Principal Platform Engineer — Data Private Cloud (Kubernetes/OpenShift)

Wells Fargo is back in the office three days a week, collaborating for fabulous outcomes!

This role has no visa sponsorship or visa transfers.

We’re seeking a Principal Platform Engineer to lead the technical strategy, architecture, and delivery of Wells Fargo’s enterprise Data Private Cloud. This is a Kubernetes/OpenShift platform engineering role, responsible for designing and operating the large‑scale infrastructure that powers data, analytics, and AI workloads across the company.

This is not a data engineering role. You won’t be building pipelines or analytics solutions.

Instead, you will:

Architect the Kubernetes-based data platformBuild infrastructure, automation, and security foundationsDefine standards, controls, and multi‑tenant patternsEnable data engineers, ML engineers, and analytics teams by providing a scalable, secure platform they run on

This is a hands-on senior engineering role with end-to-end ownership of platform architecture.

Core Responsibilities

Technical Leadership & Architecture

Own the architecture of the enterprise data platform (OpenShift, Kubernetes, modern data stacks)Define platform standards for security, scalability, multi-tenancy, and operational excellenceLead decisions around compute orchestration (Spark on K8s, YuniKorn), query federation (Trino, Kyuubi), and metadata management (Gravitino, Hive Metastore)Design authentication/authorization (Keycloak, AD, Ranger)Shape infrastructure strategy and open-source deployment patterns

Infrastructure & Platform Engineering

Lead Terraform-based IaC and repeatable deployment practicesArchitect networking, ingress, and service mesh configurationsOversee PKI, SSL/TLS, and certificate lifecycle managementBuild monitoring and observability strategies (OpenSearch, Prometheus, Grafana)Ensure resilience through scheduling, quotas, and capacity planningImplement GitOps for declarative deployments

Data Platform Components (Platform Enablement, Not Data Engineering)

You provide leadership for the platform that runs these technologies, not the pipelines or applications built on them:

Compute: Spark on K8s, Kyuubi, JupyterHubQuery/Analytics: Trino, SupersetOrchestration: Airflow on KubernetesCatalog/Governance: Gravitino, DataHub, RangerStorage: Iceberg, S3/NetApp, PostgreSQLMessaging/Search: Kafka, OpenSearch

Security & Compliance

Ensure compliance with regulatory requirements (OSFI, SOX, PCI-DSS)Implement multi-tenant isolation and robust security boundariesLead security reviews, threat modeling, and remediationPartner with Security, Risk, and Compliance teams on audits and controls

Required Qualifications

7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education5+ years of hands-on experience with Kubernetes in production environments (OpenShift Container Platform strongly preferred)Proven track record designing and operating large-scale data platforms in enterprise environments

Preferred Qualifications

Experience in financial services or other highly regulated industriesExperience with Kubernetes scheduling frameworks (YuniKorn, Volcano) for batch and AI workload optimizationContributions to open-source projects in the data or infrastructureExperience building and deploying applications with enterprise data sourcesHands-on experience with transformer architectures and fine-tuning open-source modelsProfessional certifications: CKA/CKAD, AWS/Azure/GCP Professional, Terraform AssociateExperience with GitOps practices (ArgoCD, Flux)Background in platform product management or developer experience

Technical Expertise

Infrastructure & Orchestration

Expert-level Kubernetes knowledge: deployments, stateful workloads, operators, CRDs, RBAC, network policies, storage classesOpenShift Container Platform: Routes, SCCs, cluster administration, operator lifecycle managementInfrastructure-as-code with Terraform (modules, state management, provider development)Container runtimes, image registries, and CI/CD pipeline integration

Data Platform Technologies

Apache Spark: architecture, tuning, Spark on Kubernetes, dynamic resource allocationDistributed SQL engines (Trino, Presto) including federation and connector developmentApache Airflow: DAG design, executor configurations, Kubernetes executorData catalog and lineage tools (DataHub, Apache Atlas, or similar)Apache Ranger or equivalent fine-grained authorization frameworksApache Iceberg or similar table formats; Hive Metastore operations

AIOps Technologies

AIOps tools: anomaly detection with Prophet, PyOD, or custom models; log analytics with OpenSearch MLObservability ML: Prometheus with recording rules, Grafana ML features, custom alerting models

Security & Identity

Enterprise identity integration: LDAP, Active Directory, SAML, OIDCKeycloak administration, realm configuration, and custom provider developmentPKI, certificate management, and TLS termination strategiesSecrets management (HashiCorp Vault, Kubernetes secrets, external secrets operators)

Pay Range
 

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to demonstrated examples of prior performance, skills, experience, or work location. Employees may also be eligible for incentive opportunities.

$159,000.00 - $305,000.00

Benefits

Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.

Health benefits401(k) PlanPaid time offDisability benefitsLife insurance, critical illness insurance, and accident insuranceParental leaveCritical caregiving leaveDiscounts and savingsCommuter benefitsTuition reimbursementScholarships for dependent childrenAdoption reimbursement

Posting End Date:

15 Feb 2026

*Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

 

Wells Fargo maintains a drug free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.