Enhance and create specifications in NIST, IETF, and relevant SDOs to facilitate transparent measurement and understanding of hardware and software for cybersecurity use cases.
Activity: Enhance and create SCITT draft specifications.
Success Measure: Supervisor consistently finds: constructive review feedback of draft in GitHub; constructive review feedback of drafts on the IETF mailing lists; pull requests in GitHub to enhance existing drafts; pull requests or new repositories to add new drafts.
Activity: Enhance and create RATS draft specifications.
Success Measure: Supervisor consistently finds: constructive review feedback of draft in GitHub; constructive review feedback of drafts on the IETF mailing lists; pull requests in GitHub to enhance existing drafts; pull requests or new repositories to add new drafts.
Activity: Perform public outreach.
Success Measure: Supervisor finds: a plan for venues to present on specifications for hardware and software understanding; a plan for publishing material (tutorial videos; whitepapers; alternative media) for hardware and software understanding.
Activity: Technology Transfer
To take initiative to insure NIST research results and programs achieve impact with customers and stakeholders.
Success Measure: Supervisor consistently finds: Demonstration of the benefit of project outputs encourages broad-based adoption by stakeholders. Project outputs include, but are not limited to, research papers, guidance, instrumentation, test methods/protocols, software, and reference data. Engagement with stakeholders for incorporation of research findings into best practices. Engagement includes, but is not limited to, technical presentations at conferences, workshops, and other venues, and responding to questions from stakeholders.
Document use cases and develop proof of concept demos of hardware and software understanding specifications from IETF, NIST, and other relevant SDOs.
Activity: Add and enhance use case documentation for SCITT.
Success Measure: Supervisor consistently finds: contributions to the official list of IETF SCITT use cases in the Internet Draft; contribution to the IETF mailing list with constructive feedback on creating or amending use cases; contribution to the SCITT Community of use cases on their website; contribution in their mailing list and GitHub issue discussions on adding or enhancing use cases.
Activity: Proof of concept for SCITT service with NVD data on open-source software.
Success Measure: Supervisor consistently finds: architecture and design documents committed to GitHub repositories; code to create and enhance a Transparency Service API conformant draft specifications committed in GitHub; code for extract, transform, and load routines for sample data to demo the app committed in GitHub.
Activity: Proof of concept for SCITT service for certificate authority HSMs.
Success Measure: Supervisor consistently finds: architecture and design documents committed to GitHub repositories; code to create and enhance a Transparency Service API conformant draft specifications committed in GitHub; code for extract, transform, and load routines for sample data to demo the app committed in GitHub.
Activity: Perform public outreach.
Success Measure: Supervisor finds: a plan for venues to present on use cases and demos applying specifications for hardware and software understanding; a plan for publishing material (tutorial videos; whitepapers; alternative media) of use cases and demos for hardware and software understanding.
Activity: Technology Transfer
To take initiative to insure NIST research results and programs achieve impact with customers and stakeholders.
Success Measure: Supervisor consistently finds: Demonstration of the benefit of project outputs encourages broad-based adoption by stakeholders. Project outputs include, but are not limited to, research papers, guidance, instrumentation, test methods/protocols, software, and reference data. Engagement with stakeholders for incorporation of research findings into best practices. Engagement includes, but is not limited to, technical presentations at conferences, workshops, and other venues, and responding to questions from stakeholders.
Support NIST's efforts in cybersecurity information modeling and code generation tooling for rapid development.
Activity: Maintain and enhance metaschema-java
Success Measure: Supervisor finds the employee: creates and updates GitHub issues in the backlog with short-term and long-term development plans; proactively assigns issues and writes code maintain or add new functionality to the library; writes code that follow project, team, group, division, and lab best practices; provides specific, constructive feedback via code review in GitHub and document review for architectural design records.
