Co-Founder, Temika Cyber · Jakarta

Hi, I'm Indra. I do security work, these days mostly around AI agents and machine identities.

Before this I spent ten years on cloud, DevOps, and security for media, healthtech, and logistics teams. Now I'm building Temika Cyber, and this site is where I write down what I figure out along the way.

Or say hi: LinkedIn · [email protected]

Portrait of Indra Gusti Prasetya, Co-Founder, Temika Cyber · Cyber Security & Infrastructure
About

The agents in your stack are identities. Treat them like one.

I am Co-Founder of Temika Cyber, a cyber security consultancy, and have spent the last decade building and securing cloud infrastructure for companies in media, healthtech, and nationwide logistics. The job is mostly invisible. That is how it should be.

Lately the hardest problems are not human. AI agents, service accounts, and machine identities now outnumber people in the stack, hold more privilege, and answer to no one. I think we should treat them like the identities they are: scoped, credentialed, and auditable. That conviction is most of what I write about here, and what we work on at Temika Cyber. I would rather ship something a team can actually operate than something clever nobody can touch.

AI Agent Security Non-Human Identity MCP & Tool Security Cloud Infrastructure Kubernetes IT Security
Projects

What I build

A few things I have built, shipped, and learned from.

Agentic AI · Automation

Agentic AI Pipeline

Building autonomous agentic AI systems: AI that plans, uses tools, and carries multi-step work through to a finished result, with a person owning the standards and outcomes.

View project
Cybersecurity · Co-Founder

Temika Cyber

Professional cyber security services for businesses in Indonesia, helping organizations defend against the threats that happen every day.

View project
Software Studio · Next.js

TemiDev

A software studