Skip to content
TinesTinesUnited States

Senior Site Reliability Engineer - Government Cloud

Build and operate AWS GovCloud infrastructure for federal customers, owning IaC, container pipelines, compliance documentation, and operational tooling. Requires 5+ years AWS experience and FedRAMP familiarity.

210k – 220k
Remote5+ YOEDevOps / SRE

About the role

What you will be doing

  • Building and operating the AWS GovCloud environment that will host Tines for federal customers — from foundational network architecture through to production-ready, assessment-ready infrastructure.
  • Designing and implementing repeatable infrastructure-as-code to provision dedicated customer environments.
  • Owning the container image pipeline for our government deployment — building, hardening, scanning, and promoting FIPS-compliant images through our CI/CD pipeline using AWS native tooling.
  • Identifying and fixing availability risks and monitoring gaps to ensure our government environments stay healthy, observable, and auditable.
  • Working closely with our assessment partners to produce the infrastructure documentation, architecture diagrams, and evidence needed for FedRAMP authorization.
  • Enabling product engineers to build new features that work seamlessly across our commercial and government environments: observability, logging, and simplifying deployments.
  • Defining how we separate compliance-restricted functions from day-to-day engineering operations so the team can ship code and respond to incidents without breaking the security boundary.
  • Supporting our self-hosted federal customers operating in our CMMC environment, including handling escalations and complex, long-running support cases as part of the team's on-call responsibilities.

Projects you might work on

  • Designing the infrastructure-as-code library for GovCloud customer provisioning — a repeatable process to stand up an isolated environment with all required AWS services pre-configured with FedRAMP-required encryption and logging.
  • Building the CI/CD pipeline that promotes container images from development through staging to GovCloud production, with vulnerability scanning gates and change control documentation baked into the workflow.
  • Creating operational runbooks for customer provisioning, incident response, patching, and disaster recovery that satisfy our assessment requirements.
  • Setting up monitoring dashboards and alarms that feed into a Tines tenant for automated incident triage.
  • Building IAM structures and permission boundaries that let engineers deploy and debug in production while maintaining least-privilege access required for compliance.
  • Monitoring, scaling, and operating data services like OpenSearch in production — managing indexes and retention, tuning for performance, and building in-product tooling that surfaces cluster health and observability to the team.
  • Collaborating with our Product and Design teams to enable compliance-specific product features like smart card authentication and DNS security extensions.
  • Writing documentation that helps the broader engineering team understand how to build and test features in a compliance-regulated environment.

Is this the right role for you?

  • 5+ years in an infrastructure, DevOps, or cloud engineering role with meaningful time spent in AWS. Direct experience with AWS GovCloud is a strong plus, but deep AWS fluency with a willingness to navigate GovCloud's constraints is what matters most.
  • Hands-on experience designing VPC architectures, configuring encryption at rest and in transit, and operating AWS native compute, database, and caching services in production under real workloads.
  • Worked with infrastructure-as-code like CDK or Terraform in FedRAMP or CMMC environments, preferably supporting a customer-facing SaaS product.
  • Understand what it takes to operate in a compliance-regulated environment. FedRAMP, FISMA, or similar experience is valuable.
  • Comfortable with container image pipelines and hardening. Able to reason about base image provenance, vulnerability scanning, and what "hardened" actually means in practice.
  • Good instincts for the boundary between "locked down for compliance" and "usable by engineering."
  • Can write clearly. This role involves producing tech plans, runbooks, and operational documentation that will be reviewed during our FedRAMP assessment.
  • Comfortable learning new technologies. We use Ruby, Rails, React, TypeScript, Postgres, Redis, and Kubernetes.

Skills

AWSAws GovcloudTerraformCdkInfrastructure As CodeFedRAMPCmmcVpcCI/CDDockerKubernetesOpensearchIAMEncryptionFips

Similar roles

DevOps / SRE jobs
Alembic

Senior Network & Site Reliability Engineer

AlembicSan Francisco, CA

Design, operate, and automate the global network and reliability layer for a high-performance NVIDIA DGX SuperPOD supporting ML workloads. Own architecture, observability, incident response, and security for mission-critical infrastructure.

210k – 240k
On-site8+ YOEDevOps / SRE
Together AI

Infrastructure Design Engineer

Together AISan Francisco, CA

Designs whitespace environments for large-scale AI GPU clusters, including rack layouts, power, cooling, and cabling. Reviews contractor designs, ensures compliance with standards, and owns capacity planning. Requires 7+ years in data center infrastructure.

210k – 250k
Hybrid7+ YOEDevOps / SRE
Alembic

Senior Site Reliability Engineer

AlembicSan Francisco, CA

Builds and maintains scalable infrastructure for real-time analytics and ML workloads, focusing on reliability, automation, CI/CD, monitoring, and incident response. Requires 8+ years SRE/DevOps experience with Kubernetes, Terraform, Linux, and observability tools.

210k – 240k
On-site8+ YOEDevOps / SRE
Abridge

Senior Software Engineer, SRE

AbridgeSan Francisco, CA +2

Senior SRE improves performance, stability, and scalability of distributed systems through load testing, chaos engineering, observability, and infrastructure migrations. Requires 8+ years in distributed systems, Kubernetes, GCP, and backend languages like Python/Go.

211k – 248k
Hybrid8+ YOEDevOps / SRE
Crusoe

Senior Production Engineer

CrusoeSan Francisco, CA +1

As a Senior Production Engineer, you will ensure the reliability and scalability of Crusoe’s AI-optimized cloud platform, focusing on designing and operating managed AI services for LLM workloads. You will build automation and reliability tooling, define SLIs/SLOs, and optimize large-scale training and inference clusters.

209k – 253k
On-siteDevOps / SRE