• Lead and mentor a team of DevOps engineers, fostering technical growth and collaboration • Define and drive the infrastructure roadmap aligned with company objectives • Architect and oversee cloud infrastructure design and implementation • Establish best practices, standards, and processes for infrastructure development and operations • Partner with Engineering, Research, and FDE to align infrastructure capabilities with business needs • Drive the evolution of Kubernetes clusters optimized for GPU workloads, Production SaaS hosting and varied enterprise deployment models • Champion GitOps practices using ArgoCD for continuous deployment • Establish infrastructure as code standards using Terraform • Define monitoring and observability strategy for distributed systems • Collaborate with ML engineers to optimize infrastructure for model training and serving • Own infrastructure reliability, performance, and security posture • Implement and maintain cost optimization strategies (FinOps) for cloud resources

• Design and implement cloud infrastructure from the ground up • Build and maintain Kubernetes clusters optimized for GPU workloads and ML applications, as well as Production SaaS hosting • Implement GitOps practices using ArgoCD for continuous deployment • Develop infrastructure as code using Terraform • Create and maintain CI/CD pipelines for infrastructure and application deployment • Implement monitoring and observability solutions for distributed systems • Automate infrastructure management with Python and Bash • Collaborate with ML engineers to optimize infrastructure for model training and serving • Implement and maintain cost optimization strategies (FinOps) for cloud resources • Monitor and optimize cloud spending, especially for GPU-intensive workloads

• Serve as a security point of contact for external customers deploying into regulated cloud environments. • Support customer onboarding by validating application security posture and deployment readiness for FedRAMP environments. • Review customer security documentation, architectures, and deployment workflows against platform security requirements. • Communicate security requirements, changes, incident escalations, and compliance questions clearly to customers. • Implement and operate security controls required for FedRAMP Moderate/High, aligned to NIST SP 800-53. • Support Continuous Monitoring (ConMon) activities, including vulnerability tracking, POA&M updates, and compliance reporting. • Maintain and validate FedRAMP security architecture artifacts, including network diagrams, data flow diagrams, trust boundaries, and control flows. • Validate deployed infrastructure and traffic patterns against approved FedRAMP architectures using flow logs and telemetry. • Operate CrowdStrike as part of the core CNAPP enforcement and DevSecOps control. • Integrate CrowdStrike CNAPP and detection signals into automated SOAR and CI/CD workflows to support preventative controls, response, and Continuous Monitoring (ConMon) for FedRAMP compliance. • Coordinate external penetration testing efforts, including scoping, access, findings review, and remediation tracking. • Use application security tools (e.g., Burp Suite) to support internal testing and remediation. • Implement security and compliance gates in CI/CD pipelines to prevent non-compliant infrastructure or code from reaching production. • Enforce policy-as-code guardrails for IAM, networking, logging, encryption, and endpoint protection using Terraform. • Ensure CrowdStrike coverage, logging, and monitoring are enforced as deployment prerequisites. • Prevent cloud exposure by enforcing network segmentation, approved ingress/egress paths, and least-privilege access. • Detect and remediate configuration drift using CSPM and automated workflows. • Secure Kubernetes clusters and containerized workloads to approved security baselines.

• Plan and execute rolling upgrades across tens of thousands of ClickHouse clusters, ensuring safety, correctness, and minimal customer impact • Own the full release pipeline: from pre-upgrade validation and staged rollouts to post-upgrade monitoring and incident response • Investigate and resolve production issues as part of a regular on-call rotation, including snowflake clusters and edge cases that automation can't yet handle • Build and improve the internal tooling and automation that makes large-scale database operations reliable and repeatable • Work closely with the core database and cloud infrastructure teams to identify operational pain points and turn them into solved problems • Support and educate other engineering teams using our internal tools