citadel

Senior Web3 Infrastructure Architectโ /Builder

Senior Web3 Infrastructure Architect/Builder & Emergency SRE Fixer/BugFixer

๐Ÿ›‘ Executive Summary & Engagement Philosophy

This profile serves as a direct representation of my current technical focus and preferred trajectory. I am an independent Deep Infrastructure Architect and Senior SRE. My background spans from managing 1,000+ node enterprise ecosystems to engineering ultra-low-latency Web3 infrastructure, but my operational model is strictly focused on surgical, high-impact interventions.

My Rules of Engagement:

  • The BYOC (Bring Your Own Cloud) Model: My primary delivery method. You provide the bare-metal or cloud account credentials (AWS, GCP, Hetzner), and I take full technical ownership. I step in, architect the solution, deploy the crypto infrastructure, configure it to production standards, and hand it back.
  • Zero-Time Bootstrapping: I do not start from scratch unless required. I possess a proprietary arsenal of battle-tested, pre-configured infrastructure bootstraps (e.g., Arbitrum Nitro with RAID0, Full L1 pruned Ethereum + Lighthouse consensus + Reth). For standard Web3 requests, my time-to-delivery equals the node synchronization time. While these templates provide "push-button" deployment speed, every setup is meticulously custom-tuned to your specific hardware and traffic constraints.
  • Universal Emergency Fixes (24/7): While my primary domain and passion is Web3 infrastructure provisioning, I accept emergency technical fixes of ANY nature (Crypto or Classic DevOps) at any time. If your production is failing, I will restore it. Everything else outside this core scope (like custom development) is subject to mutual discussion.
  • Strictly Infrastructure, No dApps: My focus is purely on infrastructure stability and deployment. I do not build consumer dApps or frontend logic. Any programming tasks (Rust, Solidity, Python) are kept "lite", utilized strictly for infra-automation, and are always subject to prior negotiation.
โšก Web3 Core Capabilities & Services

  • Instant Ecosystem Provisioning (The Arsenal): Immediate deployment of high-performance setups utilizing my pre-built configurations. Ready to launch Arbitrum Nitro sequencers, Reth/Geth execution clients, and consensus layers (Lighthouse) flawlessly integrated and tuned for optimal disk I/O and peer discovery.
  • Rapid L1/L2 Custom Deployments: Agnostic, end-to-end deployment of resilient EVM/Non-EVM nodes, private RPCs, and execution clusters (Base, TRON, custom rollups) across hybrid architectures (ARM/x86).
  • Emergency Node Support & Incident Response: Instant mitigation of degraded clusters, peer-to-peer network stalls, memory leaks, and consensus failures under severe blockchain traffic spikes.
  • Kernel-Level Network Tuning (MEV/HFT): Achieving sub-millisecond latencies for MEV pipelines using eBPF, XDP (AF_XDP for zero-copy kernel bypass), and Cilium to accelerate packet routing.
  • Autonomous Web3 Infrastructure: Building self-healing, immutable environments leveraging Talos OS, Crossplane, and strict GitOps (FluxCD) pipelines. Implementing Swarm AI frameworks for "Infrastructure as Intent" configurations.
๐Ÿง  Professional Experience: The Proof of Work

Independent Web3 Infrastructure Architect B2B Contractor / Citadel Core | 2026 โ€“ Present


  • Project Citadel (DeCloud): Architected and deployed a decentralized, self-hosted, immutable hybrid cloud leveraging Talos OS and eBPF for secure, high-performance node hosting.
  • L2 Cluster Deployment: Engineered a proprietary BYOC pipeline that provisions auto-scaling, fault-tolerant Arbitrum Nitro and Reth clusters on AWS within hours, completely codified via Terraform/Crossplane.
  • MEV Infrastructure: Built ultra-low latency bridging infrastructure for MEV searcher bots, utilizing Rust-based engines connecting directly to sequencer endpoints, optimized via kernel network tuning.
Lead Platform Engineer & SRE (High-Load E-Commerce Ecosystem) Confidential Enterprise | 2018 โ€“ 2026 Managed the core infrastructure and resilience for a massive European logistics and e-commerce hub, overseeing 1,000+ computational nodes across complex GKE and AWS clusters.

Advanced Kubernetes & Kernel Engineering:

  • API Control Plane Mitigation: Diagnosed and resolved a critical cascading failure where the Kube API Server terminated 82% of incoming requests. Traced the root cause to a bugged Kyverno ValidatingAdmissionPolicy (VAP) causing extreme Discovery Flakes, and re-engineered the policy to bypass native Kubernetes API Priority and Fairness (APF) mechanisms.
  • Zero-Downtime Hot Migrations: Orchestrated the live migration of stateful consensus systems (Zookeeper) across distinct GCP hardware families (to N4 nodes) while strictly maintaining quorum, resulting in zero application downtime.
High-Load Architecture & Disaster Recovery:

