• Lead IaC architecture • Drive GitOps at scale • Architect and operate multi-tenant Kubernetes infrastructure • Build self-service infrastructure automation • Own reliability • Set observability standards • Partner with security on zero-trust architecture • Contribute to technical roadmap • Mentor mid-level engineers

• Effectively coordinate, lead, and support developers, operations, product owners, and key stakeholders through partnering to implement Service Level Objectives, Service Level Indicators, and Incident Management processes. • Serve as a primary technical resource for DevOps strategy, automation, and deployment standards, guiding development and operations teams. • Design, build, and maintain robust and scalable CI/CD pipelines for effective and efficient code releases. • Implement Infrastructure as Code (IaC) using tools such as Terraform or Ansible. • Automate configuration management to promote mature change management and release strategies. • Establish relevant and actionable monitoring and alerting for microservice-based applications and infrastructures. • Collaborate with other teams to ensure smooth and secure build, release, and deployment processes. • Integrate DevSecOps principles and automated security tools into CI/CD pipelines. • Advise and support troubleshooting infrastructure and deployment issues. • Champion a DevOps culture, evaluate new technologies, and stay updated on industry trends. • Support current and future complex and demanding customers with an established team, providing coaching and guidance on DevOps best practices. • Develop and integrate custom-developed software solutions to leverage automated deployment technologies. • Develop, prototype, and deploy solutions within Commercial/Government Cloud Solutions leveraging Infrastructure platform services. • Coordinate closely with team members, Product Owners, and Scrum Masters to ensure User Story alignment and implementation to customer use cases. • Analyze infrastructure needs driven by developed software to meet customer mission needs, utilizing proof-of-concept, performance, and end-to-end testing. • Support the Agile software development lifecycle following Program SAFe practices. • Document and maintain containerized images and deployment artifacts across different environments, leveraging GitFlow constructs. • Communicate key project data to team members and build team cohesion and effectiveness. • Leverage Atlassian tool suite like JIRA and Confluence to track activities. • Apply and identify best practices and standard operating procedures. • Architect innovative solutions to meet the technical needs of customers.

About Our Team Our employees thrive in a culture that's fast-paced and ego-free, where innovation and collaboration are encouraged at every turn. We are an organization that provides federal agencies instant access to experienced and talented professionals who understand their unique challenges and know the most efficient ways to address them. We are continually investing in resources and talent, so we stay prepared with specialized teams in the place who are experts in creating tailored technologies. Our solutions empower Federal organizations to grow, modernize, and succeed in a rapidly evolving landscape. We welcome diverse perspectives and seek individuals who are passionate about technology and creative problem-solving. If you enjoy learning, growing, and tackling real-world challenges, you will thrive here. Veterans and military spouses are strongly encouraged to apply and bring their unique experience to our team. About Our Team Our employees thrive in a culture that's fast-paced and ego-free, where innovation and collaboration are encouraged at every turn. We are an organization that provides federal agencies instant access to experienced and talented professionals who understand their unique challenges and know the most efficient ways to address them. We are continually investing in resources and talent, so we stay prepared with specialized teams in the place who are experts in creating tailored technologies. Our solutions empower Federal organizations to grow, modernize, and succeed in a rapidly evolving landscape. We welcome diverse perspectives and seek individuals who are passionate about technology and creative problem-solving. If you enjoy learning, growing, and tackling real-world challenges, you will thrive here. Veterans and military spouses are strongly encouraged to apply and bring their unique experience to our team. About the Role: Our core values of People Matter, Integrity, and a Commitment to Excellence drive all that we do. By joining us, you will become a part of a fun and diverse team of talented and creative consultants who share the goal of using the latest technology to solve business challenges. We provide our clients with a dynamic mix of services and deliver focused solutions like no one else. We are seeking talented and