David Layardi

Cloud Infrastructure, Automation, DevOps Engineer.

Jakarta, Indonesia | david@layardi.com | github.com/doctor500 | linkedin.com/in/david-lay | medium.com/@davidlayardi

Profile Summary

My journey has been a research-driven pursuit of my passion and curiosity since 2011. I began with application development in VB6 and have since honed my skills as a freelance web developer specializing in PHP-based programming since 2016. In 2018, I shifted my focus toward infrastructure and automation and worked in more than three industries. I’ve completed over 10 projects, delivering exceptional results by developing innovative automation solutions for complex business challenges.

I have extensive knowledge and experience in AWS and GCP Cloud environments. My expertise includes application pipeline engineering, container-based architectures, and cloud infrastructure operations. Additionally, I am skilled in maintaining thorough logs and conducting monitoring practices. Guided by innovation, I’m dedicated to enhancing operational efficiency for sustainable growth.

Technical Skill

AWS (EC2, ECR, IAM, VPC, LB, Route53), GCP (CE, GKE, Cloud SQL, Cloud Logging, Cloud Monitoring, IAM, VPC, Artifact Registry, LB, Cloud DNS, Cloud Storage, Cloud Run, Secret Manager), Linux VM, Windows Server, Debian, CentOS, Docker, Kubernetes, Helm, Kustomize, MySQL, PostgreSQL, Git, Jenkins, GitLab CI, GitHub Actions, Python, Java (Groovy), Shell, Terraform, Nginx, OpenVPN, Teleport, Cloudflare, NewRelic, Datadog, Prometheus, Grafana

Professional Experience

Jan 2024 - Now

Infrastructure Engineer, GovTech Procurement Indonesia

Government Technology (GovTech) Procurement is part of Telkom Indonesia (IDX: TLKM). I’m entrusted to maintain the operations of 600+ nation-scale government procurement apps, managing more than 20+ Kubernetes clusters that can have more than 70+ cost-effective worker nodes (spot instances).

1) Lead and execute infra refactoring from GCP Cloud Run workload into Kubernetes-based workload. Decrease infra production costs by more than 75% daily, and save 95k+ USD in monthly basis.
2) Transform nation-level Mail Services from monolith VM into scalable and cost-effective Kubernetes deployment. Increase service scaling performance 6x faster and more reliable.
3) Implement fully audited and approval-based access control for over 500+ cloud resources in GovTech Procurement using Teleport.
4) Research and implement (POC) independently or in groups for some tooling that can improve GovTech Procurement mankind productivity such as Goldilocks, External Secrets Operator, Kafka on Kubernetes, Pomerium on GKE, and many more.

Nov 2021 - Dec 2023

DevOps Engineer, Gojek - GoTo Financial (GTF)

Maintained 100+ backend services in multi-cloud Kubernetes cluster, Gitlab CI pipeline & runners to fulfill 24/7 business needs.

1) Decreased AWS infra cost for application development by up to 50% hourly by planning and executing cloud cost-saving activities based on resource utilization metrics.
2) Provided 100% configuration visibility to prevent backend misconfiguration cases by improving GTF product-level (Selly Keyboard) backend release processes using open-source secret and configuration management (Vault).
3) Create transformation for 400+ existing production-level AWS resources to Code-based configuration and integrate them with cloud cost analysis.
4) Optimize the GCP Cloud SQL Migration Process from 2 Hours to 15 minutes by implementing the CDC mechanism using GCP DMS

Mar 2020 - Oct 2021 Release Engineer, Pegipegi

Maintain the Jenkins pipeline and internal tools in the Kubernetes Cluster, which serves more than 100+ pipelines of backend services.

1) Transform 80%+ of redundant Jenkins pipeline files into a single standardized deployment pipeline. Rebuilt the company-level pipeline to scale up pipeline maintainability.
2) Decreased up to 6x provisioning time of pipeline supporting resources by migrating them to on top of the Kubernetes platform. Provide ready-to-use resources in less than a minute.
3) Decreased up to 85% of the pipeline initialization build time of the backend repo (mono repo).
4) Scalled up backend pipeline capabilities to support multi-cloud deployment process.

Mar 2018 - Feb 2020 Data Center Staff, Bina Nusantara - IT Division

Work closely with the Data Center & IT Infrastructure group to Help Binus IT Operational Processes.

