Design and implement a CMMC-aligned GitLab architecture within a regulated aerospace environment. Responsibilities include deploying GitLab on Kubernetes, ensuring compliance with security standards, and managing CI/CD pipelines.
Who We Are
At Trility Consulting®, we’ve built a strong, remote-work culture where people thrive, grow, and support each other – earning us Great Place to Work® Certification. Headquartered in Central Iowa, we embrace flexible schedules and collaboration across geographically distributed teams serving clients from all corners of the United States and globally.
We seek team members with the grit necessary to forge paths where none previously existed, to get back up when circumstances knock them down, to adapt to the changing needs of the client even when it is uncomfortable, and to deliver on our commitments. Candidates must respect and value people, recognize that over-communication is barely good enough, thrive on solving complex problems, have a passion for building teams, and know that delivering what a client actually values is more important than their own predispositions. They understand value proposition, love delivering value, and take pride in learning the expansive and ever-changing business of clients. Candidates are self-motivated and relentlessly working to become more today than they were yesterday.
What You Will Do
We are seeking a Mid-Level DevSecOps Consultant to design and implement a CMMC-aligned GitLab platform within a regulated space/aerospace environment. This role will focus on architecting, deploying, and hardening a self-managed GitLab environment on Kubernetes using Crossplane while establishing secure, scalable patterns that internal teams can operate long-term.
You will partner closely with the platform chief architect and engineering teams to define architecture decisions, implement secure configuration-as-code practices, and ensure the platform meets CMMC and NIST 800-171 requirements.
This is a remote 1099 or W2 position. Please no C2C.
Key Responsibilities
- Design and implement a CMMC-aligned GitLab architecture supporting 250–500+ users
- Deploy and operate self-managed GitLab on Kubernetes using Crossplane
- Architect secure GitLab runner strategies (pooling, isolation, autoscaling) for mixed workloads
- Evaluate and document architectural approaches (single vs. segregated GitLab instances) with clear tradeoff analysis
- Translate NIST 800-171 and CMMC requirements into enforceable GitLab configurations and access controls
- Implement configuration-as-code using Terraform (e.g., GitLab provider) to ensure versioned, auditable, and repeatable platform management
- Design and implement RBAC, least-privilege models, and segregation of duties
- Establish drift detection and audit mechanisms to monitor and remediate unauthorized changes
- Integrate GitLab into the broader Kubernetes platform ecosystem, including GitOps workflows (e.g., ArgoCD)
- Produce architecture documentation, runbooks, and reference patterns to enable internal ownership and long-term sustainability
- Collaborate with cybersecurity, architecture review boards, and platform teams to validate compliance and design decisions
Qualifications
- 3+ years of experience in DevOps, Platform Engineering, or DevSecOps roles
- Hands-on experience deploying and operating self-managed GitLab in production environments
- Strong expertise with Kubernetes, including day-2 operations, networking, and observability
- Experience with Infrastructure as Code (Terraform strongly preferred)
- Experience designing and securing CI/CD pipelines and runner architectures
- Experience with Crossplane for Kubernetes-based resource provisioning
- Familiarity with Cilium, Keycloak, ArgoCD, and related DevSecOps tooling
- Demonstrated experience implementing RBAC, least-privilege models, and configuration-as-code for platform services
- Experience working in regulated environments (CMMC, NIST 800-171, FedRAMP, DoD, aerospace/defense, financial services, etc.)
- Strong documentation and cross-functional communication skills
Nice to Have
- Direct experience mapping NIST 800-171 / CMMC controls to technical implementations
- Experience supporting hybrid regulated and commercial workloads
At this time, Trility is only able to hire W2 employees who reside in the following states:
Colorado, Florida, Georgia, Iowa, Kansas, Louisiana, Minnesota, Missouri, Montana, Nebraska, Nevada, South Carolina, Texas, Tennessee, Virginia, Wisconsin, Kentucky, Delaware, North Carolina, Ohio, and Utah.
How We Put You First
Trility’s culture is built upon the journey, character, and work ethic of our team members. We are a team of honorable and professional lifelong learners who work together to solve problems proactively.
• Work remotely anywhere in the United States with flexible work hours
• Paid time-off, company holidays, and floating holidays
• Comprehensive benefits with contributions toward premiums
• 401(k) plan
• Sponsored and supported learning opportunities
Job Requirements
• Must reside within the United States
• Must be authorized to work in the United States without sponsorship now or in the future
• Must be able to pass a background check
Similar Jobs
Fintech • Legal Tech • Software • Financial Services • Cybersecurity • Data Privacy
The Associate Vendor Management Specialist oversees project management, data analysis, and conflict resolution, ensuring licensing compliance and maintaining relationships with jurisdictional offices.
Top Skills:
ExcelMS OfficeSalesforceSharepoint
eCommerce • Healthtech • Kids + Family • Retail • Social Media
The Director, Payer Strategy will lead Babylist Health's payer strategy, managing relationships and offering strategic guidance for growth in both Medicaid and commercial channels.
Top Skills:
AI
Blockchain • eCommerce • Fintech • Payments • Software • Financial Services • Cryptocurrency
The Software Engineer will enhance Lending products for Cash App, focusing on building complex systems, APIs, and collaborating with multiple teams to support economic empowerment through accessible credit.
Top Skills:
AuroraAWSDynamoDBGrpcGuiceHibernateHTTPJavaJettyJooqJSONJunitKafkaKotlinMySQLOkhttpProtocol BuffersRedisVitess
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
