The Sr DevOps Engineer (FedRAMP) is responsible for developing and maintaining the company’s enterprise-grade infrastructure on the cloud.
They work closely with the development team and all the other stakeholders to set up new infrastructure and tools.
With their exceptional knowledge, they optimize the CI/CD workflow, monitor and enhance the production performance.
They are the first responders to production outages and security incidents.
Responsibilities
Work on routine DevOps tasks assigned, such as: infrastructure development, performance optimization, application release, real time monitoring and incident response.
Ensure all aspects of infrastructure are documented properly to meet FedRAMP standards.
Produce clear, concise, and standard compliant documentation and reports.
Own partnership with cross-functional teams to address FedRAMP system design, development, testing and security concerns at an early stage during the whole SDLC cycle.
Work closely with the security team to continuously improve the infrastructure security.
Implement compliance controls; support security assessments; plan and perform BCP/DRP drills regularly.
Deliver highly secure and efficient solutions within comprehensive compliance regulations (including FedRAMP, ISO27001, SOC2, HIPAA, PCI, etc.
)
First responder to FedRAMP production outages and security incidents.
(May require 7x24 standby)
Requirements
Due to security screening requirements, candidates must be a US Citizen or green card holder.
Degree in Computer Science or related field.
Masters degree preferred.
Minimum 3 to 5 years proven experience as a DevOps Engineer, preferably with experience maintaining infrastructure within FedRAMP regulated environments.
Familiarity implementing Federal Information Processing Standards (FIPS) Cryptographic modules.
Deep understanding of Agile processes, and SaaS/PaaS cloud architectures.
AWS experience is required.
Solid understanding of containerization technologies such as Docker and container orchestration platforms like Kubernetes.
Experience with IaC tools like Terraform, Ansible.
Familiarity with CI/CD concepts and tools such as Jenkins, GitHub Action or Gitlab CI/CD.
Experience setting up real-time monitoring solutions to detect downtime as well as negatively-impacting conditions (such as New Relic, Datadog, Grafana, ELK, etc.
).
Experience in programming languages (one or more of: NodeJS, Python, Golang, Shell).
Preferred experience supporting the following Datastore/Databases: MySQL, PostgreSQL, Redis, MangoDB.
Experience with cloud hosting, both as a self hosted without a cloud infrastructure (such as GCP, AWS, Azure), as well as via 3rd party hosts (such as Wix, Squarespace, WP Engine).
Experience with caching and edge-server environments (such as Cloudflare, Cloudfront, S3, and Akami).
Experience developing plans for auditing and testing of those environments and the hosted tech stacks on those platforms.
This includes secure CI/CD pipelines, backups of CMS-managed changes, and penetration testing (both done internally as well as via 3rd-party services).
Proven communication and leadership skills.
Able to work with the remote teams located in different time zones.