David Layardi

Cloud Infrastructure, DevOps & Agentic AI Engineer.

Tokyo, Japan | david@layardi.com | github.com/doctor500 | linkedin.com/in/david-lay | medium.com/@davidlayardi

Profile Summary

David Layardi is an infrastructure and platform engineer with nearly a decade of experience building scalable cloud systems across government (600+ apps), fintech (100+ services), and enterprise. He has delivered infrastructure cost reductions exceeding 90% and $150K monthly savings through Kubernetes migration, automation, and cloud refactoring on GCP and AWS.

Currently pioneering Agentic AI for infrastructure operations at Rakuten, he develops Claude Code plugins, AI Agent contexts, and autonomous analytical tooling that reduced cyber incident investigation from 24 hours to under 2 hours.

He also builds open-source AI-governed infrastructure projects, including automated server provisioning with Kubernetes and AI Agent governance, and a CV evaluation framework with AI-powered scoring pipelines. These projects combine deep Kubernetes, Terraform, and DevOps expertise with agentic workflow orchestration for infrastructure-as-code operations.

Technical Skills

Cloud Platforms: AWS (EC2, ECR, IAM, VPC, LB, Route53), GCP (CE, GKE, Cloud SQL, Cloud Logging, Cloud Monitoring, IAM, VPC, Artifact Registry, LB, Cloud DNS, Cloud Storage, Cloud Run, Secret Manager)

Container & Orchestration: Docker, Kubernetes, Helm, Kustomize, Harbor, JFrog Artifactory

CI/CD & Automation: Jenkins, GitLab CI, GitHub Actions, ArgoCD

AI & Agentic Tools: Claude Code, AI Agent Development, MCP (Model Context Protocol), Agentic Workflow Design, Prompt Engineering

Languages & Scripting: Python, Go, Java (Groovy), Shell/Bash

Infrastructure as Code: Terraform

Monitoring & Observability: NewRelic, Datadog, Prometheus, Grafana

Networking & Security: Nginx, OpenVPN, Teleport, Cloudflare

Professional Experience

Oct 2025 - Present

Software Engineer - CI/CD Platform, Rakuten, Japan

Part of Rakuten OneCloud Initiative. Designing, maintaining, and automating large-scale CI/CD infrastructure on Kubernetes to support enterprise-wide development. Responsible for CI/CD-as-a-Service, Container Registry (Harbor), and Artifact Registry (JFrog Artifactory).

Developed Claude Code Plugin (Skills + Sub-Agent) to auto-generate compliance-ready operation documents, reducing document creation time by over 80% with 100% holistic compliance checks per cycle.
Reduced cyber incident investigation time from 24 hours to under 2 hours by building AI-powered analysis pipelines for multi-department incident decision-making.
Designed and maintained CI/CD-as-a-Service platform on Kubernetes serving multiple business units, including Container Registry and Artifact Registry.
Built backend automation tooling in Go and Python for platform modernization and developer enablement.

Jan 2024 - Sep 2025

Infrastructure Engineer, GovTech Procurement, Indonesia

Government Technology (GovTech) Procurement is part of Telkom Indonesia (IDX: TLKM). Entrusted to maintain the operations of 600+ nation-scale government procurement apps, managing 20+ Kubernetes clusters with 70+ cost-effective worker nodes (spot instances).

Led and executed infrastructure refactoring from the GCP Cloud Run workload to the GKE Kubernetes cluster. Decreased production costs by more than 90% daily and saved over $150,000 monthly.
Transformed the nation-level Mail Services from a monolithic VM to a scalable and cost-effective Kubernetes deployment. Increased service scaling performance by six times, making it more reliable.
Implemented fully audited and approval-based access control for over 500 cloud resources in GovTech Procurement using Teleport.
Researched and implemented (POC) tooling to improve GovTech Procurement team productivity, such as Goldilocks, External Secrets Operator, Kafka on Kubernetes, Pomerium on GKE, and many more.

Nov 2021 - Dec 2023

DevOps Engineer, Gojek - GoTo Financial (GTF), Indonesia

Maintained 100+ backend services in multi-cloud Kubernetes cluster, Gitlab CI pipeline & runners to fulfill 24/7 business needs.

Decreased AWS infra cost for application development by up to 50% hourly by planning and executing cloud cost-saving activities based on resource utilization metrics.
Provided 100% configuration visibility to prevent backend misconfiguration cases by improving GTF product-level (Selly Keyboard) backend release processes using open-source secret and configuration management (Vault).
Created transformation for 400+ existing production-level AWS resources to Code-based configuration and integrated them with cloud cost analysis.
Optimized the GCP Cloud SQL Migration Process from 2 Hours to 15 minutes by implementing the CDC mechanism using GCP DMS.

Mar 2020 - Oct 2021 Release Engineer, Pegipegi, Indonesia

Maintained the Jenkins pipeline and internal tools in the Kubernetes Cluster, serving 100+ backend service pipelines.

