Career Profile
A geek guy with various domain experiences in Backend Development, Mobile Development and Infrastructure Technologies management.
Experiences
Research for MDM solutions to resolving customers’ management and security related issues and also planning for MDM deployment to customers
- Research solutions to assist clients in achieving CIS Benchmarks and ISO compliance requirements
- Lead to suggest customer to integration with MDM and/or Endpoint Security solutions
- Remote management solutions consultant
- Lead and develop Cloud Webhooks to achieve the following goals
- Manage and deploy eSIM Plan (Cellular Network Plans) to endpoint devices
- Issue remote commands to rename computers or devices using templates and any available attribute field data
- Determine whether it is in the allowed list by detecting IP changes, and automatically restrict any managed equipment and devices based on the list
- TBA for addition detail
Manage deployments/releases which related with IXT (OneDegree Insurance Platform) on Azure Cloud and monitoring services
- Research solutions for improvement of CI/CD and infrastructures
- Assistant with QA doing stress test with IXT systems
- Re-Organize existing of container registry (ACR) cleanup script
- Cooperate with Cybersecurity team to diagnosis
log4j
related security issues on products and result found for no impact - CI/CD alignment
- Cooperate with frontend to resolve CSR and SSG related issues
- Making non-root container for customer which uses OpenStack infrastructure
- Migrate Kubernetes into Knative infrastructure and integrate Azure AD authentication with Azure RBAC
MIS Outsourcing undertake, build customer premises network planning and construction, information equipment inventory and asset management
- Lead and implement a product to managed cloud identities solution, and helps to integrated environment with networking authentication together
- Lead and design for structure networking infrastructure constructure
- MDM solutions consultant and management agent service
- TBA for addition detail
Manage private Virtual Machine Farms (VMF), office networking, infrastructures and service reliability. Re-design/Relocate the server room layout to save the energy waste, and manage.
- Use GitLab CI to manage private DNS config and record through config test and deploy stage
- Set up the Polycom (SCCP) and SIP Phones via free version of Elastix PBX
- Improve the network sensitivity by blocking cross VLAN communication capability to specified network
- Monitoring the server and its services status by using Grafana to create a dashboard
- Lead to developing a toolset to push services information and statistics to InfluxDB server and display on Grafana
- Manage networking bandwidth usage through LibreNMS system
- Use BGP (Border Gateway Protocol) to make specified routing rules for route traffic to a dedicated address outbound
- Lead to deploy virtual machine and virtual container into PROXMOX VE Server
- Planning networking for office relocation
- Planning and integrate the Server Room for relocation to IDC
- Lead to migrate Hardword RAID Storage Pools to Ceph Clusters
- Lead and design VLAN policies and IP access list (IP ACL)
- Lead to plan and migrate networking devices to enlarge the scaling from 400 concurrent hosts to 1,500+
- Lead to deploy autonomous system networking with 4 AS numbers by a /23 length final/8 IP address
- Planning to connect with dual or more ISPs to make AS networking more reliability
- Setting route object and domain object to resolve PTR request for mailing services
- Deploy Mail Relay Gateway by using PROXMOX Mail Gateway
- Add DKIM (DomainKeys Identified Mail) and TLS Encryption to prevention internal mail dropped by Google Mail Service
Deploy and manage the REST API Server Perform the load test and volume test on GKE (Google Cloud Kubernetes) and GCP (Google Compute Engine)
- Deploy the REST API Server with the calculated HPA(Horizontal Pod Autoscaler) configuration
- Re-Configure the GCP Firewall settings to preven database being unauthroized accessment
- Perform load and volume test by rebuilding bandbox in whole system
- Make Golang program to have more verbose for debugging (incl. CI/CD environment variables)
- Tune CI/CD flow for GKE project deployment
Consolidate team members’ ideas to have problem solution through system architecture and/or framework. Improve workflow of management issues by using in-house developed software.
- Maintain in-house GitLab server to have git repositories and CI/CD services been available for all designers.
- Improve communication among colleagues and do cost analysis easier by using Redmine.
- Lead a team to design and implement a WebAPI server, in 2014, to have the client library generation feature for JavaScript and Objective-C (iOS) written in C#, which makes the server be stable 3 and half years.
