10 Years Building
Enterprise Systems
A deep dive into architecture decisions, security practices, and delivery across government and enterprise environments.
Engineering Philosophy
How I think about systems
Architecture First
Every system starts with a clear architecture blueprint. I design for clarity, not cleverness.
Security by Design
Security is not a phase. It is embedded from requirements through deployment via SSDLC and SAST enforcement.
API-First Thinking
Decouple early, integrate cleanly. APIs are contracts — versioned, documented, and tested.
Long-Term Maintainability
I optimize for the engineer who inherits the system in 3 years, not just the sprint deadline.
Skills Overview
At a glance
Tech Stack
Tools I work with
Technologies and platforms used across production systems — selected for reliability, not trends.
Framework
Database
Cloud & Infrastructure
DevOps
Security & Auth
AI Integration
Experience
Career timeline
Work Experience
Apr 2021 – Present
Lead Back-End Developer / Tech Lead
Terato Tech Sdn Bhd
Owning end-to-end solution architecture across enterprise and government systems, driving secure engineering practices, cloud infrastructure, and technical strategy.
- Lead end-to-end solution architecture across 20+ active projects spanning enterprise and government sectors
- Delivered systems serving millions of users, including water utility customers across Selangor, KL, and Putrajaya
- Define and enforce Secure Software Development Lifecycle (SSDLC) across requirements, design, development, testing, and deployment
- Establish secure coding guidelines, dependency risk management, and SAST via self-hosted SonarQube
- Integrate SAST into CI/CD pipelines and enforce quality gates, blocking vulnerabilities before they reach production
- Design scalable CMS and API architectures, including migration from traditional to Headless CMS and API-first models
- Architect, manage, and monitor dedicated servers and cloud environments for reliability, observability, and cost efficiency
- Introduced load testing practices using Locust to validate system reliability under production-scale traffic
- Lead technical solution design for 20+ tender proposals, achieving 80% top-3 shortlisting rate on competitive bids
- Act as primary technical escalation point and architectural decision-maker across all active projects
Jan 2020 – Apr 2021
Senior Software Engineer
Terato Tech Sdn Bhd
Led CMS and API platform management for enterprise clients, owning infrastructure reliability, system overhauls, and cross-project technical support.
- Led management and maintenance of CMS and API platforms for Air Selangor, supporting millions of active users
- Overhauled Kitajaga CMS from a legacy system, improving platform performance and significantly reducing maintenance overhead
- Configured and managed dedicated servers, establishing monitoring pipelines for consistent system stability
- Maintained high uptime across production systems through proactive incident detection and resolution
- Provided continuous cross-project technical support, reducing escalation backlog and improving team delivery pace
Jan 2017 – Jan 2020
Software Engineer
Terato Tech Sdn Bhd
Full-stack development spanning Android and Laravel, delivering production systems from on-premise monoliths to cloud-native deployments.
- Led development of CMS and API platforms for Air Selangor, establishing the foundation for a system now serving millions of users
- Migrated Air Selangor infrastructure from on-premise (Ubuntu 16.04, PHP 7.2, Nginx) to Alibaba Cloud, improving scalability and reducing operational costs
- Implemented CI/CD pipelines, reducing deployment cycles and improving release reliability across multiple projects
- Delivered Bepunct V1 HR platform (Laravel and Android) handling employee leave, claims, and HR administration for enterprise clients
- Designed and implemented BCiS API using CodeIgniter 2 for the GreenTech Malaysia mobile application
- Built and published multiple Android applications to Google Play Store for government and enterprise clients
Jul 2016 – Jan 2017
Android Developer
Terato Tech Sdn Bhd
Android application development for government and enterprise mobile solutions.
- Developed and published Android applications to Google Play Store for government and enterprise clients
- Participated in User Requirement Specification (URS) sessions, translating client needs into technical specifications
- Implemented REST API integrations and delivered incremental application enhancements
Feb 2016 – Jul 2016
Android Developer Intern
Terato Tech Sdn Bhd
Internship focused on hybrid mobile application development and proof-of-concept projects.
