• Monitor cloud infrastructure and application health using observability tools • Perform Tier 1 incident triage, document findings, and escalate appropriately • Support/coordinate mobile application release processes. • Manage SSL/TLS certificate lifecycle activities, including renewals and proactive expiration monitoring. • Proactively identify patterns in incidents or alerts and implement improvements that reduce operational toil and increase platform stability. • Collaborate cross-functionally with SRE, Development, Security, Product, and Support.

Description Keeper Security is hiring a Senior DevOps Engineer with direct experience building and managing infrastructure in IL5-compliant environments. This is a 100% remote position, with the opportunity to work a hybrid schedule for candidates based in the El Dorado Hills, CA or Chicago, IL metro areas. Keeper’s cybersecurity software is trusted by millions of people and thousands of organizations globally. Keeper is published in 23 languages and is sold in over 150 countries. Join one of the fastest-growing cybersecurity companies and bring your IL5 DevOps expertise to mission-critical work. About Keeper Keeper Security is transforming cybersecurity for organizations globally with zero-trust privileged access management built with end-to-end encryption. Keeper’s cybersecurity solutions are FedRAMP and StateRAMP Authorized, SOC 2 compliant, FIPS 140-2 validated, as well as ISO 27001, 27017 and 27018 certified. Keeper deploys in minutes, not months, and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance. Trusted by millions of individuals and thousands of organizations, Keeper is the leader for password, passkey and secrets management, privileged access, secure remote access and encrypted messaging. Learn how our zero-trust and zero-knowledge solutions defend against cyber threats at KeeperSecurity.com. About the Job We’re seeking a hands-on Senior DevOps Engineer who thrives in high-security, compliance-driven environments. In this role, you will design, build, and maintain cloud infrastructure, CI/CD pipelines, and automation within IL5 / FedRAMP High deployments. You will collaborate closely with security engineering, platform engineering, and compliance teams to deliver highly available, resilient, and audit-ready systems in AWS GovCloud and/or Azure Government environments. This is a senior technical role requiring experience operating hardened environments, automating infrastructure under strict compliance controls, and designing secure cloud architectures. Responsibilities - Design, implement, and manage IL5 / FedRAMP High–compliant infrastructure in AWS GovCloud and/or Azure Government - Automate infrastructure provisioning using Terraform and infrastructure-as-code best practices - Build and maintain secure CI/CD pipelines that meet IL5 and FedRAMP High compliance requirements - Collaborate with security and compliance teams to ensure appropriate controls, monitoring, and reporting - Configure logging, alerting, and telemetry in restricted and hardened environments - Harden operating systems and container runtimes in accordance with DISA STIGs, CIS benchmarks, and security best practices - Support secure secrets management, access controls (RBAC, ABAC), and audit logging - Participate in architecture discussions to ensure infrastructure is scalable, resilient, and compliant - Assist with documentation, evidence collection, and remediation activities supporting ATO (Authority to Operate) processes Requirements - 5+ years of experience in DevOps, SRE, or Infrastructure Engineering roles - Hands-on experience operating IL5 or FedRAMP High–compliant environments (required) - Deep familiarity with AWS GovCloud and/or Azure Government - Strong experience with Terraform or similar infrastructure-as-code tooling - Proficiency in scripting and automation using Python, Bash, or similar languages - Experience building secure CI/CD workflows using tools such as GitHub Actions, Jenkins, or GitLab CI - Knowledge of STIG hardening, CIS benchmarks, and compliance automation - Understanding of zero-trust architectures and secure enclave design - Ability to work collaboratively with security, platform, and compliance stakeholders - Excellent troubleshooting skills and sound judgment in high-pressure operational scenarios Preferred Qualifications - Prior experience contributing to an ATO for a FedRAMP or DoD deployment - Experience running Kubernetes in high-compliance environments - Familiarity with secrets management solutions such as HashiCorp Vault, AWS KMS, or similar - Exposure to vulnerability scanning, compliance drift detection, or SIEM integration Benefits - Medical, Dental & Vision (inclusive of domestic partnerships) - Employer Paid Life Insurance & Employee/Spouse/Child Supplemental life - Voluntary Short/Long Term Disability Insurance - 401K (Roth/Traditional) - A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc) - Above market annual bonuses Keeper Security, Inc. is an equal opportunity employer and participant in the U.S. Federal E-Verify program. We celebrate diversity and are committed to creating an inclusive environment for all employees. Classification: Exempt Keeper Candidate Privacy Notice This notice explains how Keeper Security processes your personal data during recruitment. Depending on the role and location, the Controller of personal data (the organization responsible for determining why and how personal data is processed) will be Keeper Security Inc. (US), Keeper Security EMEA Ltd. (Ireland), or Keeper Security APAC K.K (Japan). 1. Data We Collect Information You provide: - Contact details, CV/resume, cover letter - Employment history, qualifications, work eligibility - Application responses and uploaded documents Information We generate: - Interview notes, assessments, communications - Scheduling information Information From Others: - Recruiter/referral information who submit your profile - References (with your consent, before final offer) - Public professional profiles - Background verification (post offer) Voluntary Diversity and Equal Opportunity Information - We may ask you to voluntarily provide diversity information including race/ethnicity, gender, disability status and veteran status (US). Providing this information is optional and Keeper collects this data in order to comply with EEOC and similar requirements 2. How We Use Your Data - Assess your application and suitability - Manage interviews and recruitment workflow - Consider you for other/future roles (we may seek your consent to keep your information on our systems beyond the retention period specified) - Comply with employment law obligations 3. Legal Basis - Legitimate Interests (recruitment management, security and integrity of the hiring process) - Contracting steps (for progressed candidates) - Legal and regulatory compliance obligations; explicit consent where required 4. Who We Share Information With Internal: - HR, hiring managers, interviewers*, IT support for system administration *Note - diversity and equal opportunity data is not shared with hiring managers. Third Parties: Service providers who assist with: - Applicant tracking, recruitment systems and assessment providers - Background verification vendors (post offer) - Recruitment agencies (where applicable) - Tools to support communication, collaboration and to securely store your data Keeper ensures that all our third parties are contractually bound to protect your personal data with adequate safeguards in place. 5. International Transfers Your data may be accessed by Keeper entities globally as needed for the purposes of hiring and decision making. We protect any such data transfer between Keeper entities using appropriate safeguards under applicable data protection laws. 6. Security We implement appropriate technical and organizational measures to protect your data, consistent with our industry leading security standards. 7. Retention We keep your data for 24 months from your last application activity, then delete or anonymize it. Exceptions: - You opt into our talent database for further retention by providing consent (extended retention) - You're hired (transfers to employee records) 8. Your Rights You have the following rights and can contact us at the email below to exercise them: - Access, correct, or delete your data, subject to applicable law and retention requirements - Object to or restrict processing - Withdraw consent (where applicable) - Request data portability - Lodge a complaint with your data protection authority If you become an employee, your rights regarding your employee record are governed by our internal Employee Privacy Notice and certain data will be retained as required under relevant laws such as employment or tax law. When you request access to your personal data, some information may be redacted if it includes the personal data of other individuals or information that we must protect in order to preserve their privacy rights. 9. Automated Decisions Keeper does not make hiring decisions using solely automated processing. 10. Contact - Candidates can send privacy questions to: privacy@keepersecurity.com

JOB DESCRIPTION Staff DevSecOps Engineer Counterpart believes in small businesses and is dedicated to helping them do more with less risk. By pairing leading insurance experts with cutting-edge technology, Counterpart empowers small business owners to grow with confidence. Exceptional underwriters, trusted insurance brokers, and prominent insurance carriers come together on the Counterpart platform to support small businesses by providing AI-driven management and professional liability underwriting and claims services. That’s where you come in… As a Staff Engineer, DevSecOps, you own Counterpart's security posture. Traditional security was designed for a human-to-system world. As we scale an increasingly agentic stack, that model breaks. Agents acting on behalf of humans introduce new attack surfaces, trust boundaries, and failure modes that require a fundamental redesign of how we think about security. You are the person who leads that redesign. You are the internal authority on security and compliance, own IT operations end-to-end, and you act as a hands-on member of the DevOps team building and securing our platform infrastructure. You build on our SOC 2 Type 2 and HIPAA foundations, extending them as the threat surface evolves. This role is the foundation of our in-house security function. AS A STAFF DEVSECOPS ENGINEER, YOU WILL: - Own the