bright team players who are passionate about technology and want to work in a fast-paced, dynamic, and ego-free culture while applying a creative approach to problem-solving. Team members who like to grow their skill sets while solving challenging, real world business problems thrive. We are seeking a highly skilled Cloud DevSecOps Engineer with a strong background in building, automating, securing, and operating cloud‑native environments on AWS and Azure. In this role, you will lead hands‑on, execution‑driven efforts focused on CI/CD automation, Infrastructure as Code (IaC), cloud operations, and DevSecOps best practices to enable scalable, modern application delivery. You will provide expert technical guidance to engineering teams on secure cloud operations and industry best practices, supporting a consistent and mature DevSecOps approach across multiple solutions undergoing modernization. This role combines hands‑on engineering with an educational and consultative focus, helping product teams identify improvement opportunities by adopting a DevSecOps mindset, standardized tools, and repeatable processes. Working closely with government stakeholders and cross‑functional technical and business teams, you will assess current DevSecOps maturity, identify gaps, and develop actionable roadmaps to address security, automation, and delivery efficiency needs. The position requires the ability to work within approved government technologies while remaining informed about newly authorized tools. This position is open to remote delivery anywhere within the United States, including the District of Columbia, and supports efforts to modernize and enhance Veterans Affairs applications through secure and resilient DevSecOps practices. Key Responsibilities: - Participate in requirements elaboration with architects, system owners, and development teams to define technical requirements, assess DevSecOps maturity, and provide expert guidance on secure cloud architecture and DevOps solutions. - Design, build, and optimize multi‑cloud environments across PaaS and IaaS platforms, supporting development, testing, and production workloads in AWS and Azure in healthcare and government environments. - Define, communicate, and implement cloud architecture, system administration standards, and operational processes in alignment with VA policies, federal compliance requirements, and industry best practices. - Implement Infrastructure‑as‑Code (IaC) and configuration management solutions using tools such as Terraform, CloudFormation, Ansible, Packer, or equivalent technologies to standardize and automate cloud infrastructure provisioning. - Demonstrate experience working with FHIR (Fast Healthcare Interoperability Resources) standards to support interoperability requirements in healthcare‑related systems. - Develop, maintain, and enhance CI/CD pipelines for development, test, and production workloads using platforms such as Jenkins, GitHub Actions, SonarQube, Selenium, Nexus, Bitbucket, GitLab CI, GitHub Actions, or AWS‑native services. - Integrate automated security scanning, compliance checks, and DevSecOps controls into CI/CD workflows, embedding security throughout the software development lifecycle in alignment with organizational and federal security guidelines. - Apply deep technical expertise and industry knowledge to design and support innovative solutions to complex cloud and DevOps challenges across VA programs and projects. - Administer, monitor, and optimize Linux‑based environments, including troubleshooting system‑level issues related to performance, configuration, and security. - Provide expert‑level technical guidance on containerization technologies (Docker), orchestration platforms (Kubernetes, Amazon EKS), and cloud‑native application hosting and deployment patterns. - Collaborate with cybersecurity teams to implement and maintain cloud security controls, including IAM hardening, network segmentation, encryption, vulnerability remediation, patch management, and periodic vulnerability assessments. - Partner closely with development teams to align cloud resources, CI/CD pipelines, and tooling with application architecture, operational requirements, and delivery timelines. - Develop and maintain technical documentation, cloud architecture diagrams, operational runbooks, and standard operating procedures to support reliability and knowledge sharing. - Participate in root cause analysis efforts and contribute to continuous improvement of cloud operations, system resiliency, and incident response processes. - Apply consulting skills and technical leadership to advise stakeholders, influence architectural decisions, and drive best practices across cloud and DevOps initiatives. - Work independently with minimal supervision within established procedures, while serving as an informal technical lead or mentor to junior engineers. - Communicate effectively with project stakeholders and government