NLM QA Specialist I - III

QA Specialist I – III

Lexical Intelligence provides software and services related to processing large-scale biomedical information sources. Our Natural Language Processing (NLP) and analytics software is used by policy and decision makers to evaluate and prioritize current and emerging areas of research.

We are looking for QA Specialists (I – III) to work within the National Library of Medicine (NLM), Lister Hill National Center for Biomedical Communications (LHNCBC), located at Building 38A on the NIH campus in Bethesda, MD. The QA Specialists will have experience in software quality assurance and testing, automated testing frameworks and configuration management, and federal IT compliance and secure software development practices. The QA Specialists will have a firm understanding of software testing methodologies, quality control processes, and federal security and accessibility requirements applicable to government software systems. The QA Specialists shall be able to work well within a team of software developers, DevOps engineers, data scientists, and biomedical informatics professionals. The selected applicant(s) will be subject to a pre-employment background and reference check.

Level Descriptions

QA Specialist I – Entry to mid-level professional with foundational experience in software quality assurance and testing. Works under supervision, executing defined test plans and contributing to QA activities across the software development lifecycle. Focuses primarily on test execution, defect documentation, and supporting automated testing and accessibility validation efforts.

QA Specialist II – Mid to senior-level professional with demonstrated experience leading QA activities across complex software development programs. Works with greater independence, designing test strategies, managing automated testing frameworks, and providing technical guidance to junior QA staff. Contributes to DevSecOps integration, security validation, and accessibility compliance governance.

QA Specialist III – Senior-level professional serving as the strategic QA lead for enterprise software quality programs. Provides expert guidance on QA architecture, governance, and process improvement across multi-team development efforts. Leads the design and implementation of enterprise testing frameworks, oversees accessibility and security compliance programs, and serves as the primary QA liaison to government stakeholders and senior leadership.

Required Qualifications

QA Specialist I

• 2 years of relevant software quality assurance, testing, or related experience
• Associate's degree or other degree(s) in Computer Science, Information Technology, Software Engineering, or related fields
• Experience conducting software testing and quality control across multiple phases of the software development lifecycle, including analysis, design, implementation, testing, deployment, and maintenance
• Familiarity with automated testing environments and configuration management tools and practices
• Basic knowledge of secure coding best practices in accordance with US-CERT standards and OWASP guidelines
• Experience working in or supporting software development in Linux environments, with additional familiarity with Windows, MacOS, or web-based environments
• Familiarity with common programming languages and environments used in testing and QA, such as Python, Java, JavaScript, or shell scripting
• Strong written and oral communication skills, including the ability to document test results, defects, and quality metrics clearly and concisely

QA Specialist II

• 4 years of progressive software quality assurance and testing experience, including demonstrated leadership of QA activities on complex software development programs
• Bachelor's degree or other degree(s) in Computer Science, Information Technology, Software Engineering, or related fields; advanced degree preferred
• Demonstrated experience designing, implementing, and managing automated testing frameworks and configuration management systems across multiple software development environments
• Proven ability to develop comprehensive test strategies, test plans, and quality metrics for enterprise-level software applications and tools
• Experience integrating QA and security validation activities within CI/CD pipelines and DevSecOps frameworks
• Working knowledge of federal information security requirements, including FISMA compliance considerations relevant to software testing and quality assurance
• Experience conducting and overseeing Section 508 accessibility testing and validation, including WCAG 2\.0 Level A and AA compliance assessment
• Demonstrated ability to provide technical guidance to junior QA staff and coordinate QA activities across cross-functional development teams

QA Specialist III

• 6\+ years of senior-level software quality assurance experience, with demonstrated leadership of enterprise QA programs in federal government or government contracting environments
• Bachelor's degree or other degree(s) in Computer Science, Information Technology, Software Engineering, or related fields; Master's degree strongly preferred
• Expert-level experience designing and governing enterprise automated testing frameworks, CI/CD security integration, and DevSecOps quality assurance architectures across large, complex multi-team software development programs
• Demonstrated strategic leadership in federal software quality governance, including oversight of FISMA compliance validation, security testing programs, and enterprise accessibility conformance initiatives
• Proven ability to brief and advise senior government officials and program leadership on QA program status, risk, and strategic improvement initiatives
• Expert knowledge of Section 508 requirements, HHS digital accessibility conformance standards, and federal ICT accessibility governance
• Demonstrated experience mentoring and leading teams of QA professionals, establishing enterprise quality standards and performance frameworks