Transformed 80%+ of redundant Jenkins pipeline files into a single standardized deployment pipeline. Rebuilt the company-level pipeline to scale up pipeline maintainability.
Decreased up to 6x provisioning time of pipeline supporting resources by migrating them to on top of the Kubernetes platform. Provided ready-to-use resources in less than a minute.
Decreased up to 85% of the pipeline initialization build time of the backend repo (mono repo).
Scaled up backend pipeline capabilities to support multi-cloud deployment process.

Mar 2018 - Feb 2020 Data Center Staff, Bina Nusantara - IT Division, Indonesia

Worked closely with the Data Center & IT Infrastructure group to support Binus IT Operational Processes.

Pioneer of QR-based event registration system for Binus University, used on national-scale event. Reduced manual checking time by 10x from minutes to QR scan and go in seconds. Developed using PHP Laravel, SQL Server, and Windows Server 2016.
Created tools & scripts to automate data analyst reporting processes. Provided automation for student document reports to the university and government. Developed using PHP Laravel, Windows BAT Script, Pentaho, and SQL Server.
Developed WiFi debugging tools to help the network-infra team when doing on-site WiFi connection troubleshooting. Simplified debug data gathering into a one-click process. Developed using C#, PHP, and Windows Server 2016.
Integrated Windows AD with physical facilities to enable access list automation (access doors and building’s WiFi for SSO). Reduced the batch manual registration process from a week to less than an hour. Developed using Windows Active Directory API, PHP, Pentaho, and MikroTik.

Feb 2016 - Jan 2019 Freelance Web Developer, Self Freelance, Indonesia

Designed and delivered web-based applications for enterprise and education clients, including company profiles, CMS systems, and invoice management tools. Built with PHP, MySQL, and Apache stack.

Education

2016 - 2020 Bina Nusantara University, Jakarta.

Bachelor’s degree, Major in Information Systems

Completed Business Intelligence minor, graduated in the 7th semester. Final GPA: 3.8 of 4.0

Activities

Medium Articles

Apr 2024 Accessing GCP Secret Manager from GKE Cluster using Murmur

Reach 450+ Visitor (per 2026/02/14) under Self Publication

Apr 2023 How Cloudflare Zero Trust & VS Code Tunnels Reducing My Back Pain

Reach 3800+ Visitor (per 2026/02/14) under Self Publication

Aug 2021 Automate Export From Jenkins API Job List to Google Sheets Using Google Apps Script

Reach 2200+ Visitor (per 2026/02/14) under Geek Culture publication

Jul 2021 Easy Deploy SonarQube on Kubernetes with YAML configuration

Reach 20000+ Visitor (per 2026/02/14) under CodeX publication

Training & Certifications

Jan 2023 Associate Cloud Engineer, from GCP

Sep 2022 Google Cloud Fundamentals: Core Infrastructure, from Coursera

Mar 2021 DevOps Engineering on AWS, from AWS

Latest Professional Projects

Oct 2025 - Present Compliance Document Automation Plugin (Claude Code), Rakuten

Developed Claude Code Plugin consisting of Skills and Sub-Agent to auto-generate compliance-ready operation documents for CI/CD operations. Reduced document creation time by over 80%, with 100% holistic compliance checks on every document creation and update cycle. Previously a fully manual process requiring cross-team coordination.

2024 - Present Open Source CV with AI-Powered Evaluation Framework, Personal — github.com/doctor500/cv

Built an open-source CV generation system using Jekyll and GitHub Actions, expanded with AI Agent capabilities: automated CV evaluation workflows (quick + deep dive), a scoring framework across 6 categories and 10 quality standards, and AI-powered content improvement pipelines. Integrated Claude Code, MCP, and agentic workflow orchestration for infrastructure-as-code operations.

May 2024 - Dec 2024 SPSE Migration from Bare Metal to Government-certified Cloud, GovTech Procurement

Led the end-to-end automation of the SPSE migration process, moving more than 600 government procurement services from bare metal to a Government-certified cloud. Designed infrastructure-level automation for assessment, troubleshooting, and deployment, achieving improved security compliance and reliable infrastructure at scale.

Aug 2022 - Sep 2022 Config & Secret Management for Selly.id using Vault Cluster, Gojek - GoTo Financial (GTF)

Implemented a Vault Cluster for Selly.id to provide 100% configuration change visibility and historical tracking. Deployed configuration values natively into the Kubernetes cluster, enabling engineers to make confident, auditable configuration changes.

Dec 2020 - Jul 2021 Jenkins Shared Library (Research and Implementation), Pegipegi

Standardized the build and release process by implementing the Jenkins Shared Library (JSL). Migrated distributed redundant Jenkinsfiles into a centralized, version-controlled pipeline, improving debugging, monitoring, and technology standardization across all services.

Apr 2019 - Dec 2019 Automation for PDDikti Reporting, Bina Nusantara - IT Division

Built a data pipeline from operational data to reporting data using Pentaho Data Integration and an in-house PHP Laravel application. Responsible for project architecture and backend development. Automated semi-manual reporting processes, transforming error-prone workflows into reliable one-click operations.

Language

Indonesian - Native proficiency

English - Business level proficiency