help the federal government make risk management decisions. This technology work will be a critical foundation for a proactive, data-centric approach that ensures that cloud products and infrastructure are safe and easy for federal agencies to use.
FedRAMP was created in 2011 to accelerate the government’s use of commercial cloud services, by creating a standardized process for security review and authorization and making security information easily available to agencies. More generally, FedRAMP operates as a bridge between the public and private sectors, to help companies that offer innovative services navigate federal security expectations to bring the best of the private sector into government.
Since then, cloud offerings have changed substantially and agency needs have focused more on software-as-a-service products. In recent years, Congress and the White House have updated the program’s mission and authorities, with a mandate to scale and modernize the program, while continuing to ensure the high bar of security that the public expects around government data and operations. One of FedRAMP’s key shifts is a focus on transitioning from document-based to data-driven and informed risk managers.
This position will serve as a senior member of the FedRAMP Program Management Office (PMO) working on the development of data products that support our modernization goals. The program is focused on operating as a data-centric program to support scaling its processes and ensuring a trusted marketplace of cloud services.
As the Cyber Data Engineer, you will build partnerships with senior cybersecurity and technical staff within the program as well as agencies. You will build an understanding of the needs of the different user communities, from front line staff to executives. You will apply this understanding in leading the development of user-centered, insightful, and interactive data-driven products that produce a clear risk picture that supports risk-based decision making and action.
Through your engagement with our customers, you will identify and support community-driven solutions to data needs, and help build a community of data practitioners that are using FedRAMP’s data to empower their decision making.
Key objectives
1. You will increase program effectiveness through automation and technology-forward operations.
-
Be a champion for the organization’s vision to drive an improved customer experience for cloud providers and agencies with FedRAMP.
-
Develop high-impact data products and tools aimed at cloud providers and government agencies that support the continued growth of the trusted FedRAMP Marketplace.
-
Design and implement algorithms, statistical methods, and models that can analyze large datasets of structured and semi-structured security data (such as vulnerability data and security architecture information).
-
Develop open source tooling and visualizations, using general-purpose programming languages (such as Python) and/or tools optimized for statistical and data analysis (such as R).
2. You will establish strategic, collaborative relationships with FedRAMP stakeholders and develop a deep understanding of program-related resources, policies, and best practices that impact their team members.
-
Engage with members of TTS and FedRAMP to develop solutions based on a customer service mindset. Share best practices and tools with your peers across the organization
-
Build partnerships with external organizations to develop novel collaborative, data driven approaches to cybersecurity, compliance, and risk management activities.
-
Work with agency partners to identify and establish tooling, best practices and processes to better understand the cybersecurity and risk posture of cloud systems.
-
Identify present and future cybersecurity data needs, and shift FedRAMP to become a data-centric program.
3. You will apply relevant technical knowledge to support program operations.
-
Apply modern machine learning, data translation, and data analysis techniques to solve complex data problems, and create data products that inform risk management decisions.
-
Have an understanding of modern technology systems, especially cloud-based software and computing infrastructure.
-
Maintain an understanding of current FedRAMP policy and processes as they pertain to assessment and continuous monitoring of commercial cloud services.
Qualifications
Provide as much detail as possible on your resume so that we can evaluate your
previous experience. Follow our
guidance on creating a federal style resume.
Failure to provide required information may result in disqualification.
For each job on your resume, provide:
- The exact dates you held each job (from month/year to month/year or “present”)
- Number of hours per week you worked (if part time)
SPECIALIZED EXPERIENCE REQUIREMENTS:
To qualify, you must have one (1) year of specialized experience at the next
lower GS-grade (or equivalent). Specialized experience is defined as follows:
- Developing and deploying data products and visualizations using data science, statistical, and artificial intelligence/machine learning techniques to facilitate users data-driven decision making.
- Collaborating across roles and organizations to build strategic relationships, achieve common goals, and resolve sensitive issues.
- Performing continuous improvement of data products to meet current and evolving user needs by monitoring user feedback, performance, accuracy, and reliability.
- Developing tooling, models, and visualizations using general-purpose programming languages (such as Python) and/or tools optimized for statistical and data analysis (such as R).
How to Apply
This job posting has closed.
Please see our other open positions.
Basic information
Open to U.S. citizens or nationals (residents of American Samoa and Swains Island). Subject to background check. Full information is available on USAJOBS.
Supervisory status: Non-Supervisory
Job title: Office of Solutions: FedRAMP Cyber Data Engineer
Official title in USAJOBS: Data Scientist (CYBERSECURITY)
Number of vacancies: 1
Location: Anywhere in the U.S. (remote)
Salary range: GS-15 ($143,736 to $191,900)
Your salary, including base and locality, will be determined upon selection, dependent on your actual duty location. Please note the maximum salary available for the GS pay system is $191,900. For specific details on locality pay, please visit OPM’s Salaries & Wages page or for a salary calculator OPM’s 2024 General Schedule (GS) Salary Calculator. You can find more information in our compensation and benefits section.