- Developed Domino App POC, converting Domino MY/SG websites into hybrid mobile applications
- Built a file-sharing application combining web-based and native mobile capabilities
Education
Bachelor of Science (Mathematics & Computer Science)
Universiti Teknologi MARA (UiTM)
2014 – 2016
Diploma in Computer Science
Universiti Teknologi MARA (UiTM)
2011 – 2013
Licenses & Certifications
Cloud, Architecture & Strategy
Building a Generative AI Tech Strategy
LinkedIn Learning · Jun 2024
Software Architecture: Domain-Driven Design (DDD)
LinkedIn Learning · Jun 2024
Architecting on AWS
Trainocate Malaysia · May 2021
DevOps, DevSecOps & Security
DevSecOps: Automated Security Testing
LinkedIn Learning · Jun 2024
DevOps Foundations: DevSecOps
LinkedIn Learning · Jun 2024
CTCSW – CompTIA Cybersecurity Workshop
Trainocate Malaysia · Dec 2023
Cloud Certifications
AWS Certified Cloud Practitioner
Amazon Web Services (AWS) · Nov 2020 · Expired Nov 2023
AWS SSCA – Shift and Shape Your Cloud with AWS
Trainocate Malaysia · Jun 2024
AI & Automation
RASA Developer Certification
Rasa · Nov 2020
ID: GQ5 SA6 ED6
Engineering Leadership
Tech Career Skills: Moving from Developer to Engineering Manager
LinkedIn Learning · Jun 2024
Core Competencies
What I bring to the table
Featured Projects
Case studies in engineering
Selected projects demonstrating architecture decisions, security practices, and delivery across government and enterprise environments.
Air Selangor Mobile App
Feb 2018 – Aug 2025
Backend API and CMS for the official mobile application serving consumers across Selangor, KL, and Putrajaya.
Farmbyte Downstream
Sep 2023 – Oct 2025
Architecture and development of a scalable eCommerce platform connecting consumers with Agrofood products.
LTAT MyWira Application
Oct 2020 – Jan 2026
CMS and API for the Armed Forces Fund Board mobile application, managing pension fund member services.
SAMB Mobile App
Jul 2025 – Present
Complete backend system for Melaka water utility mobile application with cloud-native architecture.
Mobile Jejak Asnaf (MoJA) 2.0
Dec 2025 – Present
Backend CMS and API for a government mobile platform tracking and managing asnaf (zakat recipients) data, featuring SSO integration and cloud-hosted infrastructure.
Customer Experience Dashboard
Oct 2022 – Aug 2025
Internal analytics dashboard aggregating customer experience data across all Air Selangor service channels.
iERP Air Selangor
Jul 2020 – Jun 2025
Emergency response plan system for water disruption scheduling and monitoring across Selangor regions.
Ranhill SAJ E-Submission
Nov 2022 – Jun 2024
Digital transformation of project submission workflow, replacing manual processes with a modern web platform.
Security & DevSecOps
Security embedded, not bolted on
Security is integrated into every stage of the development lifecycle — from requirements through production deployment.
Delivery Pipeline
Secure Coding Standards
Established and enforced secure coding guidelines across development teams. Every line of code follows standards designed to prevent OWASP Top 10 vulnerabilities.
SAST Integration
Self-hosted SonarQube integrated into CI/CD pipelines for static application security testing. Automated scanning catches vulnerabilities before code review.
CI/CD Quality Gates
Mandatory quality gates in deployment pipelines. No code reaches production without passing security scans, code quality checks, and test coverage thresholds.
Dependency Risk Management
Continuous monitoring and assessment of third-party dependencies. Proactive vulnerability tracking and timely patching across all active projects.
Infrastructure & Operations
Cloud platforms in context
Cloud choices driven by project requirements, compliance constraints, and cost-efficiency — not vendor preference.
AWS
SAMB, Farmbyte — CloudFormation, S3, cloud-native deployments
Projects: SAMB Mobile App, Farmbyte Downstream
Alibaba Cloud
Air Selangor — Kubernetes clusters, container orchestration at scale
Projects: Air Selangor Mobile App, Customer Experience Dashboard, iERP
DigitalOcean
Supporting infrastructure for smaller-scale services and staging
Projects: Supporting services
Migration Story — Air Selangor
On-Premise
Ubuntu 16.04 · PHP 7.2 · Nginx
Alibaba Cloud
Kubernetes · CI/CD · Container Orchestration
Technical Leadership
Leading through technical authority
Decision Ownership
Architecture decisions across 20+ projects — from database schema to cloud topology. Every decision documented, every tradeoff evaluated.
Tender & Proposal Architecture
Led technical solution design for 20+ tender proposals, achieving an 80% top-3 shortlisting rate. From requirements analysis to architecture blueprints.
Technical Escalation
Primary technical escalation point across all active projects. First contact for production incidents, architecture debates, and cross-team technical challenges.
Stakeholder Translation
Bridging technical and non-technical stakeholders. Translating complex architecture and security concepts into clear, actionable guidance for project managers, clients, and executives.
Let's discuss your next project.
Whether it's architecture review, technical leadership, or building secure backend systems — I'm open to the conversation.
Support my work