// operator profile

muhammad alfiyan syamsuddin

aka mas ian // friends & coffee runs

vp of technology · infrastructure · security · code · delivery

I build the quiet parts of the internet — the boring, reliable bits under the pretty UIs. Networks that don't fall over. Servers that notice when something's wrong. Code that ships. Projects that land on time. Fueled by coffee://localhost:3000 — always listening, occasionally brewing.

› role: VP, Technology & Infrastructure › uptime: 10+ yrs › mbti: ENTJ › loc: id/utc+7
01 // skills core capabilities ps aux | grep alfiyan
mod_01pid 0x01

Computer Networking

routing · switching · topology
  • Server & network capacity planning
  • LAN/WAN, VLAN, VPN design
  • Packet inspection & troubleshooting
proficiency92%
mod_02pid 0x02

Infrastructure

servers · cloud · ops
  • Bare-metal & virtualized server ops
  • Provisioning, hardening, monitoring
  • High-availability & DR design
proficiency88%
mod_03pid 0x03

Cybersecurity

blue team · SIEM · IR
  • SIEM tuning & detection engineering
  • Incident response & forensics
  • Threat hunting, log correlation
proficiency90%
mod_04pid 0x04

Coding

python · go · php
  • Automation & internal tooling (Python)
  • Services & CLIs (Go)
  • Web apps & integrations (PHP)
proficiency82%
mod_05pid 0x05

Executive Management

strategy · org · delivery
  • Tech strategy, roadmap & board-level reporting
  • Org design, hiring & engineering leadership
  • Asset management, budget, vendor & risk governance
  • Cross-functional delivery (eng · sec · ops)
proficiency90%
02 // net.map live topology & traffic tail -f /var/log/edge
edge.alfiyan.net — 10gbps — healthy
traffic log0 pps
03 // projects selected work github.com/mata-elang-stable →
< mata·elang />

mata elang — featured research project

An open-source, distributed intrusion-detection & threat-intel platform — developed in collaboration with PENS (Politeknik Elektronika Negeri Surabaya). A sensor mesh (Suricata + custom agents) streams events through a Kafka-backed pipeline into a central SIEM for enrichment, correlation, and response. Designed to be deployable for both academic research and real production environments.

ids / nids siem suricata kafka elasticsearch distributed systems threat intel research · pens open-source
[ stable ]

mata-elang-stable

Production-tracked release line — deployment manifests, sensor & collector services, and runbooks. The branch meant to actually run in a rack.

release docker ops
› github.com/mata-elang-stable →
[ pens ]

mata-elang-pens

Research & lab iteration line with PENS — experiments, detection rules, and paper-adjacent tooling. Where new ideas get broken in before they ship.

research detection lab
› github.com/mata-elang-pens →
04 // history experience git log --oneline
2019 — now
VP of Technology, Infrastructure
Trustmedis

Owning the technology & infrastructure function end-to-end — strategy, budget, hiring, and delivery. Leading network, server, cloud and security teams across a healthtech platform; setting architecture standards and risk posture; reporting to exec on uptime, security, and roadmap.

2018 — 2019
Infrastructure Engineering
Trustmedis

Designed and operated the core network and server stack. Provisioning, monitoring, backup & recovery; hardened the baseline and stood up the first observability and IR workflows before stepping into the VP role.

2016 — 2020
CTO
A Company · concurrent

Technology leadership across product, infra and delivery. Owned the architecture, engineering team, and external technical partnerships. Ran in parallel with PENS lab work and early Trustmedis years.

2015 — now
Computer Network Lab Member — PENS
c307.pens.ac.id · Bachelor (grad. 2016) · Master (2025—ongoing)

Long-running research affiliation with PENS Computer Network Lab. Core contributor on Mata Garuda and Mata Elang — open-source IDS / SIEM research platforms. A parallel academic track that feeds directly into the work.

mata garuda mata elang research bachelor + master
05 // stack tools of the trade dpkg -l | head
Networking
MikroTik OPNsense Wireshark OSPF VLAN VXLAN VPN IPsec WireGuard OpenVPN Tailscale
Infrastructure
Linux (Debian/RHEL) Proxmox Apache CloudStack OpenStack Docker Docker Swarm Nginx Ansible Zabbix Grafana Prometheus
Security
Wazuh ELK Suricata Snort Mata Elang Splunk MISP Nmap IR playbooks MITRE ATT&CK
Code
Python Go PHP Bash SQL Git GitLab CI REST APIs Laravel
AI / LLM
OpenAI API Claude API Ollama Llama.cpp RAG pipelines Vector DBs Prompt eng. MCP OpenClaw AI-assisted ops
Automation
n8n Node-RED Ansible Cron Webhooks Zapier Shell scripts
06 // interests areas of interest cat ~/.interests
{ }
technology
builders & systems
music
rhythm as signal
φ
philosophy
first principles
self-development
compound gains
[*]
leadership
people & org
education
teach + learn
automotive
machines & torque
07 // shell interactive — type something /bin/zsh
alfiyansys — zsh — interactive
utf-8
Welcome to alfiyansys shell. Type help to see available commands.
try: help · whoami · skills · projects · contact · uptime · sudo coffee · clear
08 // connect reach out echo "hi" | sendmail

let's build something reliable

collabs, consulting, or just coffee.
linkedin
/in/alfiyansys github
@alfiyansys x / twitter
@alfiyansys instagram
@alfiyansys facebook
fb.me/alfiyansys telegram
@alfiyansys

operating principles

how i actually work
  • thinking abstract of layered problem. adapts to any domain.
  • evidence over opinion — logs, diagrams, packet captures.
  • boring is a feature. chase stability, not novelty.
  • runbooks before outages, not during.
  • › ship small, measurable pieces. rollback paths from day one.
  • › communicate loudly, document quietly.
$ echo "ENTJ. direct. deadline-driven."
© 2026 alfiyansys — crafted in /dev/pts/0 v1.0.0 · 0 open issues · last push just now