  • Distributed Messaging Resiliency: Following a physical RAID controller degradation that caused catastrophic I/O stalls and split-brain scenarios in RabbitMQ, I architected and executed a global migration from legacy mirrored queues to Quorum Queues (Raft algorithm), effectively immunizing the routing layer against hardware failures.
  • Database Survival: Rapidly mitigated 100% CPU resource starvation on MySQL replicas caused by massive 15M+ row analytical queries through dynamic vertical scaling and query profiling.
  • Multi-Cluster DR: Designed, codified, and routinely executed strict Hot/Warm/Cold Disaster Recovery failover tests across geographically isolated projects using automated health-check cronjobs.
Security, FinOps, and Observability:

  • Zero-Day RCE Patching: Executed rapid-response patching for CVSS 10.0 Remote Code Execution (RCE) vulnerabilities (CVE-2025-68613, CVE-2026-1470) inside internal automation instances (n8n), deploying fixes deterministically via Helm Operator GitOps pipelines.
  • Telemetry Overhaul (OpenTelemetry): Led the PoC and migration from legacy APM tools (NewRelic) to Grafana Cloud. Deployed zero-agent, language-agnostic OpenTelemetry collectors, eliminating host-based vendor lock-in and drastically optimizing unit economics across 1,000+ workloads while preserving deep distributed tracing.
  • Project Defragmentation: Architected the complete network and IAM isolation of Production and Non-Production environments, eliminating "noisy neighbor" risks and drastically reducing the attack surface.
๐Ÿ›  Technical Arsenal

  • Blockchain & Low-Level: Rust, Yul, Solidity, Reth, Arbitrum Nitro, Geth, Lighthouse, eBPF, XDP, MEV architecture.
  • Cloud Native & Orchestration: Kubernetes (GKE, EKS), Talos OS, FluxCD, Crossplane, Terraform, Helm, Cilium.
  • Infrastructure & Hardware: AWS (VPC, ASG, IAM), GCP, Hetzner Bare-Metal, RAID configurations, Hardware flashing, Reverse Engineering.
  • Observability & Data: OpenTelemetry, Grafana Cloud, Prometheus, Victoria Metrics, RabbitMQ, PostgreSQL, ClickHouse, MongoDB.
๐ŸŒ Krailo Labs & The Architectural Vision

Due to the strict NDAs covering my enterprise-grade B2B engagements, I am independently bootstrapping Krailo Labs to openly showcase my architectural vision. Built strictly without VC capital, this is a solo, engineering-first initiative that serves as a gateway to my broader technical ecosystem.

Currently, my public-facing domains are visual roadmaps and early-stage concepts of a much larger, self-funded product suite:

  • citadel-core.dev (The Web3 Spearhead): My flagship vision. While currently serving as the primary gateway for my hands-on BYOC contracting, its ultimate roadmap is to become a fully automated, "one-click" Web3 Infrastructure-as-a-Service (IaaS) UI platform. It is being built incrementally as time and self-funding permit.
  • dev.krailo.sh & The Extended Hub: A foundational portfolio and a gateway to various scattered R&D resources, low-level hardware concepts, and unfinished architectural ideas that will eventually integrate into the complete Citadel ecosystem.
The Bottom Line: While Krailo Labs represents the long-term strategic blueprint of my future product ecosystem, my immediate, daily focus remains 100% hands-on: You provide the requirements, I execute the infrastructure.


(For a complete breakdown of my classic SRE proof of work, enterprise background, and the Krailo Labs architectural vision, please refer to my attached CV which will expand
).


Experience: 8 years

Yearly salary: $130,000

Hourly rate: $75

Nationality: ๐Ÿ‡บ๐Ÿ‡ฆ Ukraine

Residency: ๐Ÿ‡บ๐Ÿ‡ฆ Ukraine


Experience

Devops
Autodoc
2019 - 2026
Managed core infrastructure, resilience, and automated workflows for a massive enterprise ecosystem exceeding 1,000 computational nodes across hybrid GKE/AWS clusters. Implemented advanced zero-agent OpenTelemetry telemetry, removing vendor lock-in and host-based pricing limitations. Successfully resolved complex kernel and control plane anomalies, including native Kubernetes API Priority and Fairness (APF) bottlenecks. Designed robust multi-cluster Disaster Recovery (DR) protocols and engineered high-performance distributed messaging architectures via RabbitMQ Quorum Queues to prevent disk I/O cascading failures. Executed zero-day patch-management for critical CVSS 10.0 Remote Code Execution (RCE) bugs within production automation engines via GitOps (Helm/Flux) environments.

Skills

ansible
architecture
assembly
aws
blockchain
blockchain-engineer
cloud-engineer
crypto
decentralize
depin
devops
docker
elasticsearch
ethereum
evm
firebase
gcp
grafana
infrastructure
kubernetes
linux
math
mev
mongo
network-engineer
nginx
open-stack
polygon
postgres
python
rabbitmq
redis
remix
research
rust
security
smart-contract
solidity
sys-admin
system-engineer
terraform
trader
web3
zk-rollup
english
ukrainian