Lead DevSecOps Engineer

During my 8+ years at the Directorate General of Taxes (DGT/DJP), I progressed through multiple technical roles, culminating in a leadership position where I was responsible for the architecture, development, and security of mission-critical systems serving over 45,000 employees.

As Lead DevSecOps Engineer (Jan 2019 - Jan 2023)

• Microservices Architecture: Led the architectural design of the new Human Resource Information System (HRIS), transforming it from a legacy monolith into a modern, scalable microservices application.
• Identity & Access Management: Designed and developed DJPConnect, the core IAM for Single Sign-On (SSO) system which will be used by all applications at DJP. This powerful system was built using API Platform, Spring Boot, and deployed on a Kubernetes/OpenShift cluster.
• DevSecOps Leadership: Managed the full DevSecOps lifecycle for the team. This included implementing and managing CI/CD pipelines with GitLab, overseeing infrastructure design on Kubernetes and OpenShift, and acting as the principal engineer for code reviews and system design.
• Technology Modernization: Directed the migration of backend databases from legacy Oracle DB instances to PostgreSQL for all new microservices.

As Software Engineer (Nov 2014 - Dec 2018)

• Enterprise System Development: Served as a key developer for SIKKA, the enterprise HRIS with over 70 modules. I personally contributed to and led the development of major features, including a new attendance/leave system, performance management tools, and analytics dashboards.
• Security Remediation: Took the lead in fixing critical vulnerabilities discovered during security audits. My efforts led to a 97% reduction in application critical vulnerabilities (from 646 to 16), saving the institution over IDR 5 billion in potential costs.
• Legacy System Upgrade: Spearheaded a critical sprint to upgrade the SIKKA application's PHP version and refactor code to ensure compatibility with Oracle DB 11g.

As IT Security Analyst & Penetration Tester (Jan 2016 - Mar 2017)

• Comprehensive Security Audits: Conducted in-depth, black-box penetration tests on dozens of internal web applications, including the primary HRIS (SIKKA), the Tax Knowledge Base, and e-learning platforms.
• Vulnerability Discovery: Uncovered and documented over 1800 security vulnerabilities, including 640+ critical flaws like SQL Injection and RCE, across the organization's application portfolio.
• Impact & Recognition: Authored detailed technical reports with remediation guidance for development teams. My success in this role led to a promotion to lead the security fix initiatives.

As System Administrator (Jul 2017 - Nov 2017)

• Infrastructure Management: Administered the HRIS application server fleet, consisting of over 10 Windows Server and Red Hat Enterprise Linux machines.
• Virtualization Project: Executed a major infrastructure upgrade by migrating the entire HRIS from physical, bare-metal servers to a more resilient and scalable VMware-based virtual environment.
• Performance Tuning: Managed and optimized critical infrastructure components, including Oracle Databases, IIS web servers, and Memcached servers to ensure high performance and availability.