Principal Backend Engineer · Bangalore, India

Faiz Ahmed Farooqui

I design and scale cloud-native, multi-tenant systems across fintech, healthcare, and SaaS — secure payments, real-time platforms, and backend architecture on AWS and OpenStack. I write about the engineering behind it.

About me → GitHub LinkedIn Website Resume

Featured work

GeekyAnts/express-typescript Production-ready Express + TypeScript boilerplate — my most widely adopted open-source project, used across 20+ production apps. ★ 1,261 ⑂ 325 GitHub →

Bolt.SH

An OpenStack-powered IaaS data center I designed and built at GeekyAnts — VM orchestration, virtual networking, and load balancing that let teams self-serve infra.

Watch the walkthrough series →

Latest articles

encryption

Loading Secrets at Runtime Without Leaking Them: config(), the Keystore, and run

Part 3 of 3 on @faizahmed/secret-keystore . Part 1 was the threat model; Part 2 was the CLI. This part is how your app reads secrets at runtime — safely. You've got an encrypted .env . Now your app needs the plaintext, at runtime, without r…

Jun 12, 2026 6 min read

encryption

Encrypt Your .env with One Command: The secret-keystore CLI

Part 2 of 3 on @faizahmed/secret-keystore . Part 1 covered the threat model; this part is pure hands-on. By the end you'll have an…

Jun 12, 2026 5 min read

encryption

Your .env Is a Loaded Gun: A Saner Threat Model for Node.js Secrets

Part 1 of 3 in a deep-dive on @faizahmed/secret-keystore . New here? Start with the Complete Guide. For the original incident writ…

Jun 12, 2026 6 min read

encryption

Encrypted .env for Node.js with AWS KMS: The Complete Guide

A year ago I would have told you a .env file was fine. Then we patched a CVSS 10.0 RCE in Next.js (CVE-2025-66478) and spent the n…

Jun 12, 2026 3 min read

View all 90 posts →