Senior DevOps Engineer

Job summary

Seeking a Senior DevOps Engineer to own and manage a self-managed GitLab platform end-to-end. This role involves ensuring the availability, performance, and security of GitLab, and managing CI/CD experiences for engineering teams. The ideal candidate is a deep specialist in GitLab, comfortable in a security-conscious, regulated environment, and focused on automation and codified configurations.

Benefits

Qualifications

• Eligible to obtain Security Clearance.
• Authorized to work for any employer in the United States.
• Direct, recent experience administering self-managed GitLab, including upgrades, backups, high-availability configurations, runner management, and performance tuning.
• Experience designing and maintaining reusable CI/CD pipeline templates and integrating pipelines with security scanners and artifact repositories.
• Understanding of GitLab Runner trade-offs and experience operating runners using Kubernetes executor on EKS.
• Experience implementing and maintaining SAML/SSO/LDAP integration and designing enterprise-scale group and project permission models.
• Fluency in Terraform, including the GitLab provider, and managing configuration as code.
• Ability to vocalize concerns, flag risks, and advocate for technical approaches.
• Specialist in critical platforms rather than generalist.
• Recent experience with self-managed GitLab within the last couple of years.
• Pragmatic and security-minded with a bias toward automation and codified configuration.

Responsibilities

• Manage the full lifecycle of self-managed GitLab deployment, including upgrades, backups, high availability, capacity planning, and performance tuning.
• Architect CI/CD pipelines across the organization, including reusable templates, parent/child pipelines, and integrations with security scanners and artifact repositories.
• Manage GitLab Runner fleet at scale, including shared, group, and project-scoped runners on Kubernetes executor on EKS.
• Manage authentication and access control across the platform, including SSO/SAML/LDAP integration and enterprise-scale group and project permission models.
• Manage platform configuration as code using Terraform.
• Integrate and maintain security and vulnerability scanning (e.g., Wiz, SAST/DAST, dependency and container scanning) within CI/CD pipelines.
• Harden the GitLab platform by enforcing least-privilege access models, managing secrets and CI/CD variables securely, and keeping the environment patched.
• Implement and maintain supply-chain security controls, such as signed artifacts and trusted artifact repositories.
• Support audit, logging, and compliance requirements, and maintain platform posture against frameworks like NIST 800-53.
• Partner with security and compliance teams to translate control requirements into automated platform configuration.

Skills

Industry

Contract length

Security clearance

Relocation