Daud Herlangga Andrianata

DevOps Engineer

Sidoarjo, Jawa Timur | 085172178338 | andrianta.321@gmail.com

LinkedIn | GitHub

About Me

Results-driven DevOps Engineer with 2+ years of experience in designing, implementing, and maintaining scalable infrastructure solutions. Expertise in Kubernetes, CI/CD pipelines, cloud platforms (AWS, GCP, Azure), and automation tools. Proven track record of optimizing deployment processes, reducing downtime, and enhancing system reliability. Passionate about infrastructure as code, monitoring, and DevSecOps practices.

Portfolio

Azure Kubeflow Deployment

View on GitHub

Project Description

A comprehensive Terraform solution for deploying Kubeflow on Azure using a single Ubuntu VM, automating the setup of MicroK8s, Juju, and Kubeflow to create a complete machine learning platform ready for ML/AI workloads.

Goals

  • Automate ML platform deployment on Azure
  • Simplify Kubeflow installation process
  • Provide GPU support for ML workloads
  • Enable persistent storage for ML artifacts

Challenges

  • Complex Kubeflow installation requirements
  • Group permission management for MicroK8s
  • Persistent storage configuration
  • GPU driver integration with Kubernetes

Solution

  • Terraform for Azure infrastructure automation
  • Robust setup script with progress tracking
  • MicroK8s with Juju for Kubeflow orchestration
  • Automated data disk mounting for persistence

Results & Benefits

  • Complete ML platform in under 30 minutes
  • Simplified access to Kubeflow dashboard
  • Idempotent deployment process
  • Ready-to-use ML environment with GPU support
Technologies:
Terraform Azure Kubeflow MicroK8s Juju Kubernetes Shell Scripting ML/AI

Azure K3s Terraform Deployment

View on GitHub

Project Description

A comprehensive infrastructure as code solution for deploying a lightweight Kubernetes (K3s) cluster on Azure using Terraform, featuring automated networking, security configurations, and support for Istio service mesh integration.

Goals

  • Azure Resource Group, VNet & Subnets
  • Network Security Groups with K3s rules
  • Azure Load Balancer (L4) with public IP
  • Linux VMs (Master & Worker nodes)
  • Automated SSH key generation

Challenges

  • Secure cluster communication setup
  • Network security rule configuration
  • Integrating Istio with Traefik ingress
  • Automating infrastructure provisioning

Solution

  • Modular Terraform configuration
  • GitOps integration with Flux CD
  • Advanced traffic management with Istio
  • Comprehensive security with mTLS

Results & Benefits

  • Fully automated infrastructure deployment
  • Secure cluster with proper NSG rules
  • Enhanced traffic control with Istio Gateway
  • Simplified K3s installation process
Technologies:
Terraform Azure K3s Istio Flux CD Traefik Linux GitOps

SurfSense CI/CD

View on GitHub

Project Description

A comprehensive CI/CD pipeline for automating deployments of SurfSense (an open-source alternative to NotebookLM/Perplexity) using GitHub Actions, Cloudflare Tunnel, and systemd services.

Goals

  • Automate deployment process
  • Secure server access without public IPs
  • Minimize downtime and human error
  • Create scalable deployment solution

Challenges

  • Secure SSH access without IP exposure
  • Non-interactive sudo permissions
  • Reliable error handling
  • Secure credential management

Solution

  • GitHub Actions workflow automation
  • Cloudflare Tunnel for secure SSH
  • systemd for service management
  • GitHub Secrets for credentials

Results & Benefits

  • Deployment time reduced
  • Zero manual intervention needed
  • Enhanced security and reliability
  • Comprehensive logging for troubleshooting
Technologies:
GitHub Actions Cloudflare Tunnel SSH systemd Ubuntu

Fider CI/CD Pipeline

View on GitHub

Project Description

A robust CI/CD pipeline for Fider, an open-source feedback platform, implementing automated build, test, and deployment workflows using Docker containers and GitHub Actions.

Goals

  • Automate build and test processes
  • Ensure code quality through linting
  • Streamline deployment to production
  • Maintain consistent environments

Challenges

  • Coordinating Go and Node.js builds
  • Setting up proper test environments
  • Securing Docker Hub credentials
  • Automating SSH deployment

Solution

  • Multi-stage GitHub Actions workflow
  • Docker containerization for consistency
  • Secure credential management
  • Automated SSH deployment

Results & Benefits

  • Reduced deployment errors
  • Accelerated release cycles
  • Improved code quality
  • Enhanced developer productivity
Technologies:
GitHub Actions Docker Go Node.js PostgreSQL SSH

Kubernetes Cluster GCP Setup

View on GitHub

Project Description

A comprehensive implementation of a Kubernetes cluster on Google Cloud Platform with NGINX Ingress Controller, Cert-Manager, and Argo CD using Helm, providing a robust foundation for GitOps-based deployments and automated certificate management.

