Role Overview
Tunnl is seeking a Manager of DevOps & Security to lead the team responsible for securing and operating our cloud infrastructure and software delivery pipelines. This is a technical leadership role with direct people management responsibility. You will own the team’s delivery outcomes, develop your engineers, and serve as the primary technical authority for cloud security, DevOps practices, and operational excellence across the engineering organization.
How You Will Contribute
- Directly manage, mentor, and develop engineers on the DevOps & Security team — including 1:1s, performance feedback, and career development.
- Own delivery commitments and execution outcomes, balancing velocity with quality and security standards.
- Maintain deep technical credibility — assess and challenge architectural decisions, and step into problem-solving when the stakes are high.
- Establish and enforce cloud security standards across AWS — IAM, network segmentation, encryption, secrets management, and secure workload patterns.
- Architect and maintain CI/CD pipelines with built-in security enforcement (SAST/DAST, IaC scanning, artifact signing, policy-as-code).
- Drive secure, repeatable infrastructure deployment using Infrastructure-as-Code (Terraform preferred) and containerized environments (Docker, ECS/Fargate, Kubernetes).
- Own incident response practices — runbooks, on-call readiness, and post-incident learning — and drive reliability and security risk remediation across teams.
- Serve as Tunnl’s primary point of contact for security auditors and data privacy reviews.
Qualifications
- 7+ years of experience in Cloud Engineering, DevOps, SRE, or DevSecOps, with a strong security focus.
- 2+ years of people management experience, with demonstrated ability to develop engineers and own delivery outcomes.
- Deep knowledge of AWS core infrastructure and security services (IAM, VPC, EC2, ECS/ECR, CloudTrail, Config, Security Hub, Inspector).
- Strong proficiency with Terraform (preferred), CloudFormation, or CDK for Infrastructure-as-Code.
- Strong knowledge of IAM design, network security, encryption (KMS), secrets management, and container security.
- Experience with CI/CD tooling (GitHub Actions, Jenkins, or CodePipeline) and scripting in Python or similar.
- Familiarity with SIEM/log aggregation (Splunk or similar) and observability tooling (Prometheus, Grafana, ELK).
- Strong Linux/Unix skills and solid networking fundamentals (TCP/IP, DNS, VPNs, firewalls, load balancing).
Preferred Qualifications
- AWS certifications: Solutions Architect, Security Specialty, or DevOps Engineer – Professional.
- Experience with Zero Trust architecture and modern identity-driven security patterns.
- Background in security program execution or compliance in regulated environments.
Why You Should Apply
- Join a team driven by curiosity, teamwork, integrity, and a shared passion for solving big challenges.
- A friendly, welcoming, and supportive culture with regular social and team events.
- Eligible for the Company Bonus Plan (targeting 15% of Base Salary).
- Comprehensive benefits with excellent medical, vision, and dental coverage.
- Health Savings Account (HSA) and Flexible Spending Account (FSA) options.
- Employer-paid life insurance, with voluntary additional coverage available.
- Voluntary short- and long-term disability, accident, and critical illness insurance.
- Flexible hybrid work policy.
- Flexible unlimited paid vacation plus 80 hours of paid sick leave.
- 10 paid company holidays per year plus the week between Christmas and New Year’s off.
- 401(k) plan with 100% match up to 3%, plus 50% match up to 5% (subject to IRS limits).
- Cell phone reimbursement stipend.
- Monthly parking or commuter stipend for VA-based employees.