Home › Companies › Sonatype › GCP DevOps Engineer
GCP DevOps Engineer
Sonatype · US - Remote · Remote · Deleted · Lever
Job facts
| Field | Value |
|---|---|
| Company | Sonatype |
| Title | GCP DevOps Engineer |
| Normalized title | - |
| Department / team | Engineering R&D / Engineering - Application Platform |
| Location | United States |
| Work model | Remote / Remote |
| Employment type | Full Time |
| Salary | - |
| Status | deleted |
| ATS provider | Lever |
| Posted / first seen | 2026-04-28 / 2026-06-03 |
| Changed / last seen | 2026-06-06 / 2026-06-03 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Sonatype. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Lever. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| Department jobs | Active postings in Engineering R&D. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Sonatype |
| Source | 1364b83d-0b69-4729-8479-633d181d2b2c |
| ATS provider | Lever |
Description
Sonatype is the software supply chain security company. We provide the world’s best end-to-end software supply chain security solution, combining the only proactive protection against malicious open source, the only enterprise grade SBOM management and the leading open source dependency management platform. This empowers enterprises to create and maintain secure, quality, and innovative software at scale.
As founders of Nexus Repository and stewards of Maven Central, the world’s largest repository of Java open-source software, we are software pioneers and our open source expertise is unmatched. We empower innovation with an unparalleled commitment to build faster, safer software and harness AI and data intelligence to mitigate risk, maximize efficiencies, and drive powerful software development.
More than 2,000 organizations, including 70% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains.
At Sonatype, we empower developers with best-in-class tools to build secure, high-quality software at scale. Our mission is to create a world where software is always secure and developers can innovate without fear. Trusted by thousands of organizations, including Fortune 500 companies, we are pioneers in software supply chain management, open-source security, and DevSecOps.
We are looking for a GCP DevOps Engineer to help us shape the future of secure software development. If you love solving complex problems, working with cloud-native platforms, and mentoring engineering teams, we would love to hear from you.
As a GCP DevOps Engineer, you will play a critical role in designing, automating, and scaling Sonatype's engineering platform and delivery systems on GCP. You will lead infrastructure and CI/CD modernization, improve reliability and security, and guide teams on platform engineering and DevOps best practices.
Why This Role Matters
This role helps create the engineering foundation that enables teams to ship securely, reliably, and quickly. You will influence how Sonatype scales its platform capabilities, improves developer experience, and advances its DevSecOps maturity on GCP.
You will work at the intersection of infrastructure, automation, security, and developer enablement, making a direct impact on product velocity and operational excellence.
At Sonatype, we value diversity and inclusivity. We offer perks such as parental leave, diversity and inclusion working groups, and flexible working practices to allow our employees to show up as their whole selves. We are an equal-opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you have a disability or special need that requires accommodation, please do not hesitate to let us know.
Key Responsibilities
Design, implement, and evolve GCP-based infrastructure using Infrastructure as Code with Terraform and Google Cloud deployment automation patterns.
Build and maintain scalable CI/CD pipelines using Cloud Build, GitHub Actions, Jenkins, or equivalent platforms for application, infrastructure, and platform workloads.
Administer and optimize GCP delivery workflows including Cloud Build triggers, Artifact Registry, source integrations, deployment approvals, and service account access patterns.
Partner with engineering teams to improve build, release, and deployment workflows across microservices and cloud-native applications.
Implement robust observability across systems using Google Cloud Operations Suite, Cloud Logging, Cloud Monitoring, and related telemetry tooling.
Strengthen platform security by integrating secrets management, policy enforcement, vulnerability scanning, and least-privilege access contrrol.
Manage and optimize containerized environments using Kubernetes, Helm, and Google Kubernetes Engine (GKE).
Drive reliability engineering practices including incident response, root cause analysis, SLO thinking, and automated remediation where appropriate.
Standardize reusable templates, modules, and platform patterns that improve developer productivity and consistency.
Mentor engineers and provide technical leadership on GCP architecture, deployment automation, release governance, and DevSecOps practices.
What We Are Looking For
Strong experience in DevOps, platform engineering, or site reliability engineering roles supporting modern software delivery.
Deep hands-on expertise with Google Cloud Platform, including compute, networking, IAM, storage, monitoring, and security services.
Strong experience with GCP-native or integrated CI/CD pipeline design for multiple application stacks and deployment patterns.
Experience with Infrastructure as Code using Terraform, Deployment Manager alternatives, or equivalent automation frameworks.
Proficiency with containers and orchestration platforms such as Docker and Kubernetes, preferably with GKE experience.
Experience with scripting and automation using Python, Bash, PowerShell, or similar languages.
Solid understanding of source control workflows, package management, artifact promotion, and release strategies.