organization's security posture. Define, implement, and maintain the controls, policies, and practices that keep Counterpart secure across human and agentic interactions. - Own our SOC 2 Type 2 and HIPAA compliance programs. Manage and automate audits, maintain evidence, and extend our compliance posture as the business and the threat surface grow. - Stay ahead of emerging threats and regulations. Continuously evaluate our security posture against new attack vectors, including data poisoning, adversarial inputs, and agent hijacking. Track how AI security standards and regulatory requirements are evolving and get ahead of them before they become mandatory. - Own IT operations end-to-end, from onboarding to offboarding. Manage and automate device procurement and provisioning, access controls, identity management, and the internal tooling stack. - Own platform infrastructure security as a hands-on member of the DevOps team. - Build and maintain sandbox architecture that allows safe experimentation without risking production systems. - Design and implement secure environments for AI agent workloads, including trust boundaries, defenses against prompt injection, data exfiltration, and other unexpected behaviors. WE LOOK FOR TEAMMATES WHO HAVE: - 10+ years in DevSecOps, security engineering, or a combination of DevOps, security, and IT roles - Hands-on experience with cloud infrastructure and security on AWS - Experience owning or co-owning SOC 2 and HIPAA compliance programs, not just contributing to them - Experience managing IT operations, including device management, identity and access management, and internal tooling - A solid foundation in security frameworks and compliance standards, including hands-on familiarity with AI agent risks such as prompt injection, data poisoning, and adversarial inputs. You think proactively about how emerging AI security standards and regulations affect an insurance technology company deploying agents. - The ability to communicate security risks clearly to non-technical stakeholders and translate compliance requirements into engineering decisions - The drive to build a security function from the ground up and grow into owning it fully - Domain curiosity about insurance. You either understand how insurance works or you are genuinely motivated to learn. Security decisions are better when you understand the business they protect. - Experience working with distributed, remote teams. WHAT WE OFFER - Unlimited Vacation: We offer flexible time off, allowing you to take time when you need it. - Work from Anywhere: Counterpart is a fully distributed company, meaning there is no office. We allow employees to work from wherever they do their best work, and invite the team to meet in person a couple times per year. - Stock Options - Health, Dental, and Vision Coverage - 401(k) Retirement Plan - Parental Leave - Home Office Allowance: to set up your home office with the necessary equipment and accessories. - Book stipend - Professional Development Reimbursement - No working birthdays: Take your birthday off, giving you the opportunity to relax, enjoy your special day, and spend time with loved ones. - Charitable Contribution Matching COUNTERPART'S VALUES - Conjoin Expectations - it is the cornerstone of autonomy. Ensure you are aware of what is expected of you and clearly articulate what you expect of others. - Speak Boldly & Honestly - the only failure is not learning from mistakes. Don’t cheat yourself and your colleagues of the feedback needed when expectations aren’t being met. - Be Entrepreneurial - control your own destiny. Embrace action over perfection while navigating any obstacles that stand in the way of your ultimate goal. - Practice Omotenashi (“selfless hospitality”) - trust will follow. Consider every interaction with internal and external partners an opportunity to develop trust by going above and beyond what is expected. - Hold Nothing As Sacred - create routines but modify them routinely. Take the time to reflect on where the business is today, where it needs to go, and what you have to change in order to get there. - Prioritize Wellness - some things should never be sacrificed. We create an environment that stretches everyone to grow and improve, which is fulfilling, but is only one part of a meaningful life. Our estimated pay range for this role is $220,000 to $250,000. Base salary is determined by a variety of factors, including but not limited to, market data, location, internal equitability, and experience. We are committed to being a welcoming and inclusive workplace for everyone. We are intentional about making sure people feel respected, supported, and connected at work—regardless of who they are or where they come from. We value and celebrate our differences and believe being open about who we are allows us to do the best work. We are an Equal Opportunity Employer. We do not discriminate against qualified applicants or employees on the basis of race, color, religion, gender identity, sex, sexual preference, sexual identity, pregnancy, national origin, ancestry, citizenship, age, marital status, physical disability, mental disability, medical condition, military status, or any other characteristic protected by federal, state, or local law, rule, or regulation.

