Senior Software Engineer, Sandboxes & Virtualization
About The Position
In this role, you will design, build, and evolve secure sandboxed runtime environments for workloads running on Kubernetes, with a strong emphasis on runtime isolation, performance, and security. You will develop platforms that integrate container runtimes, lightweight virtual machines, and virtualization technologies, while engineering support for GPU-accelerated workloads in multi-tenant environments. Day-to-day, you’ll design GPU-aware sandboxing and scheduling strategies, optimize containerization and I/O performance for latency-sensitive workloads, and build systems capable of safely executing untrusted or shared GPU workloads. You’ll also contribute to architectural decisions across Linux internals, container runtimes, virtualization layers, and GPU drivers to ensure long-term scalability and operational excellence.
Requirements
- 3+ years of experience in systems, platform, infrastructure, or production engineering roles building and operating software at scale.
- Strong hands-on experience with Kubernetes, container orchestration, and cloud-native architectures, including building Kubernetes-native components (e.g., controllers, operators, or scheduling extensions).
- Demonstrated experience designing, implementing, or operating secure execution environments such as container runtimes, sandboxed workloads, or virtualized systems.
- Practical experience with lightweight virtualization and sandboxing technologies (e.g., Kata Containers, gVisor, KubeVirt, QEMU, or similar).
- Experience supporting or optimizing GPU-accelerated workloads in multi-tenant environments, including knowledge of GPU scheduling, isolation, device passthrough, mediated devices, or GPU virtualization concepts.
- Proficiency in systems-oriented programming (Go, C/C++, Rust, or Bash) with a strong understanding of Linux internals and operating system behavior.
- Experience diagnosing and resolving complex performance, reliability, or isolation issues across containers, virtual machines, and underlying infrastructure.
- Experience conducting profiling, benchmarking, and performance tuning across runtime, virtualization, and GPU stacks.
Nice To Haves
- Experience building systems for safely executing untrusted or sensitive workloads in shared environments.
- Familiarity with GPU drivers and low-level virtualization or I/O optimization techniques.
- Experience defining threat models and implementing runtime security policies in multi-tenant systems.
Responsibilities
- design GPU-aware sandboxing and scheduling strategies
- optimize containerization and I/O performance for latency-sensitive workloads
- build systems capable of safely executing untrusted or shared GPU workloads
- contribute to architectural decisions across Linux internals, container runtimes, virtualization layers, and GPU drivers to ensure long-term scalability and operational excellence.
Benefits
- Medical, dental, and vision insurance - 100% paid for by CoreWeave
- Company-paid Life Insurance
- Voluntary supplemental life insurance
- Short and long-term disability insurance
- Flexible Spending Account
- Health Savings Account
- Tuition Reimbursement
- Ability to Participate in Employee Stock Purchase Program (ESPP)
- Mental Wellness Benefits through Spring Health
- Family-Forming support provided by Carrot
- Paid Parental Leave
- Flexible, full-service childcare support with Kinside
- 401(k) with a generous employer match
- Flexible PTO
- Catered lunch each day in our office and data center locations
- A casual work environment
- A work culture focused on innovative disruption
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
