Platform Engineer, AI Agent Systems
Role details
Job location
Tech stack
Job description
Success in this role centers on two tightly related workstreams that share the same hard underlying problem: letting agents operate on sensitive company data and models safely. You'll design and operate the production systems that run agentic workflows inside our infrastructure as well as support a self-service layer for our internal teams to deploy agent-based tools and agent-built internal apps.
You'll own the access control architecture that governs what agents can read, write, and call in both production and sandboxed experiments - explicit trust boundaries, revocable credentials, and audit trails that hold up under scrutiny. Throughout, you'll partner directly with scientists, engineers, finance, legal, and comms to understand what they need, what they'll accidentally break, and how to make the on-ramp fast without compromising the guardrails.
Within six months, you'll have foundational agent-deployment infrastructure running in production, a sandbox environment that internal teams are actively using to build tools, and an access-control and observability model that lets Zanskar expand agent usage safely as the company grows.
Requirements
Do you have experience in Systems engineering?, * A Platform Engineer First: You have 3+ years building and operating internal APIs, platform services, or backend infrastructure. You reach for containerized environments naturally, think in terms of service-to-service auth and secrets management, and you know what observability actually requires - not just that it's important.
- Fluent in How Agents Fail: You have worked with LLM tool-use or function-calling in a production or near-production context. You understand hallucinated tool calls, unbounded loops, and context bleed - not just as concepts, but as things you've had to diagnose and contain. You have hands-on experience with at least one agentic framework and its operational tradeoffs.
- Security-Minded by Default: You don't treat access controls as a bolt-on. You design systems where the path of least resistance is also the safe path. You've thought about what happens when a component is compromised, not just when it works correctly.
- Comfortable With Unsolved Problems: There is no playbook for safely deploying proprietary AI agents at the speed a small technical team needs. You're the kind of engineer who figures out the right approach rather than waiting for one to arrive. You do your best work when the problem is real and the constraints are hard., * Experience with multi-tenant systems where isolation between environments is a hard requirement, not a best-effort.
- Familiarity with model serving infrastructure and the patterns that apply when the model itself is proprietary.
- Experience with data access patterns in scientific or geospatial contexts - raster/vector data, large file stores, or similar environments where data sensitivity and file size create real engineering constraints.
- Experience managing LLM provider integrations at the API layer - cost observability, rate limiting, failover logic, or gateway tooling. Single-provider depth is fine; understanding when and why you'd need to abstract to multi-model is what matters.
- Familiarity with or interest in frontend development - the systems you're building will help users deploy their apps to share across the company.
- Experience in Python, TypeScript, Golang, Pulumi, or Kubernetes - you'll be involved with infrastructure tooling that uses aspects of each while setting up frameworks for the company.
Benefits & conditions
Pulled from the full job description
- Paid parental leave
- Parental leave
- 401(k)
- Health insurance
- Paid time off
- Vision insurance
- Dental insurance, * Full-time; salaried
- Paid holidays
- 18 days PTO + PTO accrual increase based on tenure
- Medical, Dental & Vision coverage
- Equity Packages
- 401k
- Paid Parental Leave
- A direct impact in displacing carbon emissions, and growth opportunities in a growing startup environment