I am a DevSecOps & Backend Engineer focused on building secure backend systems and security-aware delivery workflows. My work connects backend engineering, Secure SDLC practices, and CI/CD security so applications can move faster without ignoring risk.
At BSI UII, I started by building and maintaining backend services for student scholarship systems, then moved into SOC/CISRT work focused on vulnerability management, Secure SDLC research, and DevSecOps pipeline proof-of-concepts. That progression shapes how I think: backend reliability and security controls should be designed together, not treated as separate concerns.
My core stack includes Go, PHP, Laravel, REST APIs, Docker, Kubernetes, OpenBao, and CI/CD security tooling such as SAST, dependency scanning, container scanning, and secret scanning. Cloud and infrastructure tools such as Linux, Nginx, GCP, and Cloudflare support the work, but the primary focus of this site is DevSecOps and Backend engineering.
I use this website as an owned technical portfolio: a place to document projects, security labs, backend patterns, and practical lessons from building safer delivery workflows.