Description Keeper Security is hiring a Senior DevOps Program Manager to lead complex, cross-functional initiatives that shape and advance Keeper’s global cloud infrastructure, automation capabilities, and compliance posture. This role is ideal for a hands-on technical program leader who excels at bridging engineering execution with strategic planning. Keeper’s cybersecurity software is trusted by millions of people and thousands of organizations, globally. Keeper is published in 23 languages and is sold in over 150 countries. Join one of the fastest-growing cybersecurity companies and bring your IL5 DevOps expertise to mission-critical work. About Keeper Keeper Security is transforming cybersecurity for organizations globally with zero-trust privileged access management built with end-to-end encryption. Keeper’s cybersecurity solutions are FedRAMP and StateRAMP Authorized, SOC 2 compliant, FIPS 140-2 validated, as well as ISO 27001, 27017 and 27018 certified. Keeper deploys in minutes, not months, and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance. Trusted by millions of individuals and thousands of organizations, Keeper is the leader for password, passkey and secrets management, privileged access, secure remote access and encrypted messaging. Learn how our zero-trust and zero-knowledge solutions defend against cyber threats at KeeperSecurity.com. About the Job The Senior DevOps Program Manager will orchestrate large-scale cloud, automation, and infrastructure initiatives that span Engineering, Security, and Operations. This role is responsible for driving the execution of Keeper’s infrastructure roadmap, enabling modern DevOps practices, and ensuring that all programs align with zero-trust, zero-knowledge, and compliance-driven requirements. This position requires a blend of deep technical understanding and strong program leadership. You will manage cross-team dependencies, define program priorities, enhance CI/CD and automation workflows, strengthen observability practices, and ensure alignment with compliance frameworks including FedRAMP, SOC 2, and ISO 27001. Responsibilities - Lead end-to-end execution of complex DevOps and infrastructure programs, including cloud modernization, CI/CD optimization, automation, and security integrations - Partner with Engineering, Security, Compliance, and Product leadership to define program strategy, priorities, and success criteria - Oversee large-scale cloud initiatives across AWS and other platforms, ensuring scalability, cost efficiency, and operational resilience - Coordinate Infrastructure-as-Code (IaC) initiatives using Terraform and related automation tooling - Drive improvements across CI/CD pipelines (GitHub Actions, Jenkins, etc.) to reduce deployment friction and enhance reliability - Champion best practices in automated testing, security scanning, and release governance - Integrate compliance and security-by-design principles into all DevOps programs, ensuring alignment with FedRAMP, SOC 2, ISO 27001, and similar standards - Collaborate closely with security engineering and the CISO to ensure program-level compliance and audit readiness - Oversee observability, SRE, and monitoring initiatives to enhance system visibility, performance, and incident response - Define SLIs, SLOs, and error budgets in partnership with Engineering and Security teams - Serve as a cross-functional liaison, ensuring consistent communication, dependency tracking, and alignment across teams - Manage program timelines, risks, and stakeholder expectations across multiple initiatives - Work with Agile, Waterfall, or hybrid methodologies to ensure effective delivery depending on program needs - Identify and adopt emerging technologies that strengthen Keeper’s cloud, automation, and monitoring capabilities Requirements - Bachelor’s degree in Computer Science, Engineering, or a related technical field (Master’s preferred) - 8+ years of experience in DevOps, Cloud Infrastructure, or Site Reliability Engineering - 4+ years of technical program or project management experience in a SaaS, cloud-native, or cybersecurity environment - Proven experience with AWS cloud services (ECS, EKS, Lambda, RDS, S3, IAM, etc.) - Hands-on familiarity with Terraform, Docker, Kubernetes, and CI/CD tooling such as GitHub Actions or Jenkins - Strong understanding of automation, cloud security, and modern DevOps best practices - Demonstrated success managing cross-functional initiatives in high-security or compliance-driven environments - Experience with observability platforms (Datadog, Prometheus, Grafana) and incident management workflows - Excellent communication skills with the ability to guide stakeholders, influence decisions, and manage expectations Preferred Qualifications - AWS Certified DevOps