Wells Fargo is back in the office collaborating for fabulous outcomes! This role is a hybrid role and in the office three days a week. There is no visa sponsorships or visa transfers for this role. The role is positioned in the cities listed on the req. We’re seeking a Principal Engineer to drive the technical strategy, architecture, and delivery of our enterprise Data Private Cloud. You’ll lead end‑to‑end platform design across our Kubernetes-based data ecosystem, enabling teams to migrate, build, and scale data engineering and analytics workloads on a modern, self‑service platform. This hands‑on leadership role spans full‑stack architectural oversight—from container orchestration to infrastructure-as-code—while serving as the senior technical authority for platform engineering teams and business partners. Core Responsibilities Technical Leadership & Architecture Own the architecture of the enterprise data platform (OpenShift, Kubernetes, modern data stacks) Define platform standards for security, scalability, multi-tenancy, and operational excellence Lead decisions around compute orchestration (Spark on K8s, YuniKorn), query federation (Trino, Kyuubi), and metadata management (Gravitino, Hive Metastore) Design authentication/authorization (Keycloak, AD, Ranger) Shape infrastructure strategy and open-source deployment patterns Infrastructure & Platform Engineering Lead Terraform-based IaC and repeatable deployment practices Architect networking, ingress, and service mesh configurations Oversee PKI, SSL/TLS, and certificate lifecycle management Build monitoring and observability strategies (OpenSearch, Prometheus, Grafana) Ensure resilience through scheduling, quotas, and capacity planning Implement GitOps for declarative deployments Data Platform Components Provide leadership across: Compute: Spark on K8s, Kyuubi, JupyterHub Query/Analytics: Trino, Superset Orchestration: Airflow on Kubernetes Catalog/Governance: Gravitino, DataHub, Ranger Storage: Iceberg, S3/NetApp, PostgreSQL Messaging/Search: Kafka, OpenSearch Security & Compliance Ensure compliance with regulatory requirements (OSFI, SOX, PCI-DSS) Implement multi‑tenant isolation and robust security boundaries Lead security reviews, threat modeling, and remediation Partner with Security, Risk, and Compliance teams on audits and controls Required Qualifications • 7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education • 5+ years of hands-on experience with Kubernetes in production environments (OpenShift Container Platform strongly preferred) • Proven track record designing and operating large-scale data platforms in enterprise environments Preferred Qualifications • Experience in financial services or other highly regulated industries • Experience with Kubernetes scheduling frameworks (YuniKorn, Volcano) for batch and AI workload optimization • Contributions to open-source projects in the data or infrastructure • Experience building and deploying applications with enterprise data sources • Hands-on experience with transformer architectures and fine-tuning open-source models • Professional certifications: CKA/CKAD, AWS/Azure/GCP Professional, Terraform Associate • Experience with GitOps practices (ArgoCD, Flux) • Background in platform product management or developer experience Technical Expertise Infrastructure & Orchestration • Expert-level Kubernetes knowledge: deployments, stateful workloads, operators, CRDs, RBAC, network policies, storage classes • OpenShift Container Platform: Routes, SCCs, cluster administration, operator lifecycle management • Infrastructure-as-code with Terraform (modules, state management, provider development) • Container runtimes, image registries, and CI/CD pipeline integration Data Platform Technologies • Apache Spark: architecture, tuning, Spark on Kubernetes, dynamic resource allocation • Distributed SQL engines (Trino, Presto) including federation and connector development • Apache Airflow: DAG design, executor configurations, Kubernetes executor • Data catalog and lineage tools (DataHub, Apache Atlas, or similar) • Apache Ranger or equivalent fine-grained authorization frameworks • Apache Iceberg or similar table formats; Hive Metastore operations AIOps Technologies • AIOps tools: anomaly detection with Prophet, PyOD, or custom models; log analytics with OpenSearch ML • Observability ML: Prometheus with recording rules, Grafana ML features, custom alerting models Security & Identity • Enterprise identity integration: LDAP, Active Directory, SAML, OIDC • Keycloak administration, realm configuration, and custom provider development • PKI, certificate management, and TLS termination strategies • Secrets management (HashiCorp Vault, Kubernetes secrets, external secrets operators) **Pay Range** Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. $159,000.00 - $305,000.00 **Benefits** Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs (https://www.wellsfargojobs.com/en/life-at-wells-fargo/benefits) for an overview of the following benefit plans and programs offered to employees. + Health benefits + 401(k) Plan + Paid time off + Disability benefits + Life insurance, critical illness insurance, and accident insurance + Parental leave + Critical caregiving leave + Discounts and savings + Commuter benefits + Tuition reimbursement + Scholarships for dependent children + Adoption reimbursement **Posting End Date:** 5 Feb 2026 ***** **_Job posting may come down early due to volume of applicants._** **We Value Equal Opportunity** Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements. **Applicants with Disabilities** To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo (https://www.wellsfargojobs.com/en/diversity/disability-inclusion/) . **Drug and Alcohol Policy** Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy (https://www.wellsfargojobs.com/en/wells-fargo-drug-and-alcohol-policy) to learn more. **Wells Fargo Recruitment and Hiring Requirements:** a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. **Req Number:** R-512394