Activity: Maintain and enhance liboscal-java
Success Measure: Supervisor finds the employee: creates and updates GitHub issues in the backlog with short-term and long-term development plans; proactively assigns issues and writes code maintain or add new functionality to the library; writes code that follow project, team, group, division, and lab best practices; provides specific, constructive feedback via code review in GitHub and document review for architectural design records.
Activity: Improve Metaschema specification and documentation for external developer community
Success Measure: Supervisor will find: a plan, documented by GitHub issues, to add or modify Metaschema documentation to be focused on external community developers identified by issues milestone/project/tag linkage; timely and accurate updates issues tracking the documentation changes; completed documentation on the Metaschema website, GitHub repository, or relevant location; analytics tracking reporting indicating no less than 10% improvement in readership of the documentation by Q4.
Position NIST to Advance U.S. Science and Innovation and Build a One NIST Culture.
Activity: Working Relationships Develop and maintain positive and constructive working relationships with colleagues, customers, internal and external partners.
Success Measure: Supervisor consistently finds: Employee demonstrates and promotes fair treatment and equity with everyone.
Activity: Building Collaborations Leverage opportunities to accomplish the technical work of the Division/ITL/NIST by developing collaboration with external partners through, for example, CRADAs, contracts, grants, SBIRs, and recruiting guest researchers, IPAs, students, or postdocs.
Success Measure: Supervisor typically finds: Evidence of development and contributions of collaborations and exchange of expertise to maximize NIST's technical impact.
Activity: Customer Service Customer Service is provided in collaboration, consultation, and partnership with customers, other agencies, and stakeholders. Customer needs are identified, and issues are clarified in communications with the customer.
Success Measure: Supervisor consistently finds: Based on direct observation and/or input: employee routinely responds to internal requests with factually accurate information that is consistent with NIST, OU and departmental guidance and policies, as well as other relevant program or technical documents. Work products reflect thorough research and consideration of customer issues and concerns.
Activity: Mentor junior staff, guests, and students.
Success Measure: Mentoring reflects knowledge in subject matter area; is generally developmental and contributes to a positive work environment. Willingness to share information is reflected in interactions with others; regularly seeks to provide assistance when time permits.
Activity: Consulting / Representation Promote NIST objectives by participating constructively with NIST partners in support of projects and programmatic objectives.
Success Measure: Supervisor consistently finds: Willingness to engage and contribute to collaborative work; collaborators value contributions made.
Contribute Effectively to the Institutional Health and Safety of the Organization.
Activity: Proposals Develop and contribute to Division proposals for additional funding from internal and external sources for growth of the Division's research programs; assist in managing OA projects in the Division.
Success Measure: Supervisor consistently finds: High-quality project proposals submitted for internal and external funding, including NIST budget initiatives, NIST IMS, Other Agency, and ITL Building the Future (BTF).
Activity: Diversity and Equity A commitment to improving diversity and equity of the NIST workforce is demonstrated.
Success Measure: Supervisor consistently finds: Evidence of engagement with relevant stakeholders to develop and share best-practices in enhancing diversity and equity in hiring, performance, promotion, awards, and career advancement processes. Positively influences staff to uphold diversity and equity best practices.
Activity: Sensitive Personally Identifiable Information and Business Identifiable Information, both physical and electronic, is protected.
Success Measure: Sensitive Personally Identifiable Information and Business Identifiable Information is protected from unauthorized release, alteration, loss and deletion, and complies with security and privacy policies regarding access to computerized and paper files.
Activity: Leadership and/or Strategic Planning Lead research and/or strategic planning as a recognized authority in the scientific or engineering field of expertise.
Success Measure: Employee consistently demonstrates willingness to participate and contribute to various planning activities; regularly takes initiative in contributing and responding to requests for proposals. Proposals are generally of sound quality and align with the mission and core competencies of the Division, ITL, and NIST. Employee typically shows diligence in maturation of proposals into new projects.
