Hands-on Lead Infrastructure & CloudOps (Confidential Computing & Kubernetes)

Important: EU/DE citizenship mandatory

Why This Role Exists

Confidential computing is moving from research labs into the core of global digital infrastructure — and the industry lacks real production platforms that can make encrypted-in-use computing practical at scale. Enclaive exists to close that gap. We are building the foundational infrastructure layer that allows governments, healthcare providers, AI companies, and regulated enterprises to run their most sensitive workloads without ever exposing raw data — across clouds, borders, and trust boundaries.

This role exists because the future of cloud will not be built by incremental DevOps — it will be engineered by deep systems thinkers who can turn breakthrough security concepts into real, operable platforms. We need a technical leader who can translate confidential computing from theory into reliable multi-cloud infrastructure that developers trust and enterprises depend on. You will help define how secure AI and privacy-preserving SaaS are built over the next decade — creating the operational backbone for a new class of secure digital services.

At Enclaive, infrastructure is not a support function — it is the product. This role exists to architect the secure execution layer that makes confidential computing usable, scalable, and economically viable in the real world.

Role Overview

As Lead of the Infrastructure & CloudOps team, you will own the architecture and delivery of Enclaive’s confidential infrastructure stack. You will lead a small high-impact engineering team and remain deeply hands-on in building:

• Secure multi-tenant platforms running on bare metal and virtualized infrastructure
• Hybrid private/public cloud infrastructure
• Managed confidential Kubernetes environments
• Managed in-use encrypting databases
• Confidential container runtime environments leveraging Confidential Virtualization (KVM/QEMU), Kata Containers and hardware TEEs

You will be responsible for turning advanced confidential computing concepts into reliable, scalable production platforms.

Tasks

Infrastructure & Platform Leadership

• Lead design and operation of Enclaive’s confidential cloud infrastructure
• Build and manage private and public cloud environments using bare metal (Hetzner, OVH, StackIT, Ionos) and virtualized infrastructure
• Architect highly secure, multi-tenant confidential VM and Kubernetes platforms
• Define operational standards, reliability practices, and automation pipelines
• Establish infrastructure roadmap aligned with product and research teams

Platform Engineering & Delivery

• Deploy and operate managed confidential Kubernetes clusters
• Integrate confidential container technologies (e.g., Kata Containers)
• Implement attestation, workload isolation, and secure provisioning
• Integrate Enclaive vHSM and secure key management workflows
• Implement virtualization layers including Buckypaper-based technologies
• Design hybrid multi-cloud architectures across multiple CSPs and on-premise data centers

Automation & Operations

• Build Infrastructure-as-Code pipelines and GitOps workflows
• Define SRE practices: observability, incident response, scalability, and reliability
• Ensure platform security, compliance, and resilience
• Optimize performance of confidential workloads

Team Leadership

• Build and mentor the CloudOps/Infrastructure team
• Set technical standards and engineering practices
• Collaborate closely with product, research, and security teams
• Support customer deployments and PoCs when needed

Requirements

Required Qualifications

• Experience building infrastructure on bare metal and hybrid cloud environments
• Deep knowledge of Linux systems, networking, and virtualization
• Hands-on experience with Infrastructure-as-Code and automation
• Strong background in Kubernetes platform engineering and operations
• Experience operating production multi-tenant environments
• Strong DevOps/SRE mindset and operational discipline
• Proven technical leadership experience

Strong Plus Experience

• Confidential computing (Intel TDX, AMD SEV-SNP, SGX, or similar)
• Confidential containers and Kata Containers
• Secure attestation workflows
• Hardware-backed key management / HSM integrations
• Proxmox, OpenShift, Rancher, or upstream Kubernetes operations
• Multi-cloud platform engineering
• Zero-trust infrastructure design
• Experience in regulated sectors (healthcare, public sector, finance)

Benefits

Why you want to work for enclaive

• We value development . Collaborate with some of the brightest and most captivating minds in the field. As a high-performance organization, we continuously push our limits and foster a growth mindset. Our commitment to employee development is evident through structured mentorship, LinkedIn Learning programs, and various internal initiatives. Additionally, we support professional growth by reimbursing expenses for relevant conferences, training, and educational endeavors.
• We care about your physical, financial and mental well-being . Your well-being matters to us. We offer competitive compensation packages, freedom to select your preferred computer or office equipment within a provided budget, and allowances for commute or internet expenses to facilitate your work environment.
• We are a remote-work first company . Despite having excellent office facilities, our workforce is widely distributed. Utilizing diverse communication tools, we foster connection across the company. Remote employees are encouraged to participate in team offsites, providing opportunities for face-to-face interactions. Diversity and inclusivity are core values we uphold.
• We value diversity and inclusivity . Our hiring practices are free from discrimination based on race, religion, nationality, gender, sexual orientation, age, marital status, veteran status, or disability.

What We’re Looking For

• Builder mentality — comfortable designing from first principles
• Security-first engineering mindset
• Comfortable working in deep-tech startup environments
• Ability to lead while staying highly hands-on
• Strong systems thinking and architectural judgment
• Pragmatic problem solver who can turn research into production systems

Why Join Enclaive

• Work on cutting-edge confidential computing infrastructure
• Shape the future of secure cloud and AI platforms
• High technical autonomy and architectural ownership
• Collaborate with top researchers and industry partners
• Build foundational technology for next-generation secure SaaS