customers to assess technical requirements, provide status updates, define execution timelines, and actively participate in Agile ceremonies as part of a cross‑functional engineering team. - Support end-to-end delivery workflows to ensure seamless operation of cloud environments, CI/CD pipelines, and AWS/Azure services across the full application lifecycle. TAG: INDMJC TAG: #LI-I4DM Requirements Required Qualifications: - Minimum of 2+ years of experience as a DevSecOps Architect or DevSecOps-focused DevOps Engineer, supporting secure application delivery in complex environments. - 3+ years of hands-on experience with container technologies, including Docker and Kubernetes, supporting cloud-native application deployment. - Master’s degree in Computer Science, Electronics, or a related technical discipline with 15 years of professional experience, or 25 years of relevant professional experience in lieu of a degree. - Hands-on experience serving as a platform-level DevOps or DevSecOps administrator, supporting shared platforms used by multiple clients or product teams. - Proven ability to support new client or product onboarding to a shared DevOps or cloud platform, including provisioning environments, configuring pipelines, and establishing operational best practices. - Experience leading or contributing to platform provisioning and deployment strategies, ensuring consistency, scalability, and security across client environments. - Strong Linux expertise, including shell scripting and command-line administration. - Proven experience building, maintaining, and enhancing CI/CD pipelines, with integrated automated testing, security scanning, and deployment workflows. - Hands-on experience with Infrastructure as Code (IaC) using CloudFormation or comparable tools (e.g., Terraform). - Solid understanding of cloud security principles, including identity and access management (IAM), encryption, monitoring, compliance, and secure configuration practices. - Experience with logging, monitoring, and observability platforms such as CloudWatch, Splunk, ELK, Prometheus, or equivalent tools. - Prior experience operating within an Agile/Scrum development environment. - Strong ability to communicate complex technical DevOps and cloud concepts clearly and effectively to both technical and non‑technical stakeholders. - Excellent documentation and technical writing skills, with the ability to produce high-quality architecture diagrams, design specifications, and operational artifacts. Preferred Qualifications: - Experience supporting government, federal, or regulated environments. - Familiarity with Zero Trust security frameworks and/or FedRAMP‑aligned cloud architectures. - Strong understanding of AWS networking fundamentals, including VPC architecture, routing, load balancing, and firewall configurations. - Knowledge of serverless technologies such as AWS Lambda, API Gateway, and Step Functions. - Experience implementing GitOps workflows or contributing to platform engineering capabilities. Benefits null

Title: Senior Staff DevOps Engineer - CI/CD & Release Engineering Location: Sunnyvale, CA Job Description: At Sonatus, we’re driving the transformation to AI-enabled software-defined vehicles. Traditional automotive software methods can’t keep pace with consumer expectations shaped by the mobile industry—where features evolve rapidly, update seamlessly, and improve continuously. That’s why leading OEMs trust Sonatus to accelerate this shift. Our technology is already in production across more than 6 million vehicles on the road today and rapidly expanding. Headquartered in Sunnyvale, CA, with 250+ employees worldwide, Sonatus combines the agility of a fast-growing company with the scale and impact of an established partner. Backed by strong funding and proven by global deployment, we’re solving some of the most interesting and complex challenges in the industry. Join us and help redefine what’s possible as we shape the future of mobility. Role Summary: Sonatus builds the software platform for AI-enabled, software-defined vehicles. Our CI/CD platform serves over 200 repositories across three product lines, producing firmware that ships to automotive OEMs. We are looking for a Sr. Staff DevOps Engineer to own the delivery platform: CI/CD pipelines, release automation, artifact management, build tooling, and the instrumentation that tells us whether it's all working. Today, our delivery infrastructure is fragmented — multiple Jenkins instances configured by hand, release processes driven by ad-hoc scripts, and no unified metrics on how software moves from commit to customer. You will consolidate this into a unified, codified, observable delivery platform. You think in terms of systems, supply chains, and feedback loops — not individual pipelines. Responsibilities: CI/CD platform architecture — Own the consolidation and evolution of multiple Jenkins instances into a unified, configuration-as-code