Container Runtime Engineer

Datadog

29 days ago

Boston, MA, USA or New York, NY, USA

Mid Level / Senior

H1B Sponsor

Base Salary

$187k - $240k/yr

Responsibilities

Design, implement, and maintain container isolation infrastructure across multi-cloud Kubernetes environments.
Achieve performance parity for isolated workloads by resolving disk I/O limitations.
Develop new Kata backends for diverse infrastructure requirements.
Evaluate emerging sandboxing technologies for specific workload requirements.
Collaborate with upstream Kata Containers project to contribute improvements.
Act as subject matter expert on container security isolation, mentoring engineers.

Strong systems programming background with 4+ years of experience in container runtimes and Linux kernel primitives.
Hands-on experience with container runtime hardening technologies like Kata Containers, gVisor, or similar.
Deep understanding of Linux kernel interfaces: namespaces, cgroups, seccomp, capabilities, and virtualization.
Proficiency in systems programming languages (Go, Rust, or C) with ability to debug low-level code.
Knowledge of container runtime specifications (OCI, CRI) and containerd architecture.

New hire stock equity (RSUs) and employee stock purchase plan (ESPP).
Continuous professional development, product training, and career pathing.
Intradepartmental mentor and buddy program for in-house networking.
An inclusive company culture with Community Guilds for employee resource groups.
Free, global Spring Health benefits for employees and dependents age 6+.
Competitive global benefits and giving programs.

CGoKubernetesLinuxRust