Activity: Core Values A work environment aligned with the NIST core values and ITL's purpose is established and maintained. Principles of the NIST core values of perseverance, integrity, inclusivity, and excellence, along with ITL's purpose of Cultivating Trust in IT and Metrology, are demonstrated in all aspects of work.
Success Measure: Supervisor consistently finds: Employee strives to preserve a continued impact and relevance in field; Demonstrates an ethical, honest, independent and objective approach to work; Collaborates to harness the diversity of people and ideas to attain solutions. Applies rigor and critical thinking to achieve world class results and continuous improvement; Positively impacts the work environment through demonstration of the NIST core values and ITL's purpose.
Activity: Compliance Follows all applicable NIST and ITL policies and procedures, including: IT Security; Ethics, Counterintelligence; ERB; Media Relations; Time and Attendance (including AWS and Telework); Travel; PII.
Success Measure: Supervisor consistently finds: All annual required training in NIST and ITL policies and procedures is completed in a timely fashion; no violations of NIST policies or abuse of NIST resources in the performance period.
Activity: Safety Participate in creating and maintaining a positive safety culture.
Success Measure: Supervisor consistently finds: Actively participating in safety discussions at OU/division/group meetings, during workplace visits and performance reviews. Respectfully challenges staff members regarding safety issues, concerns, and incidents.
To Enhance One's Job-Related Knowledge and Skills and to Contribute to the Health of the Profession as a Whole.
Activity: Communication Communicate using written (e.g., papers, presentations, webpages, blogs) and verbal (e.g., technical talks, briefings, interviews) means to promote visibility and recognition of the Divisions strategic plans, accomplishments, and impacts to internal and external stakeholder communities.
Success Measure: Supervisor consistently finds: Well crafted, clear, and high quality written, and verbal communications delivered to internal and external audiences. The division's technical work is effectively presented in web pages, presentation slides, and marketing material, NIST Highlights, and Tech Briefs.
Activity: Technical Reviewing Engage in refereeing/reviewing of research papers and proposals as requested and appropriate.
Success Measure: Supervisor consistently finds: Reviews are responsive and well-written. Responses are clearly communicated, relevant, and completed within established timeframes.
Activity: Professional Development Develop personal/technical/managerial capabilities in an on-going process of professional development; build professional networks within technical and/or standards organizations.
Success Measure: Supervisor consistently finds: At least one training/continuous learning course taken in performance period to improve capabilities in research, management, administration, and/or leadership (contingent upon availability and funding). Participation in at least one technical or standards conference (contingent upon availability of travel funds) in the performance period to establish relationships in sectors relevant to the research and standards strategy.
Activity: Conduct outreach activities. Success Measure: Employee routinely (or as assigned) participates in outreach activities that serve to expand the Nation's future pool of mathematicians, computer scientists, and/or physical scientists and to ensure that it is diverse in its makeup.
Activity: Professional Activities Represent the Group/Division/NIST on internal and/or external committees and boards, as requested and appropriate. Success Measure: Supervisor consistently finds: Employee actively participates in internal and external professional activities when requested and appropriate. Contributions are generally thoughtful, relevant, and helpful.
Activity: Contracting Officer Representative (COR) duties that are delegated by a Contracting Officer (CO) to them for given award(s) (contract(s), order(s), or Blanket Purchase Agreement (BPA) Call(s)) are performed. Success Measure: Supervisor typically finds the employee: regularly communicates with the Contractor; timely directs the flow of technical matters between NIST and the Contractor; adequately monitors the Contractor's technical effort performed under the award; timely determines whether the Contractor timely submits required items, timely inspects Contractor deliverables, and timely provides feedback to the Contractor regarding their acceptability in accordance with the terms of the award; timely escalates Contractor performance matters to the CO for action; timely reviews payment of Contractor invoices and vouchers; and timely evaluates contractor performance using the Contractor Performance Assessment Reporting System (CPARS) in accordance with FAR Subpart 42.15 Contractor Performance Information and NIST Office of Acquisition and Agreements Management (OAAM) procedures.