As a Staff DevSecOps Engineer for Sentinel's DevStar, this position will be in Roy, Utah and you will have the following scope:
• Design, build, deploy, and maintain scalable, secure, and highly available Kubernetes clusters and associated infrastructure across multiple environments.
• Implement and manage the full lifecycle of Kubernetes platforms, including stabilization, re-architecture, upgrades, monitoring, logging, backups, and disaster recovery.
• Engineer, deploy, and manage core Kubernetes ecosystem components, including service mesh (e.g., Istio), ingress controllers, load balancers (e.g., MetalLB), monitoring stacks (e.g., Kube-Prometheus-Stack), logging solutions (e.g., Loki), policy enforcement tools (e.g., Kyverno), artifact repositories (e.g., Nexus), identity management (e.g., Keycloak), and backup solutions (e.g., Velero).
• Establish, maintain, and enhance GitOps workflows (e.g., using FluxCD, ArgoCD) and Infrastructure as Code (IaC) practices (e.g., Helm, Terraform, Ansible) for automated, version-controlled infrastructure and application deployments.
• Administer, configure, secure, and optimize underlying Linux operating systems (e.g., RHEL) for Kubernetes nodes and supporting servers.
• Design, implement, and manage CI/CD pipelines (e.g., GitLab CI) to automate build, test, and deployment processes, resolving performance bottlenecks.
• Provide technical leadership and mentorship to junior engineers on Kubernetes, GitOps, IaC, and DevSecOps principles and best practices.
• Troubleshoot complex issues related to the Kubernetes platform, deployed applications, networking, and underlying infrastructure.
• Collaborate with development teams, security teams, and other stakeholders to define requirements, implement solutions, and ensure smooth operations.
• Manage and maintain system documentation, including architecture diagrams, configuration guides, and operational procedures.
• Work together with vendors and other IT personnel for problem resolution.
• Monitor and support all installed systems and infrastructure.
• Develop custom scripts to increase system efficiency and lower the human intervention time on any tasks.
• Evaluate application performance, identify potential bottlenecks, develop solutions, and implement them with the help of developers.
Basic Qualifications:
• 12 Years experience with Bachelors in related field of study; 10 Years with Masters; 8 Years with PhD or 04 additional years in lieu of a degree.
• Must be a U.S. Citizen
• Must have an active U.S. Government DoD Top Secret security clearance at time of application, current and within scope and Special Access Program (SAP) approval.
• Demonstrated experience implementing and managing GitOps workflows (e.g., FluxCD, ArgoCD) and Infrastructure as Code (IaC) tools (e.g., Helm, Terraform, Ansible).
• Strong understanding of networking concepts (TCP/IP, DNS, HTTP/S, Load Balancing, Firewalls).
• Possess one or more relevant industry certifications, such as:
Certified Kubernetes Administrator (CKA) - Strongly preferred
Certified Information Systems Security Professional (CISSP) or equivalent security certification
Red Hat Certified System Administrator (RHCSA) or equivalent Linux certification
• Excellent problem-solving, communication, and collaboration skills.
Preferred Qualifications:
• Min 5 years experience with containerization technologies (Docker, Podman).
• Min 5 years experience administering Linux operating systems (e.g., RHEL, Ubuntu).
• Min 5 years experience with CI/CD tools and practices (e.g., GitLab CI).
• Min 2 years experience deploying and managing common Kubernetes ecosystem tools (e.g., Istio, Prometheus, Grafana, Loki, Velero, Keycloak, Nginx Ingress).
#SentinelSoftware