Goals

  • Establish GitOps workflow with Argo CD
  • Automate SSL certificate management
  • Configure secure ingress routing
  • Create reproducible infrastructure

Challenges

  • Integration between multiple systems
  • SSL certificate automation
  • Proper ingress configuration
  • Ensuring security best practices

Solution

  • Helm charts for standardized deployments
  • Let's Encrypt integration with Cert-Manager
  • NGINX Ingress for traffic routing
  • Argo CD for GitOps-based deployments

Results & Benefits

  • Fully automated certificate management
  • Declarative configuration as code
  • Simplified application deployments
  • Improved infrastructure reliability
Technologies:
Kubernetes Argo CD NGINX Ingress Cert-Manager Helm Let's Encrypt

Terraform AWS EC2 Deployment

View on GitHub

Project Description

An Infrastructure as Code (IaC) implementation using Terraform to automate the deployment of EC2 instances on AWS, complete with security configurations, SSH access setup, and proper IAM permissions management.

Goals

  • Automate cloud infrastructure provisioning
  • Implement infrastructure as code principles
  • Ensure secure access management
  • Create reproducible deployment process

Challenges

  • Secure credential management
  • Configuring proper network security
  • Setting up passwordless SSH access
  • Managing IAM permissions securely

Solution

  • Terraform modules for AWS resources
  • Variable files for environment separation
  • Security groups for network protection
  • SSH key management automation

Results & Benefits

  • Deployment time reduced from hours to minutes
  • Consistent and repeatable infrastructure
  • Improved security through automation
  • Simplified server access management
Technologies:
Terraform AWS EC2 IAM SSH Security Groups

FluxCD GitOps Implementation

View on GitHub

Project Description

A comprehensive GitOps implementation using FluxCD to manage Kubernetes cluster configurations and deployments, with a well-structured repository design that promotes clarity, scalability, and maintainability.

Goals

  • Implement GitOps workflow for Kubernetes
  • Create scalable configuration structure
  • Automate application deployments
  • Establish environment separation

Challenges

  • Complex repository structure design
  • Multi-environment configuration management
  • Integration with multiple infrastructure components
  • Troubleshooting system conflicts

Solution

  • Structured repository with base, clusters, and infrastructure directories
  • FluxCD for Git-based configuration synchronization
  • Kustomization for environment-specific configurations
  • Integrated cert-manager and NGINX for secure ingress

Results & Benefits

  • Fully automated deployment pipeline
  • Version-controlled infrastructure
  • Simplified cluster management
  • Improved system reliability and consistency
Technologies:
FluxCD Kubernetes GitOps NGINX Ingress Cert-Manager Kustomize

Helm Chart for Backend Deployment

View on GitHub

Project Description

A custom Helm chart designed for standardized backend application deployments in Kubernetes, providing templated configurations for deployments, services, and ingress resources with configurable parameters for different environments.

Goals

  • Standardize backend deployment patterns
  • Enable environment-specific configurations
  • Simplify Kubernetes resource management
  • Create reusable deployment templates

Challenges

  • Supporting various application configurations
  • Managing environment variables securely
  • Optimizing resource allocation
  • Ensuring proper ingress routing

Solution

  • Templated Kubernetes manifests
  • Configurable values.yaml for customization
  • Standardized ingress configurations
  • Resource limit management

Results & Benefits

  • Reduced deployment complexity
  • Consistent application configurations
  • Simplified multi-environment management
  • Improved developer experience
Technologies:
Helm Kubernetes YAML Ingress Deployment Service

Experience

DevOps Engineer | Bank Rakyat Indonesia

Jan 2026 - Present

Full-time

DevOps Engineer | Falah Inovasi Teknologi

Sep 2024 - Dec 2025

Full-time

GitLab CI | Kubernetes | Docker | Ansible | FluxCD | Prometheus | Grafana | Traefik

  • Managed 5+ bare-metal Kubernetes clusters serving internal and client applications, ensuring 99.9% uptime through proactive maintenance, storage optimization, and network configuration.
  • Designed and maintained CI/CD pipelines using GitLab CI for Unity-based, microservices, and frontend applications, reducing deployment time by 40% and ensuring consistent releases across environments.
  • Implemented comprehensive monitoring stack (Prometheus, Grafana, Loki, Alertmanager) enabling proactive detection of issues and reducing incident response time by 60%.
  • Deployed and optimized AI/ML inference services on Kubernetes, achieving 30% improvement in model loading times through resource tuning and autoscaling.
  • Applied GitOps principles with FluxCD to manage 50+ Helm releases, improving deployment traceability and reducing configuration drift by 80%.
  • Automated infrastructure provisioning with Ansible, standardizing server setup across 20+ nodes and reducing manual configuration errors.
  • Established multi-tenant environments with Traefik ingress, TLS encryption, and resource quotas, enhancing security and stability for multi-project deployments.
  • Led incident response for production issues, resolving critical problems within SLA windows and documenting post-mortems for continuous improvement.
  • Collaborated with development teams to optimize container images, reducing size by 50% and improving deployment efficiency.

