keidrych

keidrych

Planet Scale Architect, Savant of Foggy Computing (Cloud -> Mist), Mastermind of Cyvive: Scorched Earth

i, believe people use what society trusts, and trusted technology serves mankind; a 5% increase in internet (cyberspace) trust results in a $3000+ increase in GDP per capita.

i, state that real Planet-Scale or Foggy (Cloud -> Fog -> Edge -> Mist(IoT/IoP)) computing is ubiquitous, teetering on sentience and critical in building credibility and trustworthiness between organisations and customers.

i, created the philosophy of Cyvive: Scorched Earth because i, saw examples of unreliable Information Technology (IT) crafted with good intention yet unequipped to operate beyond a single data centre, region or cloud provider; i, discovered without reliable Planet-Scale Foggy Computing, credibility, intimacy, or reduction in a customers worry is not possible long-term.

i, typically guide organisations through the quagmire of nearly 2,000 multi/poly Cloud Native Computing Foundation (CNCF) technologies so the technological foundation may be secure to all, reliable for customers, and monetarily efficient through the application of Scorched Earth capabilities towards zero production impact on Plant Scale Architecture.

i, have helped companies in Asia, Europe, the USA, and Oceania.
i, have been invited to speak at events such as; CeBit (Australia), Robotic Process Automation (RPA) Brisbane, HackerX (Brisbane), Venture Summit (USA), TechCrunch (USA), Engineer Meetups or technology enthusiast groups.

JSON
Location
4350, Toowoomba, Queensland, Australia
Email
Phone
+61 407 137 451
Website
https://keidrych.fyi
Twitter
keidrych

Achievements

Sale of company i, founded Sotekton Pty Ltd

Meetup Group "The Foggy Cloud" (Sole Founder)

World top 10 in Containerization, TechCrunch Disrupt - USA

Lord of Chaos, crashed regions in AWS, and GCP, advised on how to stabilize

Sponsor of Quasar.dev: Beyond Front End Development

TV exposure on Channel 10, 11 and One (Australia)

Discovered Artificial Intelligence for FOREX

Open Source / Community

present

Maintainer, maker of Cyvizen

Cyvizen (Cyber Survival Denizen) is an integration for Digital Identify (ID) by way of a Linux Operating System that strives for equilibrium between Anonymity/Privacy and Innovation/Security that leveraged concepts of Scorched Earth in Hardware. (i.e. Lost, Stolen, Damaged). Cyvizen is in use by Government, IT Professionals, and Perpetual Travellers.

Highlights

  • [ Ops ] partnered with MetaBox (Clevo Australia) for OEM install & dropship, reduced time to customer and security risk by up to 7 days.
  • [ Ops ] validated encrypted incremental cloud sync, saved tens of GB per backup.
  • [ Sec ] customised panic button for whole-disk erasure, ensured machine is irrevocably wiped in under 5 minutes.
  • [ Sec ] engineered by design, for defence in depth and zero trust, provided peace of mind as a laptop is stolen every 53 seconds.
  • [ Sec ] hardened libraries and configuration by design, slowed down general penetration tests by at least 2x.

present

Maintainer, creator of Containizen

Trusted Containers (OCI/Docker) for production environments. Max security, minimal footprint production base containers. Containizen is included in the Artic Code Vault, where the code will survive 1000 years on hardened film.

Highlights

  • [ Ops ] engineered for global content caching of layers, reducing Mean Time To Resolution (MTTR) of production issues
  • [ Ops ] engineered for global content caching of layers, Mean Time To Resolution (MTTR) of production issues diminished by 3+ times.
  • [ Ops ] standardised language package processes for common software languages, avoided minutes lost while support traced chain of execution.
  • [ Sec ] architected to drop permissions, operate as read-only, and maximise TMPFS capabilities, reduced attack footprint to less than 1% of standard containers.
  • [ Sec ] architected to drop permissions, operate as read-only, and maximise TMPFS capabilities
  • [ Sec ] validated list of Common Vulnerabilities & Exposures (CVS) published daily, shaved 1+ minutes off CI pipeline time.

Creator of Agnostic

Functional or Imperative Programming when paralleled are both Logic Programming, which in turn enables Data Flow on CNCF Architecture, optimised event routes and processes.

Highlights

  • [ Dev ] decreased development time by 250%.
  • [ Dev ] achieved 100% code coverage of developed functions within 60 seconds additional effort.
  • [ Dev ] designed as an integration compatibility layer for external services reduced vendor lock-in, risk of failure, and MTTR.