Engineer or similar cloud certifications - Experience working within FedRAMP, DoD, or regulated government environments - Exposure to secrets management or privileged access management systems - Experience with DevSecOps automation and compliance-as-code tooling - PMP certification Benefits - Medical, Dental & Vision (inclusive of domestic partnerships) - Employer Paid Life Insurance & Employee/Spouse/Child Supplemental life - Voluntary Short/Long Term Disability Insurance - 401K (Roth/Traditional) - A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc) - Above market annual bonuses Keeper Security, Inc. is an equal opportunity employer and participant in the U.S. Federal E-Verify program. We celebrate diversity and are committed to creating an inclusive environment for all employees. Classification: Exempt Keeper Candidate Privacy Notice This notice explains how Keeper Security processes your personal data during recruitment. Depending on the role and location, the Controller of personal data (the organization responsible for determining why and how personal data is processed) will be Keeper Security Inc. (US), Keeper Security EMEA Ltd. (Ireland), or Keeper Security APAC K.K (Japan). 1. Data We Collect Information You provide: - Contact details, CV/resume, cover letter - Employment history, qualifications, work eligibility - Application responses and uploaded documents Information We generate: - Interview notes, assessments, communications - Scheduling information Information From Others: - Recruiter/referral information who submit your profile - References (with your consent, before final offer) - Public professional profiles - Background verification (post offer) Voluntary Diversity and Equal Opportunity Information - We may ask you to voluntarily provide diversity information including race/ethnicity, gender, disability status and veteran status (US). Providing this information is optional and Keeper collects this data in order to comply with EEOC and similar requirements 2. How We Use Your Data - Assess your application and suitability - Manage interviews and recruitment workflow - Consider you for other/future roles (we may seek your consent to keep your information on our systems beyond the retention period specified) - Comply with employment law obligations 3. Legal Basis - Legitimate Interests (recruitment management, security and integrity of the hiring process) - Contracting steps (for progressed candidates) - Legal and regulatory compliance obligations; explicit consent where required 4. Who We Share Information With Internal: - HR, hiring managers, interviewers*, IT support for system administration *Note - diversity and equal opportunity data is not shared with hiring managers. Third Parties: Service providers who assist with: - Applicant tracking, recruitment systems and assessment providers - Background verification vendors (post offer) - Recruitment agencies (where applicable) - Tools to support communication, collaboration and to securely store your data Keeper ensures that all our third parties are contractually bound to protect your personal data with adequate safeguards in place. 5. International Transfers Your data may be accessed by Keeper entities globally as needed for the purposes of hiring and decision making. We protect any such data transfer between Keeper entities using appropriate safeguards under applicable data protection laws. 6. Security We implement appropriate technical and organizational measures to protect your data, consistent with our industry leading security standards. 7. Retention We keep your data for 24 months from your last application activity, then delete or anonymize it. Exceptions: - You opt into our talent database for further retention by providing consent (extended retention) - You're hired (transfers to employee records) 8. Your Rights You have the following rights and can contact us at the email below to exercise them: - Access, correct, or delete your data, subject to applicable law and retention requirements - Object to or restrict processing - Withdraw consent (where applicable) - Request data portability - Lodge a complaint with your data protection authority If you become an employee, your rights regarding your employee record are governed by our internal Employee Privacy Notice and certain data will be retained as required under relevant laws such as employment or tax law. When you request access to your personal data, some information may be redacted if it includes the personal data of other individuals or information that we must protect in order to preserve their privacy rights. 9. Automated Decisions Keeper does not make hiring decisions using solely automated processing. 10. Contact - Candidates can send privacy questions to: privacy@keepersecurity.com