Preferred Qualifications

• Experience with Agile and Scrum development frameworks and participation in sprint-based QA activities at varying levels of leadership
• Familiarity with CI/CD pipeline testing integration using tools such as GitLab, GitHub Actions, Nexus, or equivalent platforms
• Experience with version control systems such as Bitbucket or GitLab for managing test scripts and QA documentation
• Knowledge of ticketing and issue tracking systems such as JIRA and documentation platforms such as Confluence Wiki
• Experience testing web-based and user interface applications, including Responsive and RESTful design standards, and proficiency with graphic design, data visualization, and user-centered design evaluation techniques
• Familiarity with or experience in web accessibility testing and Section 508 compliance validation, including WCAG 2\.0 Level A and AA success criteria, and experience preparing Accessibility Conformance Reports (ACRs) or Supplemental Accessibility Conformance Reports (SARs)
• Experience testing applications across multiple environments including Linux, Windows, MacOS, Android, web-based, and mobile platforms
• Experience with cloud computing platforms such as AWS, Google Cloud (GC), or Microsoft Azure and their implications for software testing across IaaS, PaaS, SaaS, and CI/CD configurations
• Knowledge of containerization tools such as Docker and orchestration platforms such as Kubernetes as they relate to software testing and deployment validation
• Familiarity with database platforms such as MySQL, MongoDB, MS SQL, PostgreSQL, or Elasticsearch and experience conducting database-level testing and validation
• Experience testing applications that handle Personally Identifiable Information (PII) or Protected Health Information (PHI), with awareness of applicable privacy and security requirements including FISMA, HIPAA, and NIH data governance policies
• Familiarity with programming languages and environments such as Python, Java, JavaScript, R, Matlab, SAS, SQL, and Jupyter notebooks as they relate to testing and QA activities
• Experience with AI, machine learning (ML), deep learning (DL), or natural language processing (NLP) application testing, including validation of model outputs and algorithmic behavior
• Knowledge of open-source software security and quality requirements in accordance with US-CERT and OWASP standards
• Relevant certifications such as ISTQB Foundation or Advanced Level, CompTIA Security\+, CISSP, or equivalent QA or security credentials
• (For Levels II and III) Experience managing subcontractor QA activities and coordinating quality assurance across multi-vendor development teams
• (For Level III) Demonstrated experience developing and delivering QA training programs and establishing enterprise quality governance frameworks for large federal IT programs

Responsibilities

All Levels

• Participate as a team member in all phases of software, application, and tool development and maintenance, including analysis, design, implementation, testing, deployment, and maintenance activities in support of NLM/LHNCBC research and development programs
• Conduct software testing and quality control activities employing automated testing environments and configuration management practices to ensure the accuracy, reliability, and security of software applications and tools
• Execute functional, regression, integration, and performance testing activities across software applications developed for NLM programs, documenting test cases, test results, and identified defects clearly and accurately
• Ensure that all tested software is fully functional and operates correctly on systems configured in accordance with government policy and federal configuration standards, including testing with all relevant and current updates and patches applied prior to installation in the HHS environment
• Verify that developed software applications meet all applicable HHS, NIH, NLM, and LHNCBC security and operational policies, including FISMA compliance requirements
• Support the validation of software security by assisting with the review of vulnerability scan results and coordinating with development and security teams to ensure identified vulnerabilities are remediated within prescribed timelines
• Assist in ensuring that IT applications designed and developed for end users run in the standard user context without requiring elevated administrative privileges
• Support secure coding quality assurance activities in accordance with US-CERT specified standards and OWASP guidelines, helping to identify and document potential software vulnerability exploits
• Conduct accessibility testing to validate conformance with Section 508 requirements and HHS digital accessibility conformance standards, including WCAG 2\.0 Level A and AA success criteria, for all ICT deliverables
• Assist in preparing or lead the preparation of Supplemental Accessibility Conformance Reports (SARs) and Accessibility Conformance Reports (ACRs) based on required test methods, documenting accessibility test results, features supporting accessibility, and core functions that may not be accessible to individuals with disabilities
• Support or lead the demonstration of completed ICT items to government stakeholders to validate conformance with agency accessibility requirements prior to final acceptance
• Ensure that no sensitive data is used during software testing activities, in compliance with HHS and NIH data protection policies
• Document technical project requirements, testing timelines, and quality metrics, and contribute to or lead status updates for project management and government oversight purposes
• Track and report defects, issues, and test progress using ticketing systems such as JIRA and ServiceNow or equivalent platforms, and maintain testing documentation using Confluence Wiki or equivalent documentation tools
• Participate in or lead Agile and Scrum development processes, contributing to sprint planning, backlog refinement, and retrospective activities from a QA perspective
• Support or oversee testing and validation of software developed across multiple environments, including Linux, Windows, MacOS, Android, web-based, and mobile platforms as applicable to assigned projects
• Assist in or lead the validation that software architecture is secure, extensible, and able to integrate with existing internal or external systems, and that all developed software is documented for internal and external users and future maintenance purposes
• Support or oversee testing activities for applications leveraging commercial cloud computing services across GC, AWS, and Azure in IaaS, PaaS, SaaS, and CI/CD configurations
• Contribute to or lead the testing and validation of open-source software and non-commercial software procurements in accordance with secure coding best practice requirements and federal standards
• Maintain awareness of and compliance with HHS/NIH information security policies, completing mandatory annual HHS/NIH Information Security Awareness, Privacy, and Records Management training prior to beginning work and annually thereafter
• Adhere to the HHS Information Technology General Rules of Behavior and applicable Rules of Behavior prior to accessing government data, systems, and networks
• Complete and maintain required Non-Disclosure Agreements (NDAs) for access to non-public government information prior to performing work under the contract
• Identify themselves as contractor personnel in all contract-related meetings, communications, and correspondence in accordance with contract requirements
• Support transition activities by contributing to or leading documentation, knowledge transfer, and testing continuity planning as directed by the Program Manager and COR