Selective Commercial Consulting via Sotekton 2014-present

Foggy Cloud Advisor / Architect at Atlassian (Software)

Highlights

  • [ Ops ] conceptualised wargames specific to eBPF interactions and challenges, team able analyse in advance what could have been hours of frustration in production situations.
  • [ Ops ] partnered Atlassian with SysDig for eBPF security and monitoring, interpreted most production issues within 5 minutes.
  • [ Ops ] revamped network to become zone aware on routes, extracted 100% visibility into traffic through clusters.
  • [ Ops ] routed all container traffic through an eBPF (secure) observability layer, locked down 99+% vulnerable opportunities scans or probes by malicious actors.
  • [ Sec ] arbitrated replacement of Container Networking Interface (CNI) with transparent mTLS by WireGuard blocked 100% of unencrypted traffic between machines.
  • [ Sec ] secured in-cluster requests to EKS API to approved Pods only, which typically account for less than 5% of active pods.
  • [ Sec ] facilitated upgrade of Kubernetes Secrets Management to Open-Source Standards, critiqued risk of escaped secrets in-cluster to almost zero.

Foggy Cloud Advisor / Architect at Insurance Australia Group (Insurance)

Highlights

  • [ Ops ] trained team concurrent distributed Continuous Delivery (CD), brinded production defects towards zero.
  • [ Ops ] conceptualised multi-cloud approaches for improved application uptime and reliability, inspired 99% uptime as a possible target.
  • [ Sec ] customised in-use containers for Containizen compatibility, boosted CI deployments by 10x.
  • [ Sec ] spearheaded upgrade of Kubernetes Secrets Management, motivated entire team towards zero trust principles.

Foggy Cloud Advisor / Architect at ANZ Bank (Finance)

Highlights

  • [ Ops ] achieved a secure code Audit Trail traceable to production, restricted 100% of unsigned or visually verified containers.
  • [ Ops ] decreased risk of Disaster Recovery Strategy failure through identification of vapourware, prevented 25+% permanent loss of data.
  • [ Ops ] evaluated ANZ's internal PaaS style platform against Foggy Ubiquity's lessons learned which added years of maturity to internal PaaS.
  • [ Sec ] diagnosed collaboration failure points against InfoSec recommended patterns, hopefully increased co-operation between teams by 30%.
  • [ Sec ] standardised Code Signing though demonstration of how fake actors can hijack commits, over 95% of commits are typically unsigned on Git.
  • [ Sec ] clarified how planet-scale networking operates can mitigate risk, towards zero.
  • [ SecOps ] assigned Data Sovereignty patterns for GDPR, traced data sovereignty for legislation compliance of 10.

Foggy Cloud Advisor / Architect at NBN Co (Networking)

Highlights

  • [ Dev ] authored Kubernetes Cluster API to interface with Bare Metal Servers, allowed IPXE benchmark at 20x improvement over VMWare.
  • [ DevOps ] debugged AWS NVMe to allow full read-write performance per NVMe specification, accelecated throughput by 100x.
  • [ DevOps ] promoted identical and reproducible Development Environments across the technology stack, forecasted 5x reduction in CI infrastructure costs.
  • [ DevSecOps ] coded an automatic nightly suspension & resume capability into non-production Kubernetes clusters, eliminated 70% of infrastructure cost.
  • [ Ops ] customised billing for per Kubernetes Cluster resource, provided a reduction in OPEX for business unit by 50%.
  • [ Ops ] launched a Kubernetes on Metal automated deployment, upgrade and maintenance platform, reduced over $500,000 in VMWare license costs.
  • [ Sec ] saved Kubernetes DNS from discovery attacks, restricted 60% of expected malicious actors.
  • [ SecOps ] built a Kubernetes Hybrid Cloud (Metal->AWS) with transparent encrypted traffic between machines, isolated 100% of listening attacks.

Consultant to CTO at FriendFinder Networks (Dating)

Highlights

  • [ DevSecOps ] standardised Continuous Integration (CI) & Continuous Delivery (CD) within a fully automated isolated environment for efficiency and security, removed 10 servers.
  • [ Ops ] removed VMWare by coding IPXE compatibility for Kubernetes to run directly on Bare Metal, voided $100,000+ in license fees.
  • [ Ops ] restructured to Failover Edge Routing, ensured zero downtime for deployments.
  • [ SecOps ] architected Kubernetes on Bare Metal as a multi data-center mesh with encrypted traffic between machines, prevented the need for inter-data-center proxy or VPN.
  • [ SecOps ] organised in-cluster white-label routes, intervened in DDoS miss-identification by 20%.
  • [ SecOps ] demonstrated how Shadow Environments would aim towards zero production defects with leveraged customer trust and security.

