keidrych

Background

About

i, believe we use what we trust, and trusted technology serves mankind; a 5% increase in internet (cyberspace) trust results in a $3000+ increase in GDP per capita.

i, state that real Planet-Scale or Foggy (Cloud -> Fog -> Edge -> Mist(IoT/IoP)) computing is ubiquitous, teetering on sentience and critical in building credibility and trustworthiness between organisations and customers.

i, created the philosophy of Cyvive: Scorched Earth because i, saw numerous examples of unreliable Information Technology (IT) crafted with good intention yet unequipped to operate beyond a single data centre, region or cloud provider; i, discovered without reliable Planet-Scale Foggy Computing, it is impossible to secure credibility, foster intimacy, or reduce customers worry long term.

i, typically guide organisations through the quagmire of multi/poly Cloud Native Computing Foundation (CNCF) technologies so their technological foundation may be secure to all, reliable for customers, and monetarily efficient through leveraging Scorched Earth capabilities towards zero production impact on Plant Scale Architecture.

i, have helped companies in Asia, Europe, the USA, and Oceania.
i, have been invited to speak at events such as; CeBit (Australia), Robotic Process Automation (RPA) Brisbane, HackerX (Brisbane), Venture Summit (USA), TechCrunch (USA) & various Engineering Meetups & technology enthusiast groups

Work Experience

Foggy Cloud Advisor / Architect,
- Present
- [ Ops ] conceptualised wargames specific to eBPF interactions and challenges
- [ Ops ] partnered Atlassian with SysDig for upgraded eBPF security and monitoring
- [ Ops ] upgraded networking to become zone aware on routing
- [ Ops ] visualised all container traffic through an eBPF (secure) observability layer
- [ Sec ] arbitrated replacement of Container Networking Interface (CNI) with transparent mTLS by WireGuard preventing any unencrypted traffic between machines
- [ Sec ] secured in-cluster requests to EKS API to approved Pods only
- [ Sec ] upgraded Kubernetes Secrets Management to Open Source Standards
Foggy Cloud Advisor / Architect,
- Present
- [ Ops ] architected zero production impact Continuous Delivery (CD)
- [ Ops ] conceptualised multi-cloud approaches for increased application uptime and reliability
- [ Sec ] customised in-use containers for Containizen compatibility
- [ Sec ] upgraded Kubernetes Secrets Management to Open Source Standards
Foggy Cloud Advisor / Architect,
- Present
- [ Ops ] architected a secure code Audit Trail traceable to production
- [ Ops ] decreased risk of Disaster Recovery Strategy failure through identification of vapourware
- [ Ops ] evaluated ANZ's internal PaaS style platform against Foggy Ubiquity's lessons learned accelerating maturity of internal PaaS
- [ Sec ] diagnosed collaboration failure points against InfoSec recommended patterns
- [ Sec ] diagnosed security failings of Istio and recommended more secure planet-scale options
- [ Sec ] standardised Code Signing by demonstrating how fake actors can hijack commits
- [ Sec ] visualised planet-scale networking and mitigation approaches to risk
- [ SecOps ] assigned Data Sovereignty patterns for GDPR and per country legislation compliance
Foggy Cloud Advisor / Architect,
- Present
- [ Dev ] upgraded Kubernetes Cluster API to interface with Bare Metal Servers
- [ DevOps ] debugged AWS NVMe to allow full read-write performance per NVMe specification
- [ DevOps ] promoted enabling identical and reproducible Development Environments across the technology stack
- [ DevSecOps ] coded an automatic nightly suspension & resume capability into non-production Kubernetes clusters reducing operating costs
- [ Ops ] customised billing for per Kubernetes Cluster resource billing
- [ Ops ] launched a Kubernetes on Metal automated deployment, upgrade and maintenance platform
- [ Sec ] saved Kubernetes DNS from discovery attacks preventing malicious actors
- [ SecOps ] built a Kubernetes Hybrid Cloud (Metal->AWS) with transparent encrypted traffic between machines
Consultant to CTO,
- Present
- [ DevSecOps ] standardised Continuous Integration (CI) & Continuous Delivery (CD) within a fully automated isolated environment increasing efficiency and security
- [ Ops ] removed VMWare by coding IPXE compatibility for Kubernetes to run directly on Bare Metal, saving over 100K in license fees
- [ Ops ] restructured to Failover Edge Routing allowing zero downtime for deployments
- [ SecOps ] architected Kubernetes on Bare Metal as a multi data-center mesh with encrypted traffic between machines
- [ SecOps ] restructured white-label routing via secure tunnel direct to cluster blocking access to malicious actors
- [ SecOps ] visualised how Shadow Environments would reduce production defects and boost security, increasing trust of customers
CTO (Cloud),
- Present
- [ DevOps ] optimised NodeJS memory, throughput, and concurrency stabilising application at scale on multiple cloud regions
- [ DevOps ] optimised billing by correcting scaling performance and infrastructure needs resulting in 10x reduction in cloud computing costs
- [ Ops ] arbitrated removal of Service Mesh, enabling 10x stream concurrency
- [ Ops ] discovered a world-first work-around to KubeDNS scaling issues at volume with GCP. Google published this discovery on their relevant FAQ page
- [ SecOps ] implemented dynamically re-routable Secure Web Sockets on Kubernetes removing stream interruptions on Pod relocation, critical to business success and reputation
- [ SecOps ] visualised how Shadow Environments would reduce production defects and boost security, increasing trust of customers
Consultant, Critical Production Support,
- Present
- [ DevSecOps ] presented ways of working with and optimising CNCF architecture at sponsored Meetups
- [ DevSecOps ] promoted Containizen's discoveries for security and operation awareness reducing bloat when diagnosing production issues
- [ DevSecOps ] assigned as P1 critical support for challenging or critical clients
Consultant to Head of Digital & Emerging Technology,
- Present
- [ Dev ] restructured architecture to CNCF compliant revoking legacy N-Tier & Domain Driven architecture
- [ Ops ] implemented centralized Logging via 'Common Log Format' preventing incompatibilities with log aggregation streams
- [ Ops ] reduced in Cluster operating costs by 20% & Container Image download time by 90%
- [ SecOps ] architected PII & PCI compliance through CNCF technologies
Foggy Cloud Advisor / Architect,
- Present
- [ Ops ] architected multi-cloud and multi-region failover and recovery
- [ Sec ] analysed security weak points in Kubernetes implementation and hardened appropriately
- [ Sec ] upgraded Kubernetes Secrets Management to Open Source Standards

