About — Rikky Khurniawan

BIO

Background

I'm Rikky Khurniawan — a Computer Science professional who has spent 7+ years building the invisible backbone that keeps digital systems running. My journey in technology began with a simple curiosity: how does the internet actually work? That question led me deep into network architecture, then system administration, and eventually into the full spectrum of modern cloud and security engineering.

Based in Jakarta, Indonesia, I've architected solutions ranging from bare-metal Linux clusters to multi-cloud Kubernetes deployments across AWS, GCP, and Azure. I've hardened network perimeters against real-world threats, automated infrastructure with Terraform and Ansible, built and maintained CI/CD pipelines, and responded to security incidents — always learning, always adapting to an evolving threat landscape.

My philosophy is simple: systems should be secure by design, not by afterthought. Every configuration decision, every architecture choice, every automation script is made with reliability, security, and long-term maintainability in mind. I thrive at the intersection of complexity and simplicity — taking intricate infrastructure challenges and engineering them into elegant, resilient solutions.

Beyond the technical, I believe in growing people alongside systems. Mentoring junior engineers, building documentation culture, and fostering a DevOps mindset within teams are as important to me as the infrastructure itself.

EXPERTISE

Core Domains

SYSTEM ADMIN

NETWORK ENG

CLOUD

CYBERSECURITY

DEVOPS

DATABASE

AUTOMATION

MONITORING

EXPERIENCE

Professional Timeline

2023 — PRESENT

Cloud & Security Architect / DevOps Lead

Designing multi-cloud infrastructure on AWS, GCP, and Azure with a zero-trust security model. Leading DevSecOps integration, infrastructure-as-code adoption, and mentoring cross-functional engineering teams. Responsible for SLA compliance, incident response, and disaster recovery planning.

2021 — 2023

Senior Infrastructure Engineer

Architected high-availability Linux clusters, deployed Kubernetes workloads at scale, and built CI/CD pipelines with Jenkins and GitLab CI. Championed infrastructure-as-code practices using Terraform and Ansible across the engineering organisation.

2019 — 2021

Network & Systems Engineer

Designed and managed enterprise network architectures (Cisco, MikroTik). Administered Linux servers in production, implemented firewall policies, VPN solutions, and led cloud migration projects. Introduced monitoring stacks with Prometheus and Grafana.

2017 — 2019

Junior System Administrator

System monitoring, server provisioning, network troubleshooting, and scripting routine automation with Bash and Python. Built foundational skills in Linux administration, Cisco networking, and IT operations.

PROFICIENCY

Skill Levels

LINUX / UNIX SYSADMIN 95%

NETWORK ENGINEERING 90%

CLOUD (AWS / GCP / AZURE) 85%

CYBERSECURITY 88%

DEVOPS / CI-CD / IaC 84%

DATABASE MANAGEMENT 80%

SCRIPTING / AUTOMATION 87%

STACK

Tools & Technologies

OPERATING SYSTEMS

RHEL / CentOS Ubuntu Debian Alpine Windows Server

NETWORKING

Cisco IOS MikroTik pfSense OpenWRT Fortinet Wireshark

CLOUD & CONTAINERS

AWS GCP Azure Docker Kubernetes Helm Rancher

DEVOPS & AUTOMATION

Terraform Ansible Jenkins GitLab CI GitHub Actions Bash Python

MONITORING & OBSERVABILITY

Prometheus Grafana ELK Stack Zabbix Nagios InfluxDB

SECURITY

Nessus Suricata Wazuh Fail2ban OpenVPN Vault

DATABASES

MySQL PostgreSQL MongoDB Redis MariaDB

TECHNICAL FOCUS

Specializations

System Administration: RHEL/Ubuntu server management, automated provisioning, performance tuning, high-availability clustering, and proactive monitoring at enterprise scale.

Network Engineering: End-to-end network design, L2/L3 routing (Cisco, MikroTik), firewall policy management, SD-WAN, VPN architecture, and network security hardening.

Cloud Computing: Multi-cloud deployments on AWS/GCP/Azure, Kubernetes orchestration, serverless architectures, cost optimisation, and cloud-native security controls.

Cybersecurity: Security architecture reviews, vulnerability assessments, SIEM implementation, incident response, zero-trust network access (ZTNA), and compliance hardening.

DevOps & IaC: Full CI/CD pipeline design, infrastructure-as-code with Terraform and Ansible, GitOps workflows, and building DevSecOps culture across engineering teams.

Database Administration: MySQL/PostgreSQL/MongoDB design and tuning, replication, automated backups, point-in-time recovery, and capacity planning.

PHILOSOPHY

Professional Approach

I believe that the best infrastructure is the kind you don't notice — it simply works, silently and reliably, 24 hours a day. Getting there requires not just technical depth, but a disciplined approach to documentation, automation, and continuous improvement.

Security is never an add-on. From the first line of a Terraform plan to the final firewall rule, every decision carries a security implication. I build with a defense-in-depth mindset, treating each layer of the stack as both a potential attack surface and an opportunity to harden the overall system.

Ultimately, technology is only as good as the people operating it. I invest in knowledge sharing — writing clear runbooks, mentoring team members, and building systems that empower others rather than creating dependency on any single individual.