Mid-Level DevSecOps Consultant - GitLab Platform
About The Position
We are seeking a Mid-Level DevSecOps Consultant to design and implement a CMMC-aligned GitLab platform within a regulated space/aerospace environment. This role will focus on architecting, deploying, and hardening a self-managed GitLab environment on Kubernetes using Crossplane while establishing secure, scalable patterns that internal teams can operate long-term. You will partner closely with the platform chief architect and engineering teams to define architecture decisions, implement secure configuration-as-code practices, and ensure the platform meets CMMC and NIST 800-171 requirements. This is a remote 1099 or W2 position. Please no C2C.
Requirements
- 3+ years of experience in DevOps, Platform Engineering, or DevSecOps roles
- Hands-on experience deploying and operating self-managed GitLab in production environments
- Strong expertise with Kubernetes, including day-2 operations, networking, and observability
- Experience with Infrastructure as Code (Terraform strongly preferred)
- Experience designing and securing CI/CD pipelines and runner architectures
- Experience with Crossplane for Kubernetes-based resource provisioning
- Familiarity with Cilium, Keycloak, ArgoCD, and related DevSecOps tooling
- Demonstrated experience implementing RBAC, least-privilege models, and configuration-as-code for platform services
- Experience working in regulated environments (CMMC, NIST 800-171, FedRAMP, DoD, aerospace/defense, financial services, etc.)
- Strong documentation and cross-functional communication skills
- Must reside within the United States
- Must be authorized to work in the United States without sponsorship now or in the future
- Must be able to pass a background check
Nice To Haves
- Direct experience mapping NIST 800-171 / CMMC controls to technical implementations
- Experience supporting hybrid regulated and commercial workloads
Responsibilities
- Design and implement a CMMC-aligned GitLab architecture supporting 250–500+ users
- Deploy and operate self-managed GitLab on Kubernetes using Crossplane
- Architect secure GitLab runner strategies (pooling, isolation, autoscaling) for mixed workloads
- Evaluate and document architectural approaches (single vs. segregated GitLab instances) with clear tradeoff analysis
- Translate NIST 800-171 and CMMC requirements into enforceable GitLab configurations and access controls
- Implement configuration-as-code using Terraform (e.g., GitLab provider) to ensure versioned, auditable, and repeatable platform management
- Design and implement RBAC, least-privilege models, and segregation of duties
- Establish drift detection and audit mechanisms to monitor and remediate unauthorized changes
- Integrate GitLab into the broader Kubernetes platform ecosystem, including GitOps workflows (e.g., ArgoCD)
- Produce architecture documentation, runbooks, and reference patterns to enable internal ownership and long-term sustainability
- Collaborate with cybersecurity, architecture review boards, and platform teams to validate compliance and design decisions
Benefits
- Work remotely anywhere in the United States with flexible work hours
- Paid time-off, company holidays, and floating holidays
- Comprehensive benefits with contributions toward premiums
- 401(k) plan
- Sponsored and supported learning opportunities
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
11-50 employees
