Container Runtime Engineer

Strong systems programming background with 4+ years of experience in container runtimes and Linux kernel primitives

Hands-on experience with container runtime hardening  technologies like Kata Containers, gVisor, Firecracker, or similar microVM/sandboxing solutions

Deep understanding of Linux kernel interfaces: namespaces, cgroups, seccomp, capabilities, LSMs, and virtualization (KVM/QEMU)

Proficiency in systems programming languages (Go, Rust, or C) with ability to debug low-level code

Knowledge of container runtime specifications (OCI, CRI) and containerd architecture

New hire stock equity (RSUs) and employee stock purchase plan (ESPP)

Continuous professional development, product training, and career pathing

Intradepartmental mentor and buddy program for in-house networking

An inclusive company culture, ability to join our Community Guilds (Datadog employee resource groups)

Free, global Spring Health benefits for employees and dependents age 6+

Competitive global benefits and giving programs

Design, implement, and maintain container isolation infrastructure across multi-cloud Kubernetes environments, with primary focus on Kata Containers and microVM technologies

Achieve performance parity for isolated workloads by resolving disk I/O limitations

Develop new Kata backends for diverse infrastructure requirements, including potential

AWS Nitro Enclaves

integration

Evaluate emerging sandboxing technologies (