- Promote the server in Python w/ SQL command cache feature to have in-line development, in 2017, which allows to update the command text w/o restart the server
- Make higher maintainability among Windows Applications and Web Applications by integrating common business logics into WebAPI server
- Provide centralized management tool for designers to test and read the self-generated manual on the WebAPI Server
- Implement a codepage converting system on WebAPI server to convert Private Use Area (PUA) characters between BIG5 and UTF-8 by using iconv (UTF-8 and BIG5) codepage and CNS11643 mapping table
- Create Docker image to strip the whole service into microservice architecture
- Combined Python-based WebAPI server into Linux-based image with Nginx web server and uWSGI proxy which communicates between client and the WebAPI server
- Administrate WebAPI server and manage software security and quality by using CI/CD for all projects
- Administrate all merge requests and improve the software quality of projects by doing code review
- Study the frontend and backend technology, then, provide training courses of development experience and suggestion to colleagues
- Highlight low performance SQL commands, then, improve these defect by either rewriting command or modifying schemas on Oracle DB and PostgreSQL
- Validate the services of security and compatibility on servers and then generate the management report of all customer devices by using testssl.sh
- Deploy MDM (Mobile Devices Management) to manage 180+ iOS devices to have in-house enterprise apps been pre-installed
Deploy and administrate Active Directory in laboratory
Use PHP, MySQL and IBM DB2 to design and develop an integrated Healthcare Information System (HIS) for taking care in-patient. (Note: this system was renamed to be i-Mobile Medical Information System formally and won the National Health Science and Technology Quality Bronze Award in 2013)
Configure wireless network to Internet network for conference with 500+ to 1,500+ attendees
- Provide network services for COSCUP, in 2013 at TICC, without being qualified hardwares, by building 36 Virtual Machines (m0n0wall software router) within 15 minutes to serve 1,400+ attendees by 36 different configurations
- Create Open Source Codes for projects, such as handheld radio asset management, in CPRTeam’s repository
Volunteering Experience and Projects
OPass aka. CCIP Pass (Community Check-in with Interactivity Project) app provides a self-checkin application on mobile to save manpower to check the attendee ticket, and let the attendees have more opportunities to interact with other features(e.g. Puzzle Game, Booth Reward Activity)
- Develop iOS version, Pass landing page and administration dashboard page
- Used in COSCUP 2016, 2017, 2018, 2019, 2020, SITCON 2018, 2019, 2020, PyConTW 2018, 2019, 2020, g0v summit 2018 and HITCON CMT 2019 and HITCON 2020
- OPass app (App Store)
Skills
Education
- Study Healthcare and Informatics, Software Engineering
- Study and develop a template system to read HL7 (Health Level 7) CDA® R2 (Clinical Document Architecture Release 2) XML into HTML5 Canvas directly and layout a WYSIWYG (What You See Is What You Get) document by using Web Component technologies
- Study Software Engineering and RFID related software development
- Study HTML5 related software development, and create an interactive website w/o using any Flash technology
Peering
Haraguroicha Internet Service (AS57429) Peering Information
- ASN:
AS57429
(Haraguroicha Internet Service) - Policy: Open
- AS-SET:
AS-HARAGUROICHA
- inet6:
2a06:a005:190::/44
(Sponsor: Route48.org) - inet6:
2a06:a005:1a0::/44
(Sponsor: Route48.org) - inet6:
2a06:a005:1b0::/44
(Sponsor: Route48.org) - inet6:
2a0e:b107:1340::/44
(Sponsor: TunnelBroker.ch (Securebit AG)) - inet6:
2602:fc23:111::/48
(Sponsor: August Internet Limited)
Haraguroicha Internet Service (AS212359) Peering Information
- ASN:
AS212359
(Haraguroicha Internet Service) - Policy: Open
- AS-SET:
AS-HARAGUROICHA
- inet6:
2a06:a005:1c0::/44
(Sponsor: Route48.org) - inet6:
2a06:a005:1d0::/44
(Sponsor: Route48.org) - inet6:
2a0e:8f02:f00e::/48
(Sponsor: FREETRANSIT (OpenFactory)) - inet6:
2a0f:607:1024::/48
(Sponsor: RHE-NET) - inet6:
2602:feda:c10::/44
(Sponsor: Nato Internet Service)
Locations
Origin | Port | Services |
---|---|---|
New Taipei, TW | 100Mbps |
|
Taipei, TW | 100Mbps |
|
Taichung, TW | 100Mbps |
|
Tokyo, JP | 10Gbps |
|
Fremont, US | 1Gbps |
|
IX
IXP | Port | Addresses |
---|---|---|
LL-IX | 1Gbps |
|
Lambda Internet Exchange | 1Gbps |
|