Level 3 (L3) DevOps Engineer (Mid-level)

Reports To: Cloud Operations Manager or Platform Engineering Lead
Level: Individual Contributor
Location: Remote / Hybrid
Classification: Full-Time, Exempt
Estimated Annual Salary: $120,000 – $145,000

About Knox

Knox runs the largest Federal managed cloud, building and operating secure cloud and AI environments that support the U.S. government’s most critical missions — from national security and public safety to essential public services. Our customers rely on Knox to deploy production systems that meet the highest standards for security, reliability, and compliance.

Work at Knox is high-impact and purpose-driven. The problems we solve are high-stakes, the expectations are high, and the results are visible. Speed, rigor, and trust matter here - because the environments we secure cannot fail. Your contributions are visible, your expertise is relied upon, and the impact of your work is immediate and measurable. We operate at federal scale, securing some of the most sensitive government environments in the country - because the systems we build must perform without fail.

Position Overview
The DevOps Engineer designs, automates, and maintains Knox’s cloud infrastructure and CI/CD pipelines across AWS, Azure, and GCP. This role ensures secure, compliant, and repeatable deployments that support Knox’s FedRAMP-authorized, multi-tenant cloud environments.

The ideal candidate combines hands-on cloud experience, automation expertise,
and a deep understanding of modern DevOps practices — including
Infrastructure as Code (IaC), observability, and security-by-design principles.

Key Responsibilities
Cloud Infrastructure & Automation
● Build and manage infrastructure across AWS, Azure, and GCP using IaC tools (Terraform, Ansible, CloudFormation).
● Automate provisioning, configuration, and deployment workflows via CI/CD.
● Implement and maintain GitOps pipelines to enforce version-controlled, auditable infrastructure changes.
● Manage cloud networking, IAM, and security group configurations aligned to FedRAMP controls.

CI/CD & Policy-as-Code

● Develop and maintain CI/CD pipelines using GitHub Actions, GitLab CI, Azure DevOps, or Jenkins.
● Integrate Policy-as-Code frameworks (OPA, HashiCorp Sentinel, or Azure Policy) for compliance enforcement.
● Embed automated validation, testing, and security scans into pipeline workflows.

Observability & Reliability
● Automate deployment of dashboards, alerts, and metrics using tools like Grafana, CloudWatch, Datadog, or Azure Monitor.
● Define and track Service Level Indicators (SLIs) and Objectives (SLOs) for critical services.
● Partner with CloudOps to improve incident detection and proactive remediation.

Security, Identity & Secrets Management
● Manage secrets, credentials, and API tokens using KMS, Key Vault, or Vault.
● Integrate pipelines with federated identity providers (Azure AD, AWS IAM Identity Center, Okta).
● Enforce least-privilege and credential rotation policies across automation systems.

Containerization & Deployment
● Build, deploy, and manage containerized workloads using EKS, AKS, or GKE.
● Implement Helm, ArgoCD, or Kustomize for automated container deployments.

● Troubleshoot networking and application issues within Kubernetes environments.

Compliance & Cost Optimization
● Maintain IaC and CI/CD configurations compliant with FedRAMP and NIST 800-53 standards.
● Automate audit evidence generation for CM-2, CM-6, AU-2, and SC-12 controls.
● Collaborate with FinOps to monitor and optimize cloud usage and cost efficiency.

Qualifications
● 3–5 years in DevOps, Cloud, or Platform Engineering.
● Hands-on experience with at least one major hyperscaler (AWS preferred).
● Proficiency in Terraform, Ansible, and scripting (Bash, Python, PowerShell).
● Experience with CI/CD tools and cloud-native automation.
● Familiarity with containers and orchestration (Docker, Kubernetes).
● Understanding of FedRAMP, NIST 800-53, or SOC 2 compliance requirements.

Preferred Certifications:
AWS SysOps Admin, Azure Administrator Associate, Terraform Associate, CompTIA Security+

Hiring Requirement: Due to the nature of our work with federal government clients and compliance with applicable regulations, this position requires U.S. citizenship. Dual citizenship is not permitted for this role. Candidates must be able to provide documentation verifying sole U.S. citizenship status as part of the background check process.

Any offer of employment is contingent upon the successful completion of all required pre-employment screenings, including a background check, in accordance with applicable laws and government contract requirements.

Benefits & Perks

Knox offers a competitive employee benefits package including Medical, Dental, Vision, Life & Disability, unlimited PEO, and an employee funded 401k plan. Please note, benefits are subject to change.

We are an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. Employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, or any other legally protected status.