Additional Responsibilities – QA Specialist II

• Design, implement, and manage comprehensive automated testing frameworks and configuration management systems across multiple software development programs and environments
• Develop test strategies, test plans, and quality metrics for enterprise-level software applications and tools, ensuring alignment with project timelines, technical requirements, and government acceptance criteria
• Lead the integration of QA and security validation activities within CI/CD pipelines and DevSecOps frameworks using tools such as GitLab, GitHub Actions, Nexus, and equivalent platforms
• Provide technical guidance and mentorship to QA Specialist I staff, reviewing test plans and results and coordinating QA activities across cross-functional development teams
• Lead Section 508 accessibility testing and compliance validation programs, overseeing the preparation of ACRs and SARs and coordinating remediation activities with development teams
• Coordinate with security teams to validate FISMA compliance requirements, support ATO documentation efforts, and ensure that security testing activities are integrated throughout the software development lifecycle
• Contribute to the design and review of software architecture from a quality and security assurance perspective, identifying potential risks and recommending mitigation strategies
• Develop and maintain QA documentation standards, templates, and knowledge bases using Confluence Wiki or equivalent platforms, ensuring consistency and completeness across all testing activities
• Support the testing and validation of applications involving AI, ML, DL, and NLP capabilities, including validation of model outputs, data pipelines, and analytical algorithms
• Contribute to monthly activity and financial status reports, providing QA program updates to the Program Manager and COR as requested

Additional Responsibilities – QA Specialist III

• Serve as the senior QA subject matter expert and strategic leader for all software quality assurance activities across the NLM/LHNCBC contract, providing expert guidance to the Program Manager, government officials, and cross-functional technical teams
• Lead the design and governance of the enterprise automated testing architecture, establishing standards, frameworks, and best practices for QA activities across all contract task areas and development programs
• Provide strategic oversight for the integration of quality assurance within DevSecOps pipelines, CI/CD frameworks, and cloud-native development environments, ensuring that quality and security are embedded throughout the software delivery lifecycle
• Lead enterprise Section 508 accessibility compliance governance, establishing testing standards, overseeing ACR and SAR preparation, and serving as the primary liaison to government accessibility officials and stakeholders
• Serve as the primary QA liaison to senior government officials, CORs, and Contracting Officers, providing strategic briefings on QA program status, risk, compliance posture, and improvement initiatives
• Establish and oversee enterprise quality metrics and reporting frameworks, providing comprehensive QA performance data to support contract management, government oversight, and continuous improvement activities
• Lead the strategic oversight of security testing and FISMA compliance validation programs, coordinating with ISSOs, CISOs, and federal security officials to ensure alignment between QA activities and enterprise security governance requirements
• Oversee the testing and quality governance of AI, ML, DL, NLP, and large language model (LLM) applications, establishing standards for model validation, algorithmic testing, and output quality assurance
• Direct QA activities for clinical data systems and FISMA-moderate environments such as FEHRDI, ensuring that systems handling sensitive health data, PII, and PHI meet all applicable quality, security, and privacy requirements
• Mentor and provide strategic leadership to QA Specialist I and II staff, establishing performance standards, professional development pathways, and technical excellence frameworks across the QA team
• Develop and deliver QA training programs and knowledge-sharing initiatives to build QA capability across the broader development and operations teams
• Lead QA transition planning activities, ensuring comprehensive documentation, knowledge transfer, and testing continuity planning are completed in advance of contract transitions in accordance with the approved transition-out plan

Responsibilities include ensuring compliance with organizational security and privacy policies, protecting sensitive data and systems, reporting security incidents, and participating in required cybersecurity training. The role also involves implementing best practices related to access control, data handling, and risk mitigation within the scope of assigned duties.

Salary and Benefits: We offer a competitive salary and a generous benefits package, including at no cost: full health and dental for you and your dependents, retirement and HSA accounts, short- and long-term disability insurance, life and accident insurance, paid time off, and 11 federal holidays.

Location: Bethesda, MD

Equal Employment Opportunity Policy:Lexical Intelligence, LLC, provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Lexical Intelligence, LLC \| 2001 Veirs Mill Rd #546 \| Rockville, MD 20851