Principal Platform Engineer — Data Private Cloud (Kubernetes/OpenShift) Wells Fargo is back in the office three days a week, collaborating for fabulous outcomes! This role has no visa sponsorship or visa transfers. We’re seeking a Principal Platform Engineer to lead the technical strategy, architecture, and delivery of Wells Fargo’s enterprise Data Private Cloud. This is a Kubernetes/OpenShift platform engineering role, responsible for designing and operating the large‑scale infrastructure that powers data, analytics, and AI workloads across the company. This is not a data engineering role. You won’t be building pipelines or analytics solutions. Instead, you will: Architect the Kubernetes-based data platform Build infrastructure, automation, and security foundations Define standards, controls, and multi‑tenant patterns Enable data engineers, ML engineers, and analytics teams by providing a scalable, secure platform they run on This is a hands-on senior engineering role with end-to-end ownership of platform architecture. Core Responsibilities Technical Leadership & Architecture Own the architecture of the enterprise data platform (OpenShift, Kubernetes, modern data stacks) Define platform standards for security, scalability, multi-tenancy, and operational excellence Lead decisions around compute orchestration (Spark on K8s, YuniKorn), query federation (Trino, Kyuubi), and metadata management (Gravitino, Hive Metastore) Design authentication/authorization (Keycloak, AD, Ranger) Shape infrastructure strategy and open-source deployment patterns Infrastructure & Platform Engineering Lead Terraform-based IaC and repeatable deployment practices Architect networking, ingress, and service mesh configurations Oversee PKI, SSL/TLS, and certificate lifecycle management Build monitoring and observability strategies (OpenSearch, Prometheus, Grafana) Ensure resilience through scheduling, quotas, and capacity planning Implement GitOps for declarative deployments Data Platform Components (Platform Enablement, Not Data Engineering) You provide leadership for the platform that runs these technologies, not the pipelines or applications built on them: Compute: Spark on K8s, Kyuubi, JupyterHub Query/Analytics: Trino, Superset Orchestration: Airflow on Kubernetes Catalog/Governance: Gravitino, DataHub, Ranger Storage: Iceberg, S3/NetApp, PostgreSQL Messaging/Search: Kafka, OpenSearch Security & Compliance Ensure compliance with regulatory requirements (OSFI, SOX, PCI-DSS) Implement multi-tenant isolation and robust security boundaries Lead security reviews, threat modeling, and remediation Partner with Security, Risk, and Compliance teams on audits and controls
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed