Torchora
Back to Home

Key Responsibilities and Required Skills for an Image Builder

💰 $110,000 - $175,000

DevOpsCloud EngineeringIT InfrastructureSystems Administration

🎯 Role Definition

As our Image Builder, you will be the cornerstone of our infrastructure automation strategy. You'll own and operate the "golden image" factory, a critical service that enables our development and operations teams to deploy applications rapidly and securely. Your work will directly impact the reliability, security, and scalability of our entire technology platform by providing standardized, hardened, and optimized base images for all our services. This is a high-impact role for a meticulous engineer who is passionate about creating robust, repeatable, and secure foundations for modern infrastructure.

📈 Career Progression

Typical Career Path

Entry Point From:

  • Systems Administrator
  • Cloud Support Engineer
  • Junior DevOps Engineer

Advancement To:

  • Senior DevOps Engineer / Staff Image Engineer
  • Cloud Architect
  • Infrastructure Engineering Manager

Lateral Moves:

  • Site Reliability Engineer (SRE)
  • Security Engineer (SecOps)

Core Responsibilities

Primary Functions

  • Design, build, and maintain a fully automated pipeline for creating and validating "golden" operating system images for both Linux and Windows environments.
  • Utilize Infrastructure as Code (IaC) tools, primarily HashiCorp Packer, to define and version-control image templates for absolute repeatability and consistency across all environments.
  • Develop and manage sophisticated configuration management scripts using Ansible to install software, apply security hardening, and configure base images according to company standards and CIS benchmarks.
  • Integrate the entire image building process into our core CI/CD pipelines (e.g., GitLab CI, Jenkins) to enable continuous delivery and automated testing of new image versions.
  • Implement a comprehensive testing and validation framework to automatically check image functionality, performance benchmarks, and security compliance before release into our artifact registries.
  • Manage the complete lifecycle of virtual machine (VM) and container images, including versioning, strategic patching, deprecation schedules, and retirement strategies.
  • Collaborate closely with cybersecurity teams to embed security best practices, such as vulnerability scanning (using tools like Trivy, Qualys, or Clair), directly into the build process.
  • Proactively optimize images for performance, focusing on reducing boot times, minimizing resource footprint, and decreasing overall image size for faster and more cost-effective deployments.
  • Develop, manage, and optimize Dockerfiles and containerization strategies to build lightweight, secure, and efficient base container images for our application development teams.
  • Publish and distribute approved images to various cloud and on-premise environments, including AWS (AMIs), Azure (Shared Image Gallery), GCP (Custom Images), and VMware vSphere.
  • Create and maintain detailed, accessible documentation for image creation processes, configuration standards, and the catalog of available image offerings.
  • Act as the subject matter expert on OS imaging and container foundations, providing expert guidance and support to development and operations teams on image selection and usage.
  • Troubleshoot and resolve complex, high-stakes issues related to image builds, deployments, and unexpected runtime behavior in production environments.
  • Proactively monitor for Common Vulnerabilities and Exposures (CVEs) and implement a systematic process for patching base images and orchestrating the rollout of updates across the fleet.
  • Script and automate routine and complex tasks related to image management and maintenance using Python, Bash, or PowerShell to drive efficiency.
  • Evaluate, prototype, and integrate new tools and technologies to continuously improve the efficiency, security, and reliability of the image factory.
  • Work in lockstep with cloud engineering teams to ensure image compatibility and performance optimization for specific cloud services and instance types.
  • Manage secrets and credentials securely within the image build process using tools like HashiCorp Vault or cloud-native secret managers to maintain a zero-trust posture.
  • Implement a robust tagging and metadata strategy for all images to facilitate better tracking, automated governance, cost allocation, and security auditing.
  • Perform regular audits of existing images across all platforms to ensure they remain compliant with internal policies and external regulatory requirements.
  • Develop custom tooling and scripts to bridge gaps in existing image management platforms and enhance our automation capabilities beyond off-the-shelf solutions.
  • Participate in an on-call rotation to support critical infrastructure incidents, particularly those related to base image failures, security vulnerabilities, or deployment blockers.

Secondary Functions

  • Support ad-hoc data requests and exploratory data analysis related to image usage and performance.
  • Contribute to the organization's broader infrastructure strategy and technology roadmap.
  • Collaborate with business units to translate their application needs into clear engineering requirements for new or updated images.
  • Participate in sprint planning, retrospectives, and other agile ceremonies within the infrastructure engineering team.

Required Skills & Competencies

Hard Skills (Technical)

  • Image Automation: Expert-level proficiency with HashiCorp Packer for building automated machine images across multiple platforms (cloud, virtual, and containers).
  • Configuration Management: Strong, hands-on experience with Ansible for system configuration, hardening, and software installation.
  • Cloud Platforms: Deep practical experience with at least one major cloud provider's image services (AWS EC2/AMI, Azure VHDs/Image Gallery, or GCP Compute Engine Images).
  • Containerization: Solid understanding of Docker, including writing optimized and secure multi-stage Dockerfiles, and familiarity with container registries like ECR, ACR, or Artifactory.
  • CI/CD Pipelines: Proven experience integrating build processes into CI/CD tools such as GitLab CI, Jenkins, Azure DevOps, or GitHub Actions.
  • Scripting: High proficiency in at least one scripting language such as Python, Bash, or PowerShell for automation and custom tooling.
  • Infrastructure as Code (IaC): Working knowledge of Terraform for provisioning temporary infrastructure needed for image testing and validation.
  • Operating Systems: In-depth knowledge of Linux (RHEL, Ubuntu) and/or Windows Server administration, including performance tuning and security hardening.
  • Version Control: Mastery of Git and common Git-based workflows (e.g., GitFlow) for managing all configuration and code.
  • Security Tooling: Experience with vulnerability scanning tools (Trivy, Clair, Qualys) and implementing security frameworks (CIS Benchmarks, STIGs).
  • Networking: Strong understanding of core networking concepts (VPCs, subnets, firewalls, security groups) within cloud environments.

Soft Skills

  • Analytical Problem-Solving: A methodical and data-driven approach to troubleshooting complex technical issues from root cause to resolution.
  • Extreme Attention to Detail: Meticulous care in configuration, scripting, and testing to prevent widespread system issues originating from base images.
  • Collaborative Communication: Excellent interpersonal and communication skills to work effectively with development, security, and operations teams.
  • Sense of Ownership: A strong sense of accountability for the quality, security, and reliability of the foundational infrastructure you produce.
  • Curiosity and Adaptability: The ability to continuously learn and adapt to new technologies and processes in a rapidly evolving cloud-native landscape.

Education & Experience

Educational Background

Minimum Education:

  • Bachelor's degree in a technical field, or equivalent practical industry experience.

Preferred Education:

  • Bachelor's or Master's degree in Computer Science, Information Systems, or a related discipline.

Relevant Fields of Study:

  • Computer Science
  • Information Technology
  • Systems Engineering

Experience Requirements

Typical Experience Range:

  • 3-7 years of experience in a DevOps, Systems Engineering, or Cloud Infrastructure role.

Preferred:

  • 3+ years of proven experience in a role specifically focused on building and managing automated image pipelines for a large-scale enterprise environment. Cloud certifications (e.g., AWS Certified DevOps Engineer, Azure DevOps Engineer Expert) are a strong plus.
Explore More Careers