[Hiring] Mid-Level DevSecOps Consultant @Trility Consulting

Role Description

We are seeking a Mid-Level DevSecOps Consultant to design and implement a CMMC-aligned GitLab platform within a regulated space/aerospace environment. This role will focus on architecting, deploying, and hardening a self-managed GitLab environment on Kubernetes using Crossplane while establishing secure, scalable patterns that internal teams can operate long-term.

You will partner closely with the platform chief architect and engineering teams to define architecture decisions, implement secure configuration-as-code practices, and ensure the platform meets CMMC and NIST 800-171 requirements.

This is a remote 1099 or W2 position. Please no C2C.

Key Responsibilities

• Design and implement a CMMC-aligned GitLab architecture supporting 250–500+ users
• Deploy and operate self-managed GitLab on Kubernetes using Crossplane
• Architect secure GitLab runner strategies (pooling, isolation, autoscaling) for mixed workloads
• Evaluate and document architectural approaches (single vs. segregated GitLab instances) with clear tradeoff analysis
• Translate NIST 800-171 and CMMC requirements into enforceable GitLab configurations and access controls
• Implement configuration-as-code using Terraform (e.g., GitLab provider) to ensure versioned, auditable, and repeatable platform management
• Design and implement RBAC, least-privilege models, and segregation of duties
• Establish drift detection and audit mechanisms to monitor and remediate unauthorized changes
• Integrate GitLab into the broader Kubernetes platform ecosystem, including GitOps workflows (e.g., ArgoCD)
• Produce architecture documentation, runbooks, and reference patterns to enable internal ownership and long-term sustainability
• Collaborate with cybersecurity, architecture review boards, and platform teams to validate compliance and design decisions

Qualifications

• 3+ years of experience in DevOps, Platform Engineering, or DevSecOps roles
• Hands-on experience deploying and operating self-managed GitLab in production environments
• Strong expertise with Kubernetes, including day-2 operations, networking, and observability
• Experience with Infrastructure as Code (Terraform strongly preferred)
• Experience designing and securing CI/CD pipelines and runner architectures
• Experience with Crossplane for Kubernetes-based resource provisioning
• Familiarity with Cilium, Keycloak, ArgoCD, and related DevSecOps tooling
• Demonstrated experience implementing RBAC, least-privilege models, and configuration-as-code for platform services
• Experience working in regulated environments (CMMC, NIST 800-171, FedRAMP, DoD, aerospace/defense, financial services, etc.)
• Strong documentation and cross-functional communication skills

Nice to Have

• Direct experience mapping NIST 800-171 / CMMC controls to technical implementations
• Experience supporting hybrid regulated and commercial workloads

Job Requirements

• Must reside within the United States
• Must be authorized to work in the United States without sponsorship now or in the future
• Must be able to pass a background check

Benefits

• Work remotely anywhere in the United States with flexible work hours
• Paid time-off, company holidays, and floating holidays
• Comprehensive benefits with contributions toward premiums
• 401(k) plan
• Sponsored and supported learning opportunities