DevOps Engineer | Evermos

Mar 2024 - Aug 2024

Internship

Jenkins | AWS | Docker | Kubernetes (EKS) | Terraform | Grafana

  • Supported DevOps operations for high-traffic e-commerce platform, improving deployment reliability for 15+ microservices.
  • Built and maintained Jenkins CI/CD pipelines (Freestyle & Declarative), automating build-test-deploy cycles for Golang, Java, and mobile applications.
  • Containerized legacy applications with Docker and orchestrated deployments on EKS, reducing environment inconsistencies by 70%.
  • Managed AWS infrastructure (EC2, S3, RDS, IAM), provisioning resources for dev/staging environments and optimizing costs by 25%.
  • Optimized Jenkins pipelines through parallelization and caching, cutting average deployment time from 45 to 25 minutes.
  • Developed Terraform modules for standardized AWS resource provisioning, reducing setup time by 60% and ensuring compliance.
  • Troubleshot build failures and deployment issues in collaboration with backend and QA teams, maintaining 95% deployment success rate.
  • Documented infrastructure processes and CI/CD workflows, enabling knowledge transfer and team scalability.

DevOps Bootcamp Participant | DBS Foundation Coding Camp

Jun 2023 - Dec 2023

Intensive DevOps Training Program

Jenkins | AWS | Docker | Kubernetes | Prometheus | Loki

  • Implemented end-to-end CI/CD pipelines using Jenkins, Docker, and Kubernetes, automating software delivery processes.
  • Deployed and managed containerized applications on AWS infrastructure, gaining hands-on experience with cloud-native technologies.
  • Configured monitoring and logging solutions with Prometheus, Grafana, and Loki for real-time system observability.
  • Collaborated on team projects applying Infrastructure as Code principles and best practices for scalable deployments.
  • Developed proficiency in container orchestration, network security, and automated testing methodologies.

DevOps Bootcamp Participant | IDCamp

Nov 2022 - Jan 2023

DevOps Engineering Bootcamp

Jenkins | Terraform | Docker | Kubernetes | GCP | Grafana | Prometheus

  • Built CI/CD pipelines integrating Jenkins, Docker, and Kubernetes for automated application deployment.
  • Provisioned and managed GCP infrastructure using Terraform, implementing Infrastructure as Code practices.
  • Configured monitoring dashboards with Grafana and Prometheus for system performance tracking and alerting.
  • Developed automation scripts for infrastructure management and security hardening.
  • Gained practical experience in container orchestration, cloud deployment, and DevOps toolchains.

Linux & DevOps Bootcamp Participant | BTech Academy

Sep 2022 - Nov 2022

Focused Training in Linux Administration, Ansible, and Docker

Ansible | Jenkins | Docker | Kubernetes | Linux

  • Completed intensive training in Linux system administration, mastering server configuration and security best practices.
  • Implemented Ansible playbooks for automated server provisioning and configuration management across multiple environments.
  • Containerized applications using Docker, managing deployment pipelines and troubleshooting containerized workloads.
  • Developed shell scripts for system automation and monitoring, improving operational efficiency.
  • Applied DevOps principles to collaborative projects, focusing on infrastructure automation and reliability.

Backend Developer Bootcamp Participant | Alterra Academy

Feb 2022 - Jul 2022

Backend Development with Golang - Independent Campus Program

Golang | Docker | Kubernetes | PostgreSQL | AWS

  • Developed RESTful APIs and backend services using Golang, implementing concurrent programming with Goroutines and Channels.
  • Integrated applications with PostgreSQL and NoSQL databases, ensuring data consistency and performance optimization.
  • Containerized Golang applications with Docker and deployed to Kubernetes clusters on AWS infrastructure.
  • Implemented authentication, authorization, and security best practices for production-ready applications.
  • Applied testing methodologies (unit, integration) and performance profiling for application optimization.
  • Gained experience in cloud deployment, scalability patterns, and modern backend development practices.

Technical Skills And Interest

Languages

  • Golang
  • Python
  • YAML
  • Bash/Shell

Dev Tools

  • Jenkins
  • Docker
  • Kubernetes
  • Ansible
  • Terraform

Cloud/Databases

  • AWS
  • GCP
  • Azure
  • PostgreSQL
  • MySQL
  • MongoDB

Monitoring/Deployment

  • Grafana
  • Prometheus
  • Loki
  • ELK Stack
  • Jenkins
  • GitOps
  • Git

Areas Of Interest

  • DevOps
  • MLOps
  • DevSecOps
  • FinOps
  • Cloud Computing
  • Containerization
  • Automation
  • Network Security

Soft Skills

  • Problem-solving
  • Self-learning
  • Time Management
  • Adaptability

Education

University of Trunojoyo

2024

Bachelor of Engineering, Mechatronic Engineering, GPA: 3.47

Relevant Coursework: Cloud Computing, Software Engineering, Operating Systems

Contact Me

andrianta.321@gmail.com

085172178338

Jakarta, Indonesia

linkedin.com/in/daud-herlangga-andrianata

github.com/wussh