Cloud Engineer

For our client, one of the Global Pharmaceutical Company, we realize a recruitment process for Cloud Engineer role.

• Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience)
• 3+ years of experience in cloud engineering or a similar role
• Strong proficiency in AWS and Azure
• Experience with infrastructure as code (IaC) tools such as Terraform or CloudFormation
• Proficiency in scripting languages (Python, Bash/Shell & PowerShell)
• Excellent problem-solving abilities and attention to detail
• Strong communication and collaboration skills
• Fluency in English both written and spoken

Multi-Cloud VM Provisioning:

• Design and maintain fully automated, auditable VM provisioning workflows across Azure and AWS in a multi-account environment
• Own end-to-end CI/CD pipelines: from ServiceNow RITM intake to deployed, CMDB-registered VM
• Develop and maintain Python service application handling request transformation, validation, multi-cloud account verification, and CMDB integration
• Author and maintain Terraform configurations for VM provisioning, account initialisation, and management infrastructure
• Maintain cross-account OIDC federation across GitHub Actions, AWS IAM, and Azure Entra ID
• Operate EventBridge → Lambda → GitHub dispatch pipeline for event-driven provisioning automation
• Extend post-processing automation via Ansible (Linux) and PowerShell (Windows): domain join, agent installation, and disk configuration
• Handle ServiceNow incidents and maintain platform reliability across multi-environment deployments.

OS Golden Image Engineering:

• Design, build, and harden OS golden images for Azure and AWS across multiple OS families
• Author and maintain Packer templates for simultaneous multi-region image creation (EU, US, China)
• Develop and maintain Windows hardening: TLS configuration, local admin disabling, KMS activation, OpenSSH bootstrap
• Develop and maintain Linux hardening: SSSD/realm domain integration, compliance agent installation (RHEL & Ubuntu)
• Embed and maintain security and compliance agents: Nessus, Splunk Universal Forwarder, FlexNet, Azure Arc
• Maintain Bicep IaC modules for Azure compliance tooling and patching infrastructure
• Execute monthly image patching cycles across all OS variants backed by full audit pipelines

Azure Patching & Compliance Automation:

• Design and operate Azure Maintenance Configuration (AMC) workflows for Azure-native and Arc-enabled machines
• Maintain Azure Durable Functions orchestration (fan-out/fan-in) for centralized VM patching across multiple subscriptions
• Operate scheduled and emergency patching across Azure, AWS, and on-premises environments
• Maintain Azure Machine Configuration policies for continuous fleet compliance