Cloud Engineer with Golden Image or Packer

Project details:

• 2-3 days per week from the office (Warsaw), the rest remotely

• Business trips: occasional, max twice a year to Denmark

• Contract: B2B, till the end of the year + possible extensions

About the Role

We are looking for an experienced Senior Cloud Engineer to join a highly technical infrastructure and security-focused team responsible for designing, building, and operating internal automation platforms for public cloud virtual machines.

This role is ideal for someone who enjoys working close to infrastructure, automation, compliance, and DevOps engineering. You will be involved in building and maintaining two key internal platforms: one focused on multi-cloud VM provisioning across Azure and AWS, and another dedicated to OS golden image creation, hardening, distribution, and patching.

You will work in a regulated enterprise environment, where reliability, security, auditability, and automation quality are critical. The team not only builds the platforms but also operates them, so this is a hands-on DevOps role combining engineering, automation, reliability, incident handling, and continuous improvement.

Key responsibilities

• Designing and maintaining fully automated VM provisioning workflows across Azure and AWS.

• Owning end-to-end CI/CD pipelines, from request intake to deployed and CMDB-registered virtual machines.

• Developing and maintaining Python-based service applications for request validation, transformation, cloud account verification, and CMDB integration.

• Creating and maintaining Terraform configurations for VM provisioning, account initialization, and management infrastructure.

• Maintaining secure CI/CD authentication and cross-account OIDC federation across GitHub Actions, AWS IAM, and Azure Entra ID.

• Supporting event-driven provisioning automation using AWS EventBridge, Lambda, and GitHub dispatch workflows.

• Extending post-provisioning automation with Ansible for Linux and PowerShell for Windows.

• Designing, building, and hardening OS golden images for Azure and AWS.

• Creating and maintaining Packer templates for multi-region image creation across Europe, the US, and China.

• Implementing Windows and Linux hardening, including compliance agents, domain integration, patching, and security configuration.

• Supporting Azure patching and compliance automation across cloud and hybrid environments.

• Handling incidents and ensuring platform reliability across multiple environments.

Requirements

• Minimum 3 years of experience in cloud engineering or a similar role.

• Strong hands-on experience with both AWS and Azure.

• Production experience with Terraform at scale.

• Hands-on experience with Packer and golden image engineering.

• Experience with Ansible for post-provisioning automation.

• Knowledge of modern CI/CD authentication patterns, including OIDC-based federation.

• Good scripting skills in Python, Bash/Shell, and PowerShell.

• Experience working with CI/CD pipelines and infrastructure automation.

• Strong understanding of secure, reliable, and auditable cloud infrastructure.

• Good communication skills, ownership mindset, and attention to detail.

Nice to have

• Cloud certifications such as AWS Certified Solutions Architect or Azure Solutions Architect.

• Experience with Bicep, Azure Durable Functions, Azure Maintenance Configuration, or Azure Machine Configuration.

• Experience with ServiceNow, CMDB integrations, compliance tooling, or regulated enterprise environments.

• Familiarity with security and compliance agents such as Nessus, Splunk Universal Forwarder, FlexNet, or Azure Arc.