The Pitch¶
Thousands of technology companies and hundreds of agencies need engineers that intimately understand FedRAMP. The only place to truly gain that level of understanding is here, with us. The FedRAMP Cybersecurity Service (FRCS) will immerse you in all things FedRAMP as you rotate between learning, performing FedRAMP Certifications, supporting the FedRAMP experience with stakeholders, improving policy and guidance, helping agencies adopt cloud services, and training the next FRCS cohort.
At the end of your 2 year term, you'll return to the private sector as an unparalleled expert in a rapidly expanding market of FedRAMP Certified cloud services... or continue your work as a civil servant at a partner agency.
Watch the FedRAMP/join repo on GitHub for updates!
The Term of Service¶
Everyone's term will look a bit different depending on your specific background experience, when you are hired, and where FedRAMP is focused. We want everyone to come through their term well-rounded with broad exposure to the government environment and FedRAMP itself, so you can expect a well-balanced term with most of the high-speed action sandwiched in the middle for maximum effectiveness.
| When | What You'll Work On |
|---|---|
| Month 1 | Onboarding - Starting work for the government can be overwhelming. We'll ease you onto the team, ensure you've filled out all the right forms to set up your benefits properly, and get you through the mandatory training while you settle in with our processes, tools, and technology. |
| Month 2 | Acclimation - Once you're settled, the initial focus will be entirely on bringing you up to speed. You'll partner on security assessments, continuous monitoring, policy updates, and stakeholder support to familiarize you with the full scope of the program. |
| Months 3-12 | Rotational Service - Over the next nine months you will rotate between three delivery areas to gain a deep understanding of FedRAMP and support our missions. Initial Certification: Perform technical deep dives into the security of cloud services to assess how effectively they've met FedRAMP requirements. Ongoing Certification: Dig into continuous monitoring materials for some of the coolest cloud services on the planet to help them stay on track. Policy Support: Directly support our stakeholders by engaging with the community, working with agency adoption teams, and improving our policy and guidance. |
| Months 13-18 | Agency Detail - The pinnacle FedRAMP Cybersecurity Service experience will be a temporary assignment to another federal agency's security team. You will learn about their specific environment, mission needs, and policies; then you'll work within that framework to help them adopt cloud services faster and more efficiently while coordinating with your home team back at FedRAMP. |
| Months 19-24 | Recovery - You're now one of the most knowledgeable FedRAMP professionals on the planet with unique insight into every aspect of this government program. It's time to make sure that knowledge is passed on to those who come after, lift up the entire team by plugging in as needed, and start thinking about what's next. If you're hooked on service, we'll help you find a home in the government for a longer term. If you're ready to head off to the private sector and put your knowledge to use on the outside, we'll help you do that too. Whatever you decide, you'll always be a part of the FedRAMP Cybersecurity Service. |
The Hiring Plan¶
The 2026 cohort of the FedRAMP Cybersecurity Service will be hired in waves, starting with the most senior positions. This strategy will be adjusted based on the success of our recruiting and hiring strategy.
All 2026 positions will be full-time at GSA Headquarters in Washington DC.
Salary and benefits are standardized across the federal government, with salary ranges set based on the position description and specialized experience required. Specialized experience is informed by FedRAMP's specific requirements but is standardized based on OPM and GSA policy and guidance.
We strongly recommend interested candidates research OPM and government salary ranges and policies around special qualification assessments and what these General Schedule (GS) ranges and steps mean.
| Position, Salary, and Hiring Dates | Specialized Experience Required |
|---|---|
| 5x Lead Cloud Security Engineer (GS-15) $169,279 (Step 1) April / May 2026 |
Senior-level experience within a security, compliance, infrastructure, or similar engineering function for a cloud service offering that provides on-demand self-service access to technology resources over the internet; OR as a lead assessor within a Third Party Assessment Organization (3PAO) conducting comprehensive security assessments of cloud service offerings against Federal Risk and Authorization Management Program (FedRAMP) requirements. |
| 5x Senior Cloud Security Engineer (GS-14) $143,913 (Step 1) May / June 2026 |
Experience coordinating and providing technical advice within a security, compliance, infrastructure, or similar engineering function for a cloud service offering that provides on-demand self-service access to technology resources over the internet; OR as an assessor within a Third Party Assessment Organization (3PAO) conducting comprehensive security assessments of cloud service offerings against Federal Risk and Authorization Management Program (FedRAMP) requirements. |
| 5x Cloud Security Engineer (GS-13) $121,785 (Step 1) July / August 2026 |
Experience applying technical expertise to manage, maintain, or support one or more core cloud security functions such as security engineering, vulnerability management, or compliance auditing for a cloud environment that provides on-demand services; OR working knowledge and practical application of security control requirements and assessment methodologies utilized by the Federal Risk and Authorization Management Program (FedRAMP). |
These positions aren't posted yet - soon!
Would You Like to Know More?¶
We have compiled some helpful information for interested candidates on this page:
-
Employee Benefits are mostly standardized across the federal government, but GSA does provide some extra benefits such as a transit subsidy and situational telework.
-
Government Hiring is nothing like the private sector process, so we're providing additional context and specific information to help you research.
-
Interviewing is also a bit different than you might expect, with most of the hiring process focused on your resume (you wouldn't lie to the government, would you?) and interviews following a highly structured process that ensures a similar experience across the candidate pool. If you are offered an interview you absolutely must review this information in advance or it is very likely you will struggle in the process.
-
More Information explains how to find out more in the event all of the information here isn't enough!