About the Role

The Infrastructure team owns the platform that delivers Navigator to the warfighters who depend on it. Our charter spans Kubernetes clusters in commercial and government cloud, application streaming for thin-client users on classified networks, a unified artifact pipeline that signs and ships the same builds to every environment we operate, and air-gapped appliances at forward sites where Contested Logistics is a daily reality, not a slide.

We're hiring an Infrastructure Engineer who builds security into the systems they operate rather than treating it as a separate workstream. You'll architect, build, and run the platform end to end - writing RFCs and PRDs, reviewing and writing production code alongside Product and Engineering teammates, and owning the outcome when it ships. The work cuts across cloud-native deployments, edge appliances, data platforms, and the application streaming layer that puts Navigator on classified environments. You'll partner with our Governance, Risk, and Compliance (GRC) leads and mission owners on STIGs, CVE remediation, audit prep, and the controls work that lets us operate in environments such as IL5, IL6, and JWICS.

Success means a platform that stays up under real operational load, ships trusted artifacts to every profile we run, and passes audits without fire drills.

This position requires the ability to obtain and maintain a security clearance.

What You'll Do

Build and Operate the Platform

• Design, develop, test, iterate, and deploy secure production systems across cloud-native and edge appliance deployments
• Own end-to-end infrastructure outcomes for one or more critical programs or priority infrastructure initiatives
• Harden the artifact pipeline so the same signed builds run in commercial cloud, single-tenant high-side, and air-gapped appliance deployments
• Run production Kubernetes across commercial and government cloud - operators, networking, storage, and multi-cluster operations that hold up under operational load
• Keep the platform reliable through proactive monitoring, logging, and alerting, and own the response when something breaks

Security and Compliance as a Daily Discipline

• Embed application and infrastructure security into the systems you build - identity, network segmentation, secrets management, and CVE remediation as part of the work, not a phase at the end
• Partner with GRC and mission owners on STIG implementation, audit prep, and the controls work that keeps us operating in IL5, IL6, and JWICS environments
• Maintain an audit-ready posture between formal assessment cycles, so authorization is a steady state rather than a fire drill

Collaborate Across Disciplines

• Embed with cross-functional teams and advise on infrastructure, security, and deployment best practices that hold up in production
• Work closely with Product and Engineering on RFCs, PRDs, and production code - you contribute to the systems you operate
• Contribute to engineering best practices: code reviews, documentation, and continuously improving CI/CD and DevSecOps workflows while keeping Developer Experience at the forefront

What We're Looking For

People request you by name because you bias toward action. You're a problem-solver by nature who genuinely cares about the mission and the outcome. You operate without hand-holding - you read a problem, weigh the tradeoffs, and move. Sometimes those tradeoffs have harsh consequences you pay for later, but you're resilient and you adapt. When the work crosses into expertise you don't have, you dig into the problem, pull in the right teammates, apply their feedback, and keep going.

Strong Infrastructure Foundation

• 5+ years operating production infrastructure in DevOps/DevSecOps, Platform, SRE, Cloud, or Infrastructure roles
• Deep production Kubernetes experience: operators, networking, storage, multi-cluster operations, and a feel for what breaks at scale
• Expertise with major cloud providers (e.g., AWS, Azure), with strong instincts for designing across providers and deployment profiles
• Experience packaging and shipping workloads into disconnected or air-gapped environments

Engineering Depth

• Full-stack engineering experience when necessary - production experience designing, building, and operating services in a modern backend language (e.g., Go, Python, Rust, TypeScript)
• Demonstrated ability to build working solutions from scratch, connect disparate applications together, and jump into existing codebases to add value

Security Judgment

• Strong application and infrastructure security fundamentals: identity, network segmentation, secrets management, common vulnerability classes, and sound security judgment under ambiguity
• Comfortable building security into systems rather than bolting it on

Communication & Growth Mindset

• Clear, concise communicator across disciplines, whether designing system architecture, writing an RFC, or recording a weekly demo of recent work (a Gallatin tradition)
• Always seeking to learn and stay current with industry trends and tools

Clearance

• Ability to obtain a SECRET clearance

Bonus Points

• Active US SECRET or TOP SECRET security clearance
• Government cloud expertise (AWS GovCloud, Azure Government)
• FedRAMP, IL4/IL5, IL6, or JWICS environment exposure
• Audit experience (FedRAMP, SOC 2, or equivalent)
• Hands-on experience with Infrastructure-as-Code (Terraform, CloudFormation) and secure CI/CD pipelines
• Experience building and integrating on Palantir Foundry and its various offerings
• Big data and distributed data experience
• Experience supporting defense, intelligence, or other regulated industries, including legacy system modernization
• Contributions to open-source projects

Mission and Identity

We are building the system that enables faster, smarter logistics decisions in contested environments, and we're doing it with a team of seasoned entrepreneurs, operators, and technologists who have built and scaled solutions in this space before. We hold ourselves to an extremely high standard. We value clear thinking, direct communication, and the kind of ownership that doesn't stop until something actually works.

Our mission is to create decision advantage when the stakes are the highest. If we succeed, the system doesn't just run; it gets smarter. We're not building AI for its own sake. We're building it because faster, smarter decisions in the most demanding environments on earth can't wait. If you want to work somewhere the stakes are real and the mission is urgent - you'll fit in here.

Why Gallatin?

The logistics infrastructure that supports America's warfighters and humanitarian disaster responders is overdue for transformation, and we are building it. From defense operations to disaster response, we're solving the hardest problems that keep missions moving when it matters most. Join a team where the mission is the point.

Compensation: Gallatin offers competitive compensation commensurate with experience. Actual compensation may vary based on experience, skills, and location. In addition to base salary, we offer a generous equity grant, full healthcare coverage, 401k, unlimited PTO, and the perks of working in a high-caliber, mission-driven environment.