managed platform. Drive the migration strategy across Jenkins and GitHub Actions for 200+ repositories. Design shared pipeline libraries and patterns that scale across product lines without fragmenting into per-team forks. Release engineering — Own the release tooling and automation for multi-product releases spanning three hardware platforms and multiple automotive customers. Tagging, branching, config generation, and customer artifact delivery. The current toolchain is functional but brittle — your job is to make releases reliable, repeatable, and auditable. Artifact lifecycle management — Own the Artifactory platform (JFrog SaaS): repository structure, retention policies, token lifecycle, build promotion from staging to release, and customer-facing distribution. You manage the full artifact flow from build output to customer delivery. Build tooling and reproducibility — Own the build system architecture across three divergent toolchains: Bazel for hermetic static builds, CMake for the embedded monorepo, and Yocto for custom embedded distributions. Drive toward reproducible, cacheable, fast builds regardless of the underlying toolchain. Security scanning integration — Own the integration of static analysis (Coverity) and software composition analysis (BlackDuck) into CI/CD pipelines. Automate scan scheduling, report generation, and quality gate enforcement to meet automotive compliance requirements (ESIR-ISIR). CI/CD observability and DORA metrics — Instrument the delivery pipeline with OpenTelemetry. Define and measure the four DORA metrics: deployment frequency, lead time for changes, change failure rate, and mean time to recovery. Build dashboards that make delivery health visible. Own the 30-minute build SLO. Software supply chain — Own dependency management, credential lifecycle, artifact provenance, and the path toward SBOM generation. Eliminate manual credential management and single-person dependencies from the delivery pipeline. Every artifact should be traceable from the source commit to customer delivery. Requirements: - 10+ years in DevOps, SRE, or release engineering, with hands-on ownership of CI/CD platforms at scale — not just pipeline authoring, but platform architecture, reliability, and evolution - CI/CD platform expertise — Deep experience with Jenkins (multi-controller, shared libraries, JCasC, distributed agents) or equivalent enterprise CI/CD platform. You've operated the platform, not just consumed it - Release engineering — You have owned or built release automation for a multi-product software organization. You understand branching strategies, semantic versioning, promotion workflows, and customer delivery mechanics - Artifact management — Experience with JFrog Artifactory, Nexus, or similar. You've designed repository structures, managed token lifecycles, and implemented retention policies at scale - Infrastructure as Code mindset — Terraform or equivalent for managing platform configuration as code. You treat configuration drift as a bug. Jenkins configured through a UI is a problem to solve, not a steady state - Observability and instrumentation — You have implemented DORA metrics, build SLOs, or equivalent delivery pipeline instrumentation. Experience with Prometheus/Grafana, OpenTelemetry, or similar stacks - Software supply chain awareness — Dependency management, credential hygiene, security scanning integration (SAST/SCA), and the principles behind reproducible builds. You understand why "it works on the build server" is not acceptable Nice to Have: - GitHub Actions at scale (ARC self-hosted runners, OIDC authentication, org-wide reusable workflows) - Embedded build toolchains (Bazel, Yocto, CMake cross-compilation) - Automotive compliance experience (ESIR-ISIR, ASPICE, MISRA) - Experience migrating or consolidating legacy CI/CD infrastructure into modern platforms Sunnyvale HQ Benefits & Perks Offered: - Health care plan (Medical, Dental & Vision) - Flexible and Dependent Care Expense program - Retirement plan (401k) - Life Insurance (Basic, Voluntary & AD&D) - Unlimited paid time off per year, 14+ paid holidays - Hybrid office work arrangement - Complimentary lunches, snacks, and beverages during on-site working days - Wellness benefit allowance - Phone & Internet reimbursement - Computer Accessory Allowance The posted salary range is a general guideline and represents a good faith estimate of what Sonatus ("Company") could reasonably expect to pay for a base salary for this position. The pay offered to a selected candidate will be determined based on factors such as (but not limited to) the scope and responsibilities of the position, the qualifications of the selected candidate, departmental budget availability, geographic location and external market pay for comparable jobs. The Company reserves the right to modify this range in the future, as needed, as market conditions change. Base Salary Pay Range $198,000 - $260,000 USD