Selected Work

Projects.

A walk-through of the systems I've designed, built, and shipped — from integration middleware and embedded-signing services to push platforms running on 150M+ devices.

← Back to Resume Get in touch

2025 – Present

AstraTech

Atlas Middleware Component

Heimdall — Document Analysis & Signing Middleware

November 2025 – Present

Rust-based gRPC service inside Atlas, AstraTech's middleware platform. Exposes a unified API for downstream consumer apps to perform OCR, document extraction (UAE trade-license, Tawteeh / Ejari tenancy contracts, ID intelligence), bank-statement analysis, and DocuSign embedded signing — abstracting away multiple third-party providers. Owned end-to-end: proto / API design, hexagonal Rust architecture, third-party adapters, PostgreSQL persistence, Envoy gRPC-JSON transcoding, OpenTelemetry instrumentation, and CI/CD on AKS behind Istio.

Rust gRPC Protobuf PostgreSQL Redis Envoy Istio AKS Azure Key Vault OpenTelemetry

Frontend Companion

Heimdall Signing Portal (React + TypeScript)

April 2026 – May 2026

A frontend companion to Heimdall used by QA and consumer-team partners to exercise the document-signing flow end-to-end. Built in React + Vite + TypeScript with a runtime-config dropdown (local / sim / prod) and an API-key form. Embeds the DocuSign signing iframe and uses postMessage to detect signing completion. Deployed to GitHub Pages under /signing-portal/ via the existing publish-docs workflow.

React Vite TypeScript DocuSign Embedded Signing GitHub Actions GitHub Pages

Consumer-Scale Messaging

Botim Messenger 4.0 — Backend Rewrite

March 2025 – August 2025

Greenfield rewrite of Botim's messaging backend in Rust, replacing the legacy Java implementation. Contributed to the at-ms-receiver / at-ms-handler / at-ms-dispatcher services that form the message-delivery pipeline. Authored the Messenger 4.0 Architecture Document and message-entity + database design. Implemented core delivery primitives (P2P / S2C handlers, offline-message delivery, DeleteAck mechanism), the full search subsystem (chat / contact / group / session / group-member lists, native calls, miniprogram integration), and dependency integrations across user-friendship, push-notification, anti-spam / anti-abuse / anti-porn filters, XDC, Bridge, Migration, UserProfile, and RiskControl services.

Rust Tokio gRPC MySQL Redis Kubernetes SonarQube GitLab CI/CD

Identity & Migration

Botim Core — Identity Services Migration

October 2025 – January 2026

Migration and feature work on Botim's user-identity stack (im-signup, imuser, imallot). Implemented user-registration and change-phone-number flows end-to-end (OTP delivery, phone-number cycling prevention, data-center redirection flag in the QAuth → TCP Access → Imuser login path), designed and shipped the soft DNS refresh strategy server-side, integrated the AUID system call into im-signup, added OS-switch signal handling, and migrated the unregister-user and upload-contact flows. Contributed imuser OpenSpec documentation to the company Knowledge Base.

Go Rust gRPC MySQL Redis OpenSpec

Cross-Team Initiative

AI-Driven Development Initiative

November 2025 – January 2026

Cross-team initiative to evaluate, pilot, and scale AI-assisted development workflows at AstraTech. Evaluated two competing approaches for AI-driven development and ran a joint demo covering both code generation and code review on real production codebases. Drove the Knowledge Base establishment workstream — consolidating API docs, BEPs, and service specifications into OpenSpec format — to provide AI tooling with a canonical, machine-readable source of truth. Coordinated with the AI and COE teams on tooling exploration, and represented the backend team in cross-team AI-adoption strategy discussions.

AI-Assisted Development OpenSpec Knowledge Base Technical Leadership

2018 – 2023

KaiOS Technologies / Alcatel Mobile

150M+ Device Platform

KaiPush — Push-Notification Platform for KaiOS

2018 – 2023

Custom push-notification service running on 150M+ KaiOS devices worldwide. Led the design and performance optimisation of the platform, including replacing legacy Python components with Go and Rust — improving system throughput by up to 20× and reducing latency. Strong emphasis on encryption, anti-replay protection, scalability, and operational reliability.

Go Rust Python Cassandra Redis AWS EC2 NATS HAProxy Docker

Security & Device Control

Device Financing Program & Anti-Theft Messaging Server

2018 – 2022

Designed and shipped secure microservices for two flagship KaiOS programmes: DFP, which enabled remote device control based on user payment status, and AMS, which allowed users to remotely lock or wipe devices. Both services integrated seamlessly with KaiPush. Built a DFP Tester simulation harness to validate behaviour end-to-end without physical hardware.

Go Rust Cassandra Redis AWS EC2 NATS Docker

Cloud Platform APIs

KaiCloud — Cloud Web Application APIs

2016 – 2018

Developed GraphQL and RESTful APIs for KaiCloud web-application microservices using Go, Java, and Python. Contributed to the design and development of new cloud software systems and components. Conducted code peer reviews, debugged production issues across KaiCloud, Push, KaiStore, and Anti-Theft systems.

Go Java Python REST GraphQL AWS EC2

2023 – 2024

Exiger Inc.

Supply-Chain Risk

SBOM & Risk Tag APIs

November 2023 – August 2024

Built Software Bill of Materials (SBOM) and Risk Tag systems in Go: REST + GraphQL APIs for creating and managing SBOMs, expanding / de-flattening components, and evaluating risk against user-defined rules and component metrics. Contributed to database and backend design in live work sessions. Owned AWS infrastructure (EC2, RDS, ECS) and CI/CD pipelines on Bitbucket.

Go REST GraphQL PostgreSQL AWS (EC2, RDS, ECS) Bitbucket Pipelines