CTO (Cloud) at Maestro Interactive (Streaming)

Highlights

  • [ DevOps ] examined NodeJS memory, throughput, and concurrency. Stabilised application at scale on multi-cloud regions, resolved 70% of application scale challenges.
  • [ DevOps ] devised better billing, performance and infrastructure needs, extracted a 10x reduction in cloud compute costs.
  • [ Ops ] arbitrated removal of Service Mesh, enabled 10x stream concurrency.
  • [ Ops ] discovered a world-first work-around to KubeDNS scale issues at volume with GCP throughput able to exceed 100,000+ concurrent DNS requests. Google published this discovery an FAQ page.
  • [ SecOps ] implemented dynamically reroutable Secure Web Sockets on Kubernetes. Removd stream interruptions on Pod relocation, and 70% of usual customer churn.
  • [ SecOps ] persuaded executive team that Shadow Environments would minimise production defects and boost security, and stabilisation of production which doubled customer trust.

Consultant, Critical Production Support at DoIt International (Cloud Support)

Highlights

  • [ DevSecOps ] presented methodologies to optimise CNCF architecture for plant-scale stability, aimed for 100% uptime at sponsored Meetups.
  • [ DevSecOps ] promoted Containizen's discoveries for security and operation awareness which would minimise time to diagnose & repair production issues by 75+%.
  • [ DevSecOps ] assigned as P1 critical support for challenged or critical clients, typically resolved issues within 90 minutes.

Consultant to Head of Digital & Emerging Technology at Virgin Australia (Airline)

Highlights

  • [ Dev ] collated architecture to a CNCF compliant style, revoked legacy N-Tier & Domain Driven architecture, stripped obfuscated code down by 90%.
  • [ Ops ] implemented centralised Logs via 'Common Log Format' clarified log aggregation streams, streamlined JSON queries for 25% faster search.
  • [ Ops ] minimised Cluster operational costs by 20% & Container Image download time by 90%.
  • [ SecOps ] inspected PII & PCI compliance through CNCF technologies.

Foggy Cloud Advisor / Architect at Tabcorp (Gambling)

Highlights

  • [ Ops ] established multi-cloud and multi-region failover and recovery, resulted in 48 hour resumption of business continuity.
  • [ Sec ] analysed security weak points in Kubernetes implementation and hardened appropriately, lowered internal risk of exposure by 50%.
  • [ Sec ] advised lighter touch approaches with Kubernetes Secrets Management, achieved in a reduction of stress on HashiCorp Vault by ~15%.

Published Research

Foggy Ubiquity

Creator of a Configuration & Continuous Delivery Meta Language in collaboration with 3 Universities & 35 Industry Publications.

leGate

Maker of automated registration endpoint for machine registration with inbuilt DDoS protection.

Fathomable

Maker of an Operational & Governance Platform for Kubernetes, compatible with all major public cloud and bare metal servers.

Espial

Creator of a machine learning based multi-device user tracking and aggregation technology for multi-channel attribution.

Replicant

Unleashed a self-propagated, truly serverless website onto the internet, with no infrastructure costs beyond DNS.

Skills

Planet Scale
Level: Master
Keywords:
  • CD/Continuous Delivery
  • CI/Continuous Integration
  • CNCF
  • Chaos Engineering
  • Compliance
  • DC/OS
  • Data Sovereignty
  • DevOps
  • DevSecOps
  • Federated
  • Infrastructure Security
  • IoT/IoP
  • Kubernetes
  • Multi-Cloud
  • Observability
  • Poly-Cloud
  • Scorched Earth
  • Software Development Lifecycle (SDLC)
  • Zero Downtime
  • Zero Trust
Architecture
Level: Master
Keywords:
  • C4 Model
  • Cloud Computing
  • Containers
  • Cynefin
  • Data Flow
  • Edge Computing
  • Event Driven
  • Fog Computing
  • Integration
  • Linux
  • MicroServices
  • Mist Computing
  • Serverless
  • Software
  • Solution
  • Web Services
Containerization
Level: Master
Keywords:
  • Docker
  • GoLang
  • Java
  • Nim
  • NodeJS / Deno / JavaScript
  • Open Container Initiative (OCI)
  • Python
Public Cloud Providers
Level: Master
Keywords:
  • Alibaba
  • Amazon Web Services (AWS)
  • Baidu
  • Bare Metal
  • Co-located
  • Digital Ocean (DO)
  • Google Cloud Provider (GCP)
  • IBM Softlayer
  • Microsoft Azure
Scorched Earth
Level: Master
Keywords:
  • Cloud Providers
  • Laptop
  • Mobile
  • Organisations

Education

Bachelor of Engineering in Mechanical, Electrical & Information Technology (Infomechatronics) from Queensland University of Technology

Public Speaking in Advanced Communicator Gold, Competent Leader from Toastmasters International

Scholar in Advanced Placement from Princeton University


The content on this website, of which is crafted by +minister keidrych following direction of Yehoshua on behalf of Yahweh, is licensed under CC BY-NC 4.0