Travel requirement: Occasional travel may be required up to 10%-20% per year.
Work schedule: Full time.
Appointment type: This is a term appointment. Initial appointments are made lasting longer than 1 year, but not to exceed 4 years. GSA, may extend an appointment up to 4 additional years. No individual hired under this DHA can serve in excess of 8 years with GSA, and cannot be transferred to positions that are not IT positions.
Learn more about the benefits of working at GSA and TTS.
Role summary
FedRAMP’s Cyber Data Engineer will take the lead in the development of intuitive data products such as models, visualizations, and recommendation engines that help the federal government make risk management decisions. This technology work will be a critical foundation for a proactive, data-centric approach that ensures that cloud products and infrastructure are safe and easy for federal agencies to use.
FedRAMP was created in 2011 to accelerate the government’s use of commercial cloud services, by creating a standardized process for security review and authorization and making security information easily available to agencies. More generally, FedRAMP operates as a bridge between the public and private sectors, to help companies that offer innovative services navigate federal security expectations to bring the best of the private sector into government.
Since then, cloud offerings have changed substantially and agency needs have focused more on software-as-a-service products. In recent years, Congress and the White House have updated the program’s mission and authorities, with a mandate to scale and modernize the program, while continuing to ensure the high bar of security that the public expects around government data and operations. One of FedRAMP’s key shifts is a focus on transitioning from document-based to data-driven and informed risk managers. This position will serve as a senior member of the FedRAMP Program Management Office (PMO) working on the development of data products that support our modernization goals. The program is focused on operating as a data-centric program to support scaling its processes and ensuring a trusted marketplace of cloud services.
As the Cyber Data Engineer, you will build partnerships with senior cybersecurity and technical staff within the program as well as agencies. You will build an understanding of the needs of the different user communities, from front line staff to executives. You will apply this understanding in leading the development of user-centered, insightful, and interactive data-driven products that produce a clear risk picture that supports risk-based decision making and action.
Through your engagement with our customers, you will identify and support community-driven solutions to data needs, and help build a community of data practitioners that are using FedRAMP’s data to empower their decision making.
Key objectives
1. You will increase program effectiveness through automation and technology-forward operations.
-
Be a champion for the organization’s vision to drive an improved customer experience for cloud providers and agencies with FedRAMP.
-
Develop high-impact data products and tools aimed at cloud providers and government agencies that support the continued growth of the trusted FedRAMP Marketplace.
-
Design and implement algorithms, statistical methods, and models that can analyze large datasets of structured and semi-structured security data (such as vulnerability data and security architecture information).
-
Develop open source tooling and visualizations, using general-purpose programming languages (such as Python) and/or tools optimized for statistical and data analysis (such as R).
2. You will establish strategic, collaborative relationships with FedRAMP stakeholders and develop a deep understanding of program-related resources, policies, and best practices that impact their team members.
-
Engage with members of TTS and FedRAMP to develop solutions based on a customer service mindset. Share best practices and tools with your peers across the organization
-
Build partnerships with external organizations to develop novel collaborative, data driven approaches to cybersecurity, compliance, and risk management activities.
-
Work with agency partners to identify and establish tooling, best practices and processes to better understand the cybersecurity and risk posture of cloud systems.
-
Identify present and future cybersecurity data needs, and shift FedRAMP to become a data-centric program.
3. You will apply relevant technical knowledge to support program operations.
-
Apply modern machine learning, data translation, and data analysis techniques to solve complex data problems, and create data products that inform risk management decisions.
-
Have an understanding of modern technology systems, especially cloud-based software and computing infrastructure.
-
Maintain an understanding of current FedRAMP policy and processes as they pertain to assessment and continuous monitoring of commercial cloud services.
Qualifications
Provide as much detail as possible on your resume so that we can evaluate your previous experience. Follow our guidance on creating a federal style resume.
Failure to provide required information may result in disqualification.
For each job on your resume, provide:
- The exact dates you held each job (from month/year to month/year or “present”)
- Number of hours per week you worked (if part time)
SPECIALIZED EXPERIENCE REQUIREMENTS:
To qualify, you must have one (1) year of specialized experience at the next lower GS-grade (or equivalent). Specialized experience is defined as follows:
- Developing and deploying data products and visualizations using data science, statistical, and artificial intelligence/machine learning techniques to facilitate users data-driven decision making.
- Collaborating across roles and organizations to build strategic relationships, achieve common goals, and resolve sensitive issues.
- Performing continuous improvement of data products to meet current and evolving user needs by monitoring user feedback, performance, accuracy, and reliability.
- Developing tooling, models, and visualizations using general-purpose programming languages (such as Python) and/or tools optimized for statistical and data analysis (such as R).
