The Compute Nodes team at Datadog manages the foundational Kubernetes infrastructure that powers our global multi-cloud platform. We're responsible for the entire node layer, from OS and kernel security to GPU infrastructure, storage solutions, and container runtime isolation.
The Compute Sandboxing subteam will own the isolation and execution layer, managing runtime diversity and sandboxing technologies that enable secure multi-tenant execution. We're investing heavily in Kata Containers to deliver security isolation for running untrusted customer code, while exploring alternative sandboxing approaches (gVisor, WebAssembly) for different use case requirements.
This role directly supports Datadog's strategic investment in safe execution of untrusted customer code in multi-tenant infrastructure
You will collaborate with the Job Platform team to deliver isolation capabilities that enable new product features while maintaining performance at scale.
Key Responsibilities- Design, implement, and maintain container isolation infrastructure across multi-cloud Kubernetes environments, with primary focus on Kata Containers and microVM technologies
- Achieve performance parity for isolated workloads by resolving disk I/O limitations
- Develop new Kata backends for diverse infrastructure requirements, including potential AWS Nitro Enclaves integration
- Evaluate emerging sandboxing technologies (gVisor, WebAssembly, unikernels) for specific workload requirements
- Collaborate with upstream Kata Containers project to contribute improvements and influence roadmap
- Act as subject matter expert on container security isolation, mentoring engineers on isolation best practices
- Strong systems programming background with 4+ years of experience in container runtimes and Linux kernel primitives
- Hands-on experience with container runtime hardening technologies like Kata Containers, gVisor, Firecracker, or similar microVM/sandboxing solutions
- Deep understanding of Linux kernel interfaces: namespaces, cgroups, seccomp, capabilities, LSMs, and virtualization (KVM/QEMU)
- Proficiency in systems programming languages (Go, Rust, or C) with ability to debug low-level code
- Knowledge of container runtime specifications (OCI, CRI) and containerd architecture
- Upstream contributions to Kata Containers, containerd, gVisor, or related CNCF projects
- Experience with AWS Nitro Enclaves, confidential computing, or hardware security features
- Broad Kubernetes expertise including storage (CSI), networking (CNI), or device management (CDI, NRI)
- Performance tuning for I/O-intensive workloads in virtualized environments
- Technical leadership experience driving architectural decisions in complex systems
- Familiarity with eBPF, GPU passthrough, or specialized hardware device management
Datadog values people from all walks of life. We understand not everyone will meet all the above qualifications on day one. That's okay. If you’re passionate about technology and want to grow your skills, we encourage you to apply.
Benefits and Growth:
- New hire stock equity (RSUs) and employee stock purchase plan (ESPP)
- Continuous professional development, product training, and career pathing
- Intradepartmental mentor and buddy program for in-house networking
- An inclusive company culture, ability to join our Community Guilds (Datadog employee resource groups)
- Free, global Spring Health benefits for employees and dependents age 6+
- Competitive global benefits and giving programs
Benefits and Growth listed above may vary based on the country of your employment and the nature of your employment with Datadog.
Datadog offers a competitive salary and equity package, and may include variable compensation. Actual compensation is based on factors such as the candidate's skills, qualifications, and experience. In addition, Datadog offers a wide range of best in class, comprehensive and inclusive employee benefits for this role including healthcare, dental, parental planning, and mental health benefits, a 401(k) plan and match, paid time off, fitness reimbursements, and a discounted employee stock purchase plan.
About Datadog:
Datadog (NASDAQ: DDOG) is a global SaaS business, delivering a rare combination of growth and profitability. We are on a mission to break down silos and solve complexity in the cloud age by enabling digital transformation, cloud migration, and infrastructure monitoring of our customers’ entire technology stacks. Built by engineers, for engineers, Datadog is used by organizations of all sizes across a wide range of industries. Together, we champion professional development, diversity of thought, innovation, and work excellence to empower continuous growth. Join the pack and become part of a collaborative, pragmatic, and thoughtful people-first community where we solve tough problems, take smart risks, and celebrate one another. Learn more about #DatadogLife on Instagram, LinkedIn, and Datadog Learning Center.
Equal Opportunity at Datadog:
Datadog is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and other characteristics protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. Here are our Candidate Legal Notices for your reference.
Datadog endeavors to make our Careers Page accessible to all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please complete this form. This form is for accommodation requests only and cannot be used to inquire about the status of applications.
Privacy and AI Guidelines:
Any information you submit to Datadog as part of your application will be processed in accordance with Datadog’s Applicant and Candidate Privacy Notice. For information on our AI policy, please visit Interviewing at Datadog AI Guidelines.
Top Skills
Datadog New York, New York, USA Office
We are located in the New York Times building and five-minute walk away from Times Square. The 42 St Port Authority Bus Terminal is right across the street, providing a highly accessible transportation network.
Similar Jobs at Datadog
What you need to know about the NYC Tech Scene
Key Facts About NYC Tech
- Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
- Key Industries: Artificial intelligence, Fintech
- Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
- Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory
