About The Position

We are seeking a Senior DevSecOps Consultant to design and implement a CMMC-aligned GitLab platform within a regulated space/aerospace environment. This role will focus on architecting, deploying, and hardening a self-managed GitLab environment on Kubernetes using Crossplane, while establishing secure, scalable patterns that internal teams can operate long-term. You will partner closely with the platform chief architect and engineering teams to define architecture decisions, implement secure configuration-as-code practices, and ensure the platform meets CMMC and NIST 800-171 requirements. This is a remote 1099 position.

Requirements

  • 5+ years of experience in DevOps, Platform Engineering, or DevSecOps roles
  • Hands-on experience deploying and operating self-managed GitLab in production environments
  • Strong expertise with Kubernetes, including day-2 operations, networking, and observability
  • Experience with Infrastructure as Code (Terraform strongly preferred)
  • Experience designing and securing CI/CD pipelines and runner architectures
  • Experience with Crossplane for Kubernetes-based resource provisioning
  • Demonstrated experience implementing RBAC, least-privilege models, and configuration-as-code for platform services
  • Experience working in regulated environments (CMMC, NIST 800-171, FedRAMP, DoD, aerospace/defense, financial services, etc.)
  • Strong documentation and cross-functional communication skills
  • Must reside within the United States
  • Must be authorized to work in the United States without sponsorship now or in the future
  • Must be able to pass a background check

Nice To Haves

  • Familiarity with Cilium, Keycloak, ArgoCD, and related DevSecOps tooling
  • Direct experience mapping NIST 800-171 / CMMC controls to technical implementations
  • Experience supporting hybrid regulated and commercial workloads

Responsibilities

  • Design and implement a CMMC-aligned GitLab architecture supporting 250–500+ users
  • Deploy and operate self-managed GitLab on Kubernetes using Crossplane
  • Architect secure GitLab runner strategies (pooling, isolation, autoscaling) for mixed workloads
  • Evaluate and document architectural approaches (single vs. segregated GitLab instances) with clear tradeoff analysis
  • Translate NIST 800-171 and CMMC requirements into enforceable GitLab configurations and access controls
  • Implement configuration-as-code using Terraform (e.g., GitLab provider) to ensure versioned, auditable, and repeatable platform management
  • Design and implement RBAC, least-privilege models, and segregation of duties
  • Establish drift detection and audit mechanisms to monitor and remediate unauthorized changes
  • Integrate GitLab into the broader Kubernetes platform ecosystem, including GitOps workflows (e.g., ArgoCD)
  • Produce architecture documentation, runbooks, and reference patterns to enable internal ownership and long-term sustainability
  • Collaborate with cybersecurity, architecture review boards, and platform teams to validate compliance and design decisions

Benefits

  • Work remotely anywhere in the United States with flexible work hours
  • Sponsored and supported learning opportunities
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service