Experience implementing observability, logging, alerting, and operational dashboards for production systems.
Strong understanding of cloud security, IAM, secrets management, compliance controls, and secure software delivery practices.
Excellent collaboration and communication skills, with the ability to influence technical direction across teams.
What Would Be Nice to Have
Experience with GitHub, SonarQube, Nexus Repository, or software supply chain security tooling.
Familiarity with multi-cloud environments and migration patterns from AWS or on-premises platforms
Exposure to policy-as-code, platform engineering, developer portals, or internal developer platform concepts.
Experience supporting regulated or enterprise-scale environments with strong governance requirements.
Things That We Are Proud Of
2025 Visionary in Gartner® Magic Quadrant™ for Application Security Testing!
2025 AI Compliance Solution of the Year - AI Breakthrough Awards
2025 DEVIES Award to our SBOM Manager for a new product for its innovation and impact in developer technology
2024 Industry Leader in Forrester-Wave for Software Composition Analysis (2024 Q4 report)
Constellation AST Shortlist: Sonatype has been listed on the Constellation ShortList™ for Application Security Testing for 2024
Data Breakthrough Awards: Sonatype was announced as a 2024 winner in the "Open Source Data Solution of the Year."
SD Times: Best in Show Security
Fast Company Best Workplaces for Innovators 2024
The Herd Top 100 Private Software Companies 2024.
Diversity & Inclusion Working Groups
Parental Leave Policy
Paid Volunteer Time Off (VTO)
Full job record
| Job ID | 1ff209d56b2635210e44e4871f6123f764784094 |
| Org ID | 6aac9239-ab78-4ef7-9852-a20bfecfef99 |
| Source ID | 1364b83d-0b69-4729-8479-633d181d2b2c |
| Board ID | 1364b83d-0b69-4729-8479-633d181d2b2c |
| Provider | lever |
| Provider Job Key | 34a04a16-85ba-4eec-8e0e-5dd2d4c323e1 |
| Title | GCP DevOps Engineer |
| Normalized Title | — |
| Status | deleted |
| Active | no |
| Location Text | US - Remote |
| Department | Engineering R&D |
| Team | Engineering - Application Platform |
| Employment Type | Full-Time |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | — |
| City | — |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://jobs.lever.co/sonatype/34a04a16-85ba-4eec-8e0e-5dd2d4c323e1 |
| Apply URL | https://jobs.lever.co/sonatype/34a04a16-85ba-4eec-8e0e-5dd2d4c323e1/apply |
| First Seen At | 2026-06-03 12:25:56Z |
| Last Seen At | 2026-06-03 12:25:56Z |
| Last Checked At | 2026-06-06 07:55:20Z |
| Last Changed At | 2026-06-06 07:55:20Z |
| Inactive At | 2026-06-06 07:55:20Z |
| Source Posted At | 2026-04-28 00:40:06Z |
| Source Updated At | — |
| Raw Payload Uri | s3://bluework-jobs-prod-raw-590183727216/raw/provider=lever/board=sonatype/date=2026-06-03/2026-06-03T12-25-56-393Z-6b98763b8ef46162b886ac5b7ea11023e8ee32df5ebdf145ca42d21818e7947d.json |
Event Fields
{
"content_hash": "7a0e4e2133cff82de3e7d50ea692a9756e81e923137a1ec09b5e05e10157781c",
"source_hash": "ec36eca46a698ab45892b26dde032641f900be0281781ed05db3367b7c00f40c",
"last_changed_at": "2026-06-06T07:55:20.338Z",
"active_status": "deleted"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "US - Remote",
"city": null,
"region": null,
"country": "United States",
"is_remote": true,
"confidence": 0.95
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-03T12:25:56.860Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "US - Remote",
"city": null,
"region": null,
"country": "United States",
"is_remote": true,
"confidence": 0.95
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": null,
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"lists": [
{
"text": "Key Responsibilities",
"content": "<div>\n<ul type=\"disc\" style=\"margin-bottom: 0in; margin-top: 0px;\">\n<ul type=\"disc\" style=\"margin-bottom: 0in; margin-top: 0px;\">\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Design, implement, and evolve GCP-based infrastructure using Infrastructure as Code with Terraform and Google Cloud deployment automation patterns.</span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Build and maintain scalable CI/CD pipelines using Cloud Build, GitHub Actions, Jenkins, or equivalent platforms for application, infrastructure, and platform workloads.</span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Administer and optimize GCP delivery workflows including Cloud Build triggers, Artifact Registry, source integrations, deployment approvals, and service account access patterns.</span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Partner with engineering teams to improve build, release, and deployment workflows across microservices and cloud-native applications.</span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Implement robust observability across systems using Google Cloud Operations Suite, Cloud Logging, Cloud Monitoring, and related telemetry tooling.</span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Strengthen platform security by integrating secrets management, policy enforcement, vulnerability scanning, and least-privilege access contrrol. </span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Manage and optimize containerized environments using Kubernetes, Helm, and Google Kubernetes Engine (GKE).