Senior Site Reliability Engineer - Government Cloud
Build and operate AWS GovCloud infrastructure for federal customers, owning IaC, container pipelines, compliance documentation, and operational tooling. Requires 5+ years AWS experience and FedRAMP familiarity.
210k – 220k
Remote5+ YOEDevOps / SRE
About the role
What you will be doing
Building and operating the AWS GovCloud environment that will host Tines for federal customers — from foundational network architecture through to production-ready, assessment-ready infrastructure.
Designing and implementing repeatable infrastructure-as-code to provision dedicated customer environments.
Owning the container image pipeline for our government deployment — building, hardening, scanning, and promoting FIPS-compliant images through our CI/CD pipeline using AWS native tooling.
Identifying and fixing availability risks and monitoring gaps to ensure our government environments stay healthy, observable, and auditable.
Working closely with our assessment partners to produce the infrastructure documentation, architecture diagrams, and evidence needed for FedRAMP authorization.
Enabling product engineers to build new features that work seamlessly across our commercial and government environments: observability, logging, and simplifying deployments.
Defining how we separate compliance-restricted functions from day-to-day engineering operations so the team can ship code and respond to incidents without breaking the security boundary.
Supporting our self-hosted federal customers operating in our CMMC environment, including handling escalations and complex, long-running support cases as part of the team's on-call responsibilities.
Projects you might work on
Designing the infrastructure-as-code library for GovCloud customer provisioning — a repeatable process to stand up an isolated environment with all required AWS services pre-configured with FedRAMP-required encryption and logging.
Building the CI/CD pipeline that promotes container images from development through staging to GovCloud production, with vulnerability scanning gates and change control documentation baked into the workflow.
Creating operational runbooks for customer provisioning, incident response, patching, and disaster recovery that satisfy our assessment requirements.
Setting up monitoring dashboards and alarms that feed into a Tines tenant for automated incident triage.
Building IAM structures and permission boundaries that let engineers deploy and debug in production while maintaining least-privilege access required for compliance.
Monitoring, scaling, and operating data services like OpenSearch in production — managing indexes and retention, tuning for performance, and building in-product tooling that surfaces cluster health and observability to the team.
Collaborating with our Product and Design teams to enable compliance-specific product features like smart card authentication and DNS security extensions.
Writing documentation that helps the broader engineering team understand how to build and test features in a compliance-regulated environment.
Is this the right role for you?
5+ years in an infrastructure, DevOps, or cloud engineering role with meaningful time spent in AWS. Direct experience with AWS GovCloud is a strong plus, but deep AWS fluency with a willingness to navigate GovCloud's constraints is what matters most.
Hands-on experience designing VPC architectures, configuring encryption at rest and in transit, and operating AWS native compute, database, and caching services in production under real workloads.
Worked with infrastructure-as-code like CDK or Terraform in FedRAMP or CMMC environments, preferably supporting a customer-facing SaaS product.
Understand what it takes to operate in a compliance-regulated environment. FedRAMP, FISMA, or similar experience is valuable.
Comfortable with container image pipelines and hardening. Able to reason about base image provenance, vulnerability scanning, and what "hardened" actually means in practice.
Good instincts for the boundary between "locked down for compliance" and "usable by engineering."
Can write clearly. This role involves producing tech plans, runbooks, and operational documentation that will be reviewed during our FedRAMP assessment.
Comfortable learning new technologies. We use Ruby, Rails, React, TypeScript, Postgres, Redis, and Kubernetes.
Skills
AWSAws GovcloudTerraformCdkInfrastructure As CodeFedRAMPCmmcVpcCI/CDDockerKubernetesOpensearchIAMEncryptionFips
Design, operate, and automate the global network and reliability layer for a high-performance NVIDIA DGX SuperPOD supporting ML workloads. Own architecture, observability, incident response, and security for mission-critical infrastructure.
210k – 240k
On-site8+ YOEDevOps / SRE
Infrastructure Design Engineer
Together AISan Francisco, CA
Designs whitespace environments for large-scale AI GPU clusters, including rack layouts, power, cooling, and cabling. Reviews contractor designs, ensures compliance with standards, and owns capacity planning. Requires 7+ years in data center infrastructure.
210k – 250k
Hybrid7+ YOEDevOps / SRE
Senior Site Reliability Engineer
AlembicSan Francisco, CA
Builds and maintains scalable infrastructure for real-time analytics and ML workloads, focusing on reliability, automation, CI/CD, monitoring, and incident response. Requires 8+ years SRE/DevOps experience with Kubernetes, Terraform, Linux, and observability tools.
210k – 240k
On-site8+ YOEDevOps / SRE
Senior Software Engineer, SRE
AbridgeSan Francisco, CA +2
Senior SRE improves performance, stability, and scalability of distributed systems through load testing, chaos engineering, observability, and infrastructure migrations. Requires 8+ years in distributed systems, Kubernetes, GCP, and backend languages like Python/Go.
211k – 248k
Hybrid8+ YOEDevOps / SRE
Senior Production Engineer
CrusoeSan Francisco, CA +1
As a Senior Production Engineer, you will ensure the reliability and scalability of Crusoe’s AI-optimized cloud platform, focusing on designing and operating managed AI services for LLM workloads. You will build automation and reliability tooling, define SLIs/SLOs, and optimize large-scale training and inference clusters.