Senior Software Engineer, Sandboxes & Virtualization

Core Weave is The Essential Cloud for AI™. Built for pioneers by pioneers, Core Weave delivers a platform of technology, tools, and teams that enables innovators to build and scale AI with confidence. Trusted by leading AI labs, startups, and global enterprises, Core Weave combines superior infrastructure performance with deep technical expertise to accelerate breakthroughs and turn compute into capability. Founded in 2017, Core Weave became a publicly traded company (Nasdaq: CRWV) in March 2025.

Learn more at

The team is responsible for building and operating secure, high-performance runtime environments that power multi-tenant Kubernetes platforms  sit at the intersection of container runtimes, lightweight virtualization, GPU infrastructure, and Linux systems engineering. Our mission is to deliver robust, isolated, and efficient execution environments for GPU-accelerated and AI-driven workloads, partnering closely with security, platform, and GPU infrastructure teams to define and implement best-in-class isolation and performance standards.

In this role, you will design, build, and evolve secure sandboxed runtime environments for workloads running on Kubernetes, with a strong emphasis on runtime isolation, performance, and security. You will develop platforms that integrate container runtimes, lightweight virtual machines, and virtualization technologies, while engineering support for GPU-accelerated workloads in multi-tenant environments. Day-to-day, you’ll design GPU-aware sandboxing and scheduling strategies, optimize containerization and I/O performance for latency-sensitive workloads, and build systems capable of safely executing untrusted or shared GPU workloads.

You’ll also contribute to architectural decisions across Linux internals, container runtimes, virtualization layers, and GPU drivers to ensure long-term scalability and operational excellence.

• 3+ years of experience in systems, platform, infrastructure, or production engineering roles building and operating software at scale.
• Strong hands-on experience with Kubernetes, container orchestration, and cloud-native architectures, including building Kubernetes-native components (e.g., controllers, operators, or scheduling extensions).
• Demonstrated experience designing, implementing, or operating secure execution environments such as container runtimes, sandboxed workloads, or virtualized systems.
• Practical experience with lightweight virtualization and sandboxing technologies (e.g., Kata Containers, gVisor, Kube Virt, QEMU, or similar).
• Experience supporting or optimizing GPU-accelerated workloads in multi-tenant environments, including knowledge of GPU scheduling, isolation, device passthrough, mediated devices, or GPU virtualization concepts.
• Proficiency in systems-oriented programming (Go, C/C++, Rust, or Bash) with a strong understanding of Linux internals and operating system behavior.
• Experience diagnosing and resolving complex performance, reliability, or isolation issues across containers, virtual machines, and underlying infrastructure.
• Experience conducting profiling, benchmarking, and performance tuning across runtime, virtualization, and GPU stacks.

• Experience building systems for safely executing untrusted or sensitive workloads in shared environments.
• Familiarity with GPU drivers and low-level virtualization or I/O optimization techniques.
• Experience defining threat models and implementing runtime security policies in multi-tenant systems.

We believe in investing in our people, and value candidates who can bring their own diversified experiences to our teams – even if you aren't a 100% skill or experience match. Here are a few qualities we’ve found compatible with our team. If some of this describes you, we’d love to talk.

• You love building high-performance systems that operate reliably under extreme scale and demand.
• You’re curious about the intersection of security, virtualization, Kubernetes, and GPU infrastructure.
• You’re an expert in reasoning about tradeoffs between isolation, performance, and operability.

At…