Trility ConsultingRemote
Senior DevSecOps Consultant – GitLab Platform
United States
Contract
9 hours ago
No H1B
Key skills
Cyber SecurityKubernetesTerraformArgoCDGitLabGitOpsCI/CDCommunication
About this role
Role Overview
- Design and implement a CMMC-aligned GitLab architecture supporting 250–500+ users
- Deploy and operate self-managed GitLab on Kubernetes using Crossplane
- Architect secure GitLab runner strategies (pooling, isolation, autoscaling) for mixed workloads
- Evaluate and document architectural approaches (single vs. segregated GitLab instances) with clear tradeoff analysis
- Translate NIST 800-171 and CMMC requirements into enforceable GitLab configurations and access controls
- Implement configuration-as-code using Terraform (e.g., GitLab provider) to ensure versioned, auditable, and repeatable platform management
- Design and implement RBAC, least-privilege models, and segregation of duties
- Establish drift detection and audit mechanisms to monitor and remediate unauthorized changes
- Integrate GitLab into the broader Kubernetes platform ecosystem, including GitOps workflows (e.g., ArgoCD)
- Produce architecture documentation, runbooks, and reference patterns to enable internal ownership and long-term sustainability
- Collaborate with cybersecurity, architecture review boards, and platform teams to validate compliance and design decisions
Requirements
- Must reside within the United States
- Must be authorized to work in the United States without sponsorship now or in the future
- Must be able to pass a background check
- 5+ years of experience in DevOps, Platform Engineering, or DevSecOps roles
- Hands-on experience deploying and operating self-managed GitLab in production environments
- Strong expertise with Kubernetes, including day-2 operations, networking, and observability
- Experience with Infrastructure as Code (Terraform strongly preferred)
- Experience designing and securing CI/CD pipelines and runner architectures
- Experience with Crossplane for Kubernetes-based resource provisioning
- Demonstrated experience implementing RBAC, least-privilege models, and configuration-as-code for platform services
- Experience working in regulated environments (CMMC, NIST 800-171, FedRAMP, DoD, aerospace/defense, financial services, etc.)
- Strong documentation and cross-functional communication skills
Tech Stack
- Cyber Security
- Kubernetes
- Terraform
Benefits
- Work remotely anywhere in the United States with flexible work hours
- Sponsored and supported learning opportunities