</span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Drive reliability engineering practices including incident response, root cause analysis, SLO thinking, and automated remediation where appropriate.</span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Standardize reusable templates, modules, and platform patterns that improve developer productivity and consistency.</span></li>\n<li style=\"line-height: 150%; margin-top: 0in; margin-right: 0in; margin-bottom: 8pt; font-size: 12pt; font-family: Aptos, sans-serif;\"><span style=\"font-family: 'Times New Roman', serif;\">Mentor engineers and provide technical leadership on GCP architecture, deployment automation, release governance, and DevSecOps practices.</span></li>\n\n\n</ul></ul></div>"
},
{
"text": "What We Are Looking For",
"content": "\n<li>Strong experience in DevOps, platform engineering, or site reliability engineering roles supporting modern software delivery.</li>\n<li>\n<p>Deep hands-on expertise with Google Cloud Platform, including compute, networking, IAM, storage, monitoring, and security services.</p>\n</li>\n<li>\n<p>Strong experience with GCP-native or integrated CI/CD pipeline design for multiple application stacks and deployment patterns.</p>\n</li>\n<li>\n<p>Experience with Infrastructure as Code using Terraform, Deployment Manager alternatives, or equivalent automation frameworks.</p>\n</li>\n<li>\n<p>Proficiency with containers and orchestration platforms such as Docker and Kubernetes, preferably with GKE experience.</p>\n</li>\n<li>\n<p>Experience with scripting and automation using Python, Bash, PowerShell, or similar languages.</p>\n</li>\n<li>\n<p>Solid understanding of source control workflows, package management, artifact promotion, and release strategies.</p>\n</li>\n<li>\n<p>Experience implementing observability, logging, alerting, and operational dashboards for production systems.</p>\n</li>\n<li>\n<p>Strong understanding of cloud security, IAM, secrets management, compliance controls, and secure software delivery practices.</p>\n</li>\n<li>\n<p>Excellent collaboration and communication skills, with the ability to influence technical direction across teams.</p>\n</li>\n"
},
{
"text": "What Would Be Nice to Have",
"content": "\n<li>\n<p>Experience with GitHub, SonarQube, Nexus Repository, or software supply chain security tooling.</p>\n</li>\n<li>\n<p>Familiarity with multi-cloud environments and migration patterns from AWS or on-premises platforms </p>\n</li>\n<li>\n<p>Exposure to policy-as-code, platform engineering, developer portals, or internal developer platform concepts.</p>\n</li>\n<li>\n<p>Experience supporting regulated or enterprise-scale environments with strong governance requirements.</p>\n</li>\n"
},
{
"text": "Things That We Are Proud Of",
"content": "<div>\n<ul style=\"margin-bottom: 0in; margin-top: 0px;\">\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">2025 Visionary in Gartner® Magic Quadrant™ for Application Security Testing!</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">2025 AI Compliance Solution of the Year - AI Breakthrough Awards</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">2025 DEVIES Award to our SBOM Manager for a new product for its innovation and impact in developer technology</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">2024 Industry Leader in Forrester-Wave for Software Composition Analysis (2024 Q4 report)</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">Constellation AST Shortlist: Sonatype has been listed on the Constellation ShortList™ for Application Security Testing for 2024</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">Data Breakthrough Awards: Sonatype was announced as a 2024 winner in the \"Open Source Data Solution of the Year.\"</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">SD Times: Best in Show Security</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">Fast Company Best Workplaces for Innovators 2024</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">The Herd Top 100 Private Software Companies 2024.</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">Diversity & Inclusion Working Groups</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">Parental Leave Policy</li>\n<li style=\"line-height: normal; margin: 0in 0in 0in 0px; font-size: 11pt; font-family: Arial, sans-serif;\">Paid Volunteer Time Off (VTO)</li>\n\n</ul></div>"
}
],
"country": "US",
"createdAt": 1777336806143,
"updatedAt": null,
"categories": {
"team": "Engineering - Application Platform",
"location": "US - Remote",
"commitment": "Full-Time",
"department": "Engineering R&D",
"allLocations": [
"US - Remote"
]
},
"salaryRange": null,
"workplaceType": "remote"
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/1ff209d56b2635210e44e4871f6123f764784094?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/6aac9239-ab78-4ef7-9852-a20bfecfef99JSONGET https://api.bluedoor.sh/job-postings/v1/sources/1364b83d-0b69-4729-8479-633d181d2b2cJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/1ff209d56b2635210e44e4871f6123f764784094/eventsJSON