Skills

Planet Scale
CD/Continuous Delivery

CI/Continuous Integration

CNCF

Chaos Engineering

Compliance

DC/OS

Data Sovereignty

DevOps

DevSecOps

Federated

Infrastructure Security

IoT/IoP

Kubernetes

Multi-Cloud

Observability

Poly-Cloud

Scorched Earth

Software Development Lifecycle (SDLC)

Zero Downtime

Zero Trust
Architecture
C4 Model

Cloud Computing

Containers

Cynefin

Data Flow

Edge Computing

Event Driven

Fog Computing

Integration

Linux

MicroServices

Mist Computing

Serverless

Software

Solution

Web Services
Containerization
Docker

GoLang

Java

Nim

NodeJS / Deno / JavaScript

Open Container Initiative (OCI)

Python
Public Cloud Providers
Alibaba

Amazon Web Services (AWS)

Baidu

Bare Metal

Co-located

Digital Ocean (DO)

Google Cloud Provider (GCP)

IBM Softlayer

Microsoft Azure
Scorched Earth
Cloud Providers

Laptop

Mobile

Organisations

Education

Mechanical, Electrical & Information Technology (Infomechatronics), Bachelor of Engineering, Queensland University of Technology
- Present
Advanced Communicator Gold, Competent Leader, Public Speaking, Toastmasters International
- Present
Advanced Placement, Scholar, Princeton University
- Present

Awards

Sale of company i, founded Sotekton Pty Ltd ,
Awarded on: Nov 01, 2019
Meetup Group "The Foggy Cloud" (Sole Founder) ,
Awarded on: May 29, 2019
World top 10 in Containerization, TechCrunch Disrupt - USA ,
Awarded on: Sep 06, 2018
Lord of Chaos, crashed regions in AWS, and GCP, advised on how to stabilize ,
Awarded on: Jun 01, 2018
Sponsor of Quasar.dev: Beyond Front End Development ,
Awarded on: May 08, 2018
TV exposure on Channel 10, 11 and One (Australia) ,
Awarded on: Nov 13, 2014
undefined ,
Awarded on:
Discovered Artificial Intelligence for FOREX ,
Awarded on: Jan 01, 2006

Volunteer Work

Maintainer, maker, Cyvizen
Jan, 2022 - Present
Cyvizen (Cyber Survival Denizen) is an integration for Digital Identify (ID) by way of a Linux Operating System that strives for equilibrium between Anonymity/Privacy and Innovation/Security while leveraging the ability of Scorched Earthing Hardware. (Lost, Stolen, Damaged). Cyvizen is in use by Government, IT Professionals, and Perpetual Travellers.
- [ Ops ] partnered with MetaBox (Clevo Australia) for OEM install & dropship
- [ Ops ] validated encrypted incremental cloud sync
- [ Sec ] customised panic button for whole-disk erasure
- [ Sec ] engineered by design, for defence in depth and zero trust
- [ Sec ] hardened libraries and configuration by design
Maintainer, creator, Containizen
Apr, 2017 - Present
Trustworthy Containers (OCI/Docker) for production environments. Max security, minimal footprint production base containers. Containizen was included in the Artic Code Vault, where the code was placed on hardened film to survive 1000 years.
- [ Ops ] engineered for global content caching of layers, reducing Mean Time To Resolution (MTTR) of production issues
- [ Ops ] implemented auto language detection and start capability, just drop code in and voilla
- [ Ops ] standardised language packaging processes for common software languages
- [ Sec ] analysed 25 container terrors and implemented removal or hardening to all
- [ Sec ] architected to drop permissions, operate as read-only, and maximise TMPFS capabilities
- [ Sec ] validated list of Common Vulnerabilities & Exposures (CVS) published daily
Creator, Agnostic
Nov, 2018 - Mar, 2019
Functional or Imperative Programming when paralleled are both Logic Programming, which in turn opens up Data Flow on CNCF Architecture, optimising event routing and processing
- [ Dev ] decreased development time by 250%
- [ Dev ] enabled 100% code coverage of developed functions within 60 seconds additional effort
- [ Dev ] designed as an integration compatibility layer for external services reducing vendor lock-in, risk of failure, and MTTR

Publications

Foggy Ubiquity,
Published on: Feb 01, 2018
Creator of a Configuration & Continuous Delivery Meta Language in collaboration with 3 Universities & 35 Industry Publications.
leGate,
Published on: Jul 05, 2018
Maker of automated registration endpoint for machine registration with inbuilt DDoS protection
Fathomable,
Published on: Mar 15, 2018
Maker of an Operational & Governance Platform for Kubernetes, compatible with all major public cloud and bare metal servers.
Espial,
Published on: Feb 28, 2017
Creator of a machine learning based multi-device user tracking and aggregation technology for multi-channel attribution
Replicant,
Published on: Apr 02, 2017
Unleashed a self-propagating, truly serverless website onto the internet, with no hosting costs beyond DNS.