Infrastructure Engineer

About The Position

Requirements

• 5+ years operating production infrastructure in DevOps/DevSecOps, Platform, SRE, Cloud, or Infrastructure roles
• Deep production Kubernetes experience: operators, networking, storage, multi-cluster operations, and a feel for what breaks at scale
• Expertise with major cloud providers (e.g., AWS, Azure), with strong instincts for designing across providers and deployment profiles
• Experience packaging and shipping workloads into disconnected or air-gapped environments
• Full-stack engineering experience when necessary — production experience designing, building, and operating services in a modern backend language (e.g., Go, Python, Rust, TypeScript)
• Demonstrated ability to build working solutions from scratch, connect disparate applications together, and jump into existing codebases to add value
• Strong application and infrastructure security fundamentals: identity, network segmentation, secrets management, common vulnerability classes, and sound security judgment under ambiguity
• Comfortable building security into systems rather than bolting it on
• Clear, concise communicator across disciplines, whether designing system architecture, writing an RFC, or recording a weekly demo of recent work (a Gallatin tradition)
• Always seeking to learn and stay current with industry trends and tools
• Ability to obtain a SECRET clearance

Nice To Haves

• Active US SECRET or TOP SECRET security clearance
• Government cloud expertise (AWS GovCloud, Azure Government)
• FedRAMP, IL4/IL5, IL6, or JWICS environment exposure
• Audit experience (FedRAMP, SOC 2, or equivalent)
• Hands-on experience with Infrastructure-as-Code (Terraform, CloudFormation) and secure CI/CD pipelines
• Experience building and integrating on Palantir Foundry and its various offerings
• Big data and distributed data experience
• Experience supporting defense, intelligence, or other regulated industries, including legacy system modernization
• Contributions to open-source projects

Responsibilities

• Build and Operate the Platform: Design, develop, test, iterate, and deploy secure production systems across cloud-native and edge appliance deployments
• Own end-to-end infrastructure outcomes for one or more critical programs or priority infrastructure initiatives
• Harden the artifact pipeline so the same signed builds run in commercial cloud, single-tenant high-side, and air-gapped appliance deployments
• Run production Kubernetes across commercial and government cloud — operators, networking, storage, and multi-cluster operations that hold up under operational load
• Keep the platform reliable through proactive monitoring, logging, and alerting, and own the response when something breaks
• Security and Compliance as a Daily Discipline: Embed application and infrastructure security into the systems you build — identity, network segmentation, secrets management, and CVE remediation as part of the work, not a phase at the end
• Partner with GRC and mission owners on STIG implementation, audit prep, and the controls work that keeps us operating in IL5, IL6, and JWICS environments
• Maintain an audit-ready posture between formal assessment cycles, so authorization is a steady state rather than a fire drill
• Collaborate Across Disciplines: Embed with cross-functional teams and advise on infrastructure, security, and deployment best practices that hold up in production
• Work closely with Product and Engineering on RFCs, PRDs, and production code — you contribute to the systems you operate
• Contribute to engineering best practices: code reviews, documentation, and continuously improving CI/CD and DevSecOps workflows while keeping Developer Experience at the forefront

Benefits

• generous equity grant
• full healthcare coverage
• 401k
• unlimited PTO