1) Pioneer of QR-based event registration system for Binus University, used on national-scale event. Reduced manual checking time by 10x from minutes to QR scan and go in seconds. Develop using PHP Laravel, SQL Server, and Windows Server 2016.
2) Create tools & scripts to automate data analyst reporting processes. Provided automation for student document reports to the university and government. Provide several tools/scripts using PHP Laravel, Windows BAT Script, Pentaho, and SQL Server.
3) Developed WiFi debugging tools to help the network-infra team when doing on-site WiFi connection troubleshooting. Simplified debug data gathering into a one-click process. Develop using C#, PHP, and Windows Server 2016.
4) Integrate Windows AD with physical facilities to enable access list automation. (access doors and building’s WiFi for SSO). Speed up the batch manual registration process from a week to less than an hour automatic process. Develop using Windows Active Directory API, PHP, Pentaho, and MikroTik.

Feb 2016 - Jan 2019 Freelance Web Developer, Self Freelance

Develop & Design web-based applications based on user requirements for several companies & organizations:

1) PT. Tri Jaya Samudera (February 2016). Design and develop a company profile using a non-database website (Static Website). Deployed on Apache server.
2) SMAN 7 Kota Bekasi (July 2016 - August 2016). Develop CMS with PHP & MySQL Based.
3) PT. Inspirasi Digital Elevasi (July 2018 - August 2018). Develop Invoice Management System for their client (PT. Royal ElSalam Universal) with web-based PHP, MySQL, and Apache server.

Education

2016 - 2020 Bina Nusantara University, Jakarta.

Bachelor’s degree, Major in Information Systems

Take Business Intelligence minor, Graduate in the 7th semester. Final GPA: 3.8 of 4.0

Activities

Medium Articles

Apr 2024 Accessing GCP Secret Manager from GKE Cluster using Murmur

Reach 250+ Reader (per 2024/10/27) under Self Publication

Apr 2023 How Cloudflare Zero Trust & VS Code Tunnels Reducing My Back Pain

Reach 1800+ Reader (per 2024/10/27) under Self Publication

Aug 2021 Automate Export From Jenkins API Job List to Google Sheets Using Google Apps Script

Reach 2000+ Reader (per 2024/10/27) under Geek Culture publication

Jul 2021 Easy Deploy SonarQube on Kubernetes with YAML configuration

Reach 17500+ Reader (per 2024/10/27) under CodeX publication

Training & Certifications

Jan 2023 Associate Cloud Engineer, from GCP

Sep 2022 Google Cloud Fundamentals: Core Infrastructure, from Coursera

Mar 2021 DevOps Engineering on AWS, from AWS

Latest Professional Projects

May 2024 - Present SPSE Migration from Bare Metal to Government-certified Cloud, GovTech Procurement

Execute and supervise the Automation process of the SPSE migration process. Assess, troubleshoot, and design for implementing automation at the infrastructure level. We’re currently moving more than 600 SPSE services to a Government-certified cloud. Provide them with better security and reliable infrastructure.

Aug 2022 - Sep 2022 Config & Secret Management for Selly.id using Vault Cluster, Gojek - GoTo Financial (GTF)

This implementation aims to make the Selly.id Engineers are more confident about every change they make in terms of configuration changes and every configuration change is stored historically. Implementation is done by creating a Vault Cluster and deploying the configuration values into the Kubernetes cluster natively.

Dec 2020 - Jul 2021 Jenkins Shared Library (Research and Implementation), Pegipegi

Make the build and release process more standardized by implementing the Jenkins Shared Library (JSL). Implementation is done by changing the distributed redundant Jenkinsfile into a centralized Pipeline that is placed in Version Control (git). This provides convenience in the process of debugging and monitoring because each process is equalized based on the type of presentation layer and also helps the process of standardizing the technology used.

Apr 2019 - Dec 2019 Automation for PDDikti Reporting, Bina Nusantara - IT Division

The primary goal is to create a data pipeline from operational data to reporting data. This project uses a combination of Pentaho Data Integration and in-house application development with PHP Laravel Framework. Responsible for project architecture and backend development. Optimizing semi-manual processes that can fail at any time into the process of pressing a button and the process can be seen when it’s finished.

Language

Indonesian - Native proficiency

English - Business level proficiency