Apply on Employer Site

Semperis · 2 days ago

DevOps Team Lead FedRAMP

Phoenix, AZ

Full-time

Hybrid

Senior Level

5+ years exp

Semperis is a rapidly growing cybersecurity company recognized for its employee experience and commitment to purpose and growth. The DevOps Team Lead will oversee the deployment and secure operations of FedRAMP-authorized products while mentoring a team of engineers to ensure compliance and operational excellence.

Cyber SecurityEnterprise SoftwareIdentity ManagementInformation Technology

No H1B

U.S. Citizen Only

Responsibilities

Lead the design, implementation, and continuous improvement of build and release pipelines within FedRAMP boundary

Provide day-to-day guidance and direct support to a team of DevOps engineers supporting FedRAMP operations

Conduct 1:1s, deliver performance reviews, and promote professional development across the team

Architect and execute cloud deployment strategies optimized for FedRAMP compliance, performance, and cost efficiency

Review code, infrastructure configurations, and documentation to uphold FedRAMP security controls and best practices

Train and mentor developers and stakeholders in Azure DevOps, Git workflows, and FedRAMP compliance requirements

Collaborate with Infrastructure, Security, and Compliance teams to diagnose and resolve deployment challenges

Maintain comprehensive documentation aligned with FedRAMP continuous monitoring requirements

Troubleshoot issues during deployment and provide production support in FedRAMP staging and live environments

Represent the team in cross-functional meetings, including interactions with federal customers and auditors

Research and evaluate emerging technologies for FedRAMP-compliant adoption

Design and manage Azure Government Cloud infrastructure using IaC principles with Terraform and Terragrunt

Maintain AKS clusters with Istio for secure, FedRAMP-compliant service-to-service communication

Manage Azure Government resources including networking, Key Vault, Storage within FedRAMP boundary

Configure OpenSearch clusters for efficient logging, audit trails, and data indexing per FedRAMP requirements

Optimize CosmosDB performance with scaling strategies and cost oversight

Lead the development of robust CI/CD pipelines that maintain FedRAMP security controls throughout the SDLC

Establish and maintain GitOps workflows via ArgoCD with appropriate access controls and audit logging

Author and maintain automation scripts that comply with security baselines

Continuously evaluate and enhance deployment processes while maintaining FedRAMP authorization

Implement and maintain FedRAMP security controls across the DevOps toolchain

Design Zero Trust security architecture using Azure PIM and RBAC aligned with federal requirements

Define and enforce least privilege access models per FedRAMP and NIST 800-53 controls

Configure Web Application Firewalls (WAFs) and manage network security in Azure Government Cloud

Support continuous monitoring activities and prepare artifacts for FedRAMP annual assessments

Collaborate with Security and Compliance teams on POA&M remediation and security control validation

Deploy observability tooling using OpenTelemetry, Azure Monitor, and Application Insights with security event logging

Participate in on-call rotation and incident response protocols, including security incident handling

Lead post-incident analysis and drive implementation of long-term fixes while maintaining compliance

Define and maintain reliability objectives, SLAs, and error budgets for FedRAMP environment

Qualification

FedRAMP complianceDevOps leadershipAzure DevOpsInfrastructure as CodeTerraformKubernetesCI/CD pipelinesZero Trust architectureObservability toolsBash scriptingPythonTroubleshooting abilitiesCommunication

Required

U.S. citizenship required

Active security clearance or ability to obtain one

Prior experience supporting FedRAMP Moderate or High authorization

5+ years of DevOps/SRE experience in SaaS or cloud-native environments

2+ years in a formal engineering leadership role, including people management and performance reviews

Strong understanding of the FedRAMP framework, its controls, and compliance requirements

Proven experience with Government Cloud (or strong Azure commercial with ability to transition)

Strong hands-on experience with: Terraform and Terragrunt for Infrastructure as Code, Kubernetes (AKS) and Helm, Istio Service Mesh and Istio Ingress Gateways, ArgoCD and GitOps workflows, CI/CD pipelines via Azure DevOps, Zero Trust architecture, including PIM and RBAC, Observability tools: OpenTelemetry, Prometheus, Grafana, Azure Monitor, Bash scripting; Python or Go for automation/tooling

Experience implementing and maintaining security controls in production environments

Comfortable supporting production systems in on-call rotation

Strong communication, leadership, and troubleshooting abilities

Experience with WAFs and secure network configurations in Azure