Principal Engineer, DevOps & Infrastructure

# Principal Engineer, DevOps & InfrastructureDepartmentTechnologyEmployment TypeFull-timeLocationRemote / Hybrid / Conshohocken, PAReports ToCTO## **About ZeroEyes, Inc.**ZeroEyes was founded by former Navy SEALs, self-starters and elite technologists with a mission to reduce the threat and impact of mass shootings and gun-related violence using our best-in-class artificial intelligence (AI) platform that detects visible firearms before there’s a threat. As a member of the ZeroEyes team, you’ll have the unique opportunity to join a forward-facing, purpose-driven company, and your perseverance and individual skill set will become crucial to our mission’s success.## **About the role**We’re looking for a low-ego, high-ownership **Principal Engineer** to provide technical oversight, mentoring, and hands-on design for our DevOps and Infrastructure-as-Code (IaC) stack. You’ll be the bar-setter for reliability, security, and velocity across our cloud and orchestration platform. **AWS and FedRAMP experience is highly desired**—you’ll help us build, document, and run systems that meet rigorous compliance requirements while staying developer-friendly and cost-efficient.We value people who have strong, well-informed opinions and express them diplomatically, who care more about **truth than winning arguments**, who mentor generously, and who take personal responsibility for the organization’s success.## **What you’ll do*** **Own the platform architecture:** Define target state for cloud, network, identity, and runtime orchestration across AWS.* **Lead Infrastructure as Code:** Establish standards and reusable modules (Terraform/Pulumi), policy-as-code (Kyvernol), GitOps workflows (FluxCD/Kustomize), and immutable images (Gitlab/Dagger).* **Drive FedRAMP/NIST alignment:** Map controls (NIST 800-53), lead technical portions of the SSP, implement CIS/STIG hardening, FIPS-validated crypto usage, logging/monitoring requirements, and support ATO and continuous monitoring (ConMon) with auditors/3PAO.* **Elevate reliability:** Define SLOs/error budgets, incident response/runbooks, postmortems without blame, chaos and DR testing, multi-AZ/region strategies, and cost-aware resilience (RTO/RPO).* **Hands-on enablement:** Pair with teams to deliver CI/CD (GitLab Pipelines), container platforms (Kubernetes/EKS/GKE, ECS, Fargate), and service meshes/ingress.* **Security by default:** Identity & access (IAM/Okta, SSO/SAML/OIDC), secrets (AWS SM/KMS), supply-chain security (SBOM, Sigstore/Cosign, SLSA/SSDF), network segmentation/zero-trust.* **Observability:** Standardize metrics/logs/traces (Prometheus/Grafana/OpenTelemetry, ELK/Datadog), golden signals, actionable alerts, and capacity planning/FinOps.* **Mentor & multiply:** Coach SRE/DevOps/Platform engineers, run design reviews/ADRs, and establish pragmatic guardrails that speed teams up.* **Vendor & cost management:** Evaluate and right-size infra/services; build dashboards and budgets that the business can trust.* **Documentation & audits:** Keep docs current (runbooks, diagrams, control evidence); make auditors happy without slowing engineers.## **What you’ll bring*** 10+ years building/running production infrastructure; 5+ years leading DevOps/SRE or platform teams; prior **Principal/Staff** scope.* **FedRAMP Moderate** experience and working with a 3PAO.* Deep IaC expertise (Terraform or Pulumi), GitOps, and modern CI/CD; wide breadth of knowledge, including container orchestration (ECS/EKS) and container security.* Multi-cloud proficiency (AWS strongly preferred).* Security engineering literacy: NIST/CIS/STIG, FIPS 140-2/3 crypto usage, key management (KMS/HSM), least-privilege IAM, and policy-as-code.* Observability at scale (metrics/logs/traces), performance tuning, and cost governance/FinOps practices.* Strong coding skills in at least one of **C++/Python/Golang/.NET**, plus Bash; able to build tooling and not just wire it together.* Excellent written design docs and clear, candid communication; proven track record mentoring senior engineers.* Nice-to-have: data pipeline or real-time video/ML workloads; service mesh (Istio), incident command experience.## **Values*** **No jerks*** **Be authentic*** **Be effective*** **Attention to detail*** **All in, all the time**## **Eligibility*** Must be authorized to work in the U.S. Ability to obtain and maintain a Public Trust or other clearance may be required.## Apply for Principal Engineer, DevOps & Infrastructure at ZeroEyes
#J-18808-Ljbffr