Senior DevOps Engineer (IL5 / FedRAMP High)

DescriptionKeeper Security is hiring a Senior DevOps Engineer with direct experience building and managing infrastructure in IL5-compliant environments. This is a 100% remote position, with the opportunity to work a hybrid schedule for candidates based in the El Dorado Hills, CA or Chicago, IL metro areas.Keeper’s cybersecurity software is trusted by millions of people and thousands of organizations globally. Keeper is published in 23 languages and is sold in over 150 countries. Join one of the fastest-growing cybersecurity companies and bring your IL5 DevOps expertise to mission-critical work.About KeeperKeeper Security is transforming cybersecurity for organizations globally with zero-trust privileged access management built with end-to-end encryption. Keeper’s cybersecurity solutions are FedRAMP and StateRAMP Authorized, SOC 2 compliant, FIPS 140-2 validated, as well as ISO 27001, 27017 and 27018 certified. Keeper deploys in minutes, not months, and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance. Trusted by millions of individuals and thousands of organizations, Keeper is the leader for password, passkey and secrets management, privileged access, secure remote access and encrypted messaging. Learn how our zero-trust and zero-knowledge solutions defend against cyber threats atKeeperSecurity.com .About the JobWe’re seeking a hands-on Senior DevOps Engineer who thrives in high-security, compliance-driven environments. In this role, you will design, build, and maintain cloud infrastructure, CI/CD pipelines, and automation within IL5 / FedRAMP High deployments. You will collaborate closely with security engineering, platform engineering, and compliance teams to deliver highly available, resilient, and audit-ready systems in AWS GovCloud and/or Azure Government environments. This is a senior technical role requiring experience operating hardened environments, automating infrastructure under strict compliance controls, and designing secure cloud architectures.ResponsibilitiesDesign, implement, and manage IL5 / FedRAMP High–compliant infrastructure in AWS GovCloud and/or Azure GovernmentAutomate infrastructure provisioning using Terraform and infrastructure-as-code best practicesBuild and maintain secure CI/CD pipelines that meet IL5 and FedRAMP High compliance requirementsCollaborate with security and compliance teams to ensure appropriate controls, monitoring, and reportingConfigure logging, alerting, and telemetry in restricted and hardened environmentsHarden operating systems and container runtimes in accordance with DISA STIGs, CIS benchmarks, and security best practicesSupport secure secrets management, access controls (RBAC, ABAC), and audit loggingParticipate in architecture discussions to ensure infrastructure is scalable, resilient, and compliantAssist with documentation, evidence collection, and remediation activities supporting ATO (Authority to Operate) processesRequirements5+ years of experience in DevOps, SRE, or Infrastructure Engineering rolesHands-on experience operating IL5 or FedRAMP High–compliant environments (required)Deep familiarity with AWS GovCloud and/or Azure GovernmentStrong experience with Terraform or similar infrastructure-as-code toolingProficiency in scripting and automation using Python, Bash, or similar languagesExperience building secure CI/CD workflows using tools such as GitHub Actions, Jenkins, or GitLab CIKnowledge of STIG hardening, CIS benchmarks, and compliance automationUnderstanding of zero-trust architectures and secure enclave designAbility to work collaboratively with security, platform, and compliance stakeholdersExcellent troubleshooting skills and sound judgment in high-pressure operational scenariosPreferred QualificationsPrior experience contributing to an ATO for a FedRAMP or DoD deploymentExperience running Kubernetes in high-compliance environmentsFamiliarity with secrets management solutions such as HashiCorp Vault, AWS KMS, or similarExposure to vulnerability scanning, compliance drift detection, or SIEM integrationBenefitsMedical, Dental & Vision (inclusive of domestic partnerships)Employer Paid Life Insurance & Employee/Spouse/Child Supplemental lifeVoluntary Short/Long Term Disability Insurance401K (Roth/Traditional)A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc)Above market annual bonusesKeeper Security, Inc. is an equal opportunity employer and participant in the U.S. Federal E-Verify program. We celebrate diversity and are committed to creating an inclusive environment for all employees.Classification:ExemptKeeper Candidate Privacy NoticeThis notice explains how Keeper Security processes your personal data during recruitment. Depending on the role and location, the Controller of personal data (the organization responsible for determining why and how personal data is processed) will be Keeper Security Inc. (US), Keeper Security EMEA Ltd. (Ireland), or Keeper Security APAC K.K (Japan).1.Data We CollectInformation You provide:Contact details, CV/resume, cover letterEmployment history, qualifications, work eligibilityApplication responses and uploaded documentsInformation We generate:Interview notes, assessments, communicationsScheduling informationInformation From Others:Recruiter/referral information who submit your profileReferences (with your consent, before final offer)Public professional profilesBackground verification (post offer)Voluntary Diversity and Equal Opportunity InformationWe may ask you to voluntarily provide diversity information including race/ethnicity, gender, disability status and veteran status (US). Providing this information is optional and Keeper collects this data in order to comply with EEOC and similar requirements2.How We Use Your DataAssess your application and suitabilityManage interviews and recruitment workflowConsider you for other/future roles (we may seek your consent to keep your information on our systems beyond the retention period specified)Comply with employment law obligations3.Legal BasisLegitimate Interests (recruitment management, security and integrity of the hiring process)Contracting steps (for progressed candidates)Legal and regulatory compliance obligations; explicit consent where required4.Who We Share Information WithInternal:HR, hiring managers, interviewers*, IT support for system administration*Note - diversity and equal opportunity data is not shared with hiring managers.Third Parties:Service providers who assist with:Applicant tracking, recruitment systems and assessment providersBackground verification vendors (post offer)Recruitment agencies (where applicable)Tools to support communication, collaboration and to securely store your dataKeeper ensures that all our third parties are contractually bound to protect your personal data with adequate safeguards in place.5.International TransfersYour data may be accessed by Keeper entities globally as needed for the purposes of hiring and decision making. We protect any such data transfer between Keeper entities using appropriate safeguards under applicable data protection laws.6.SecurityWe implement appropriate technical and organizational measures to protect your data, consistent with our industry leading security standards.7.RetentionWe keep your data for 24 months from your last application activity, then delete or anonymize it.Exceptions:You opt into our talent database for further retention by providing consent (extended retention)You're hired (transfers to employee records)8.Your RightsYou have the following rights and can contact us at the email below to exercise them:Access, correct, or delete your data, subject to applicable law and retention requirementsObject to or restrict processingWithdraw consent (where applicable)Request data portabilityLodge a complaint with your data protection authorityIf you become an employee, your rights regarding your employee record are governed by our internal Employee Privacy Notice and certain data will be retained as required under relevant laws such as employment or tax law.When you request access to your personal data, some information may be redacted if it includes the personal data of other individuals or information that we must protect in order to preserve their privacy rights.9.Automated DecisionsKeeper does not make hiring decisions using solely automated processing.10.Contact- Candidates can send privacy questions to: privacy@keepersecurity.com