AIT
Location: Hybrid / Remote (Washington, DC Metro Area preferred)
Clearance: Ability to obtain/maintain a U.S. Government clearance (Public Trust or higher)
Position Overview
We are seeking an experienced Python Developer to support the automation of cybersecurity control testing aligned with NIST SP 800-53 Rev. 5 and 5A. This role will focus on designing and implementing automated scripts that assess the effectiveness of security controls across multiple enterprise systems.The developer will work closely with Information System Security Officers (ISSOs), security engineers, and compliance teams to translate control requirements into automated test procedures. The goal is to reduce manual testing, improve consistency, and enable continuous monitoring through scalable, AI-assisted automation.Key Responsibilities
• Design, develop, and maintain Python-based automation scripts to test and validate cybersecurity controls (NIST 800-53 Rev. 5 / 5A)
• Integrate with enterprise systems (e.g., cloud platforms, SIEMs, endpoint tools, identity systems) to collect evidence for control validation
• Collaborate with ISSOs and cybersecurity teams to:
• Interpret control requirements
• Define measurable testing criteria
• Assess control effectiveness
• Implement automated, scheduled testing capabilities using orchestration tools (e.g., cron, Airflow, Azure Automation)
• Develop reusable frameworks for continuous control monitoring (CCM)
• Leverage AI/ML technologies (e.g., Azure OpenAI, anomaly detection, natural language processing) to:
• Assist in control analysis
• Automate evidence review and classification
• Improve testing efficiency and insights
• Create dashboards and reporting outputs that clearly demonstrate compliance status and risk posture
• Ensure scripts are secure, well-documented, and aligned with DevSecOps best practices
• Support integration into CI/CD pipelines for security validation
• Maintain traceability between controls, test procedures, and system evidence
Required Qualifications
• Bachelor’s degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
• 5+ years of Python development experience in enterprise environments
• Strong understanding of:
• NIST 800-53 Rev. 5 and 5A
• Security controls and assessment methodologies
• Experience integrating with APIs and data sources across security tools
• Familiarity with:
• SIEM platforms (e.g., Microsoft Sentinel, Splunk)
• Cloud environments (Azure, AWS, or GCP)
• Identity and access management systems
• Experience writing scripts for automation, data collection, and analysis
• Understanding of DevSecOps principles and CI/CD pipelines
• Strong problem-solving skills and ability to work directly with non-developer stakeholders (e.g., ISSOs)
Preferred Qualifications
• Experience implementing Continuous Monitoring or Continuous ATO (cATO)
• Familiarity with FedRAMP, FISMA, or CMMC frameworks
• Experience with Azure OpenAI or AI/ML integration in security workflows
• Knowledge of:
• KQL (Kusto Query Language)
• REST APIs and microservices architecture
• Experience working in federal or regulated environments
• Security certifications (e.g., Security+, CISSP, CEH)
Key Skills
• Python (automation, scripting, API integrations)
• Cybersecurity frameworks (NIST 800-53)
• Data analysis and evidence correlation
• Automation and orchestration
• AI-assisted workflows (nice to have)
• Communication with security and compliance stakeholders
Pay: $125,000.00 – $143,000.00 per year
Benefits:
• 401(k)
• Health insurance
• Paid time off
Experience:
• Python development: 5 years (Required)
• worked in enterprise environments: 5 years (Required)
• NIST SP 800-53 Rev. 5 or 5A controls: 5 years (Required)
• cybersecurity control testing or validation: 5 years (Required)
• Azure, AWS, or GCP cloud environment: 5 years (Required)
License/Certification:
• CISSP (Preferred)
• CompTIA Security+ (Preferred)
Ability to Commute:
• Washington, DC 20426 (Required)
Work Location: Hybrid remote in Washington, DC 20426
Benefits
- paid_time_off
- health_insurance
Salary
125,000 – 143,000 per year
Ready to apply? Click below to view the full job posting on the company’s website.
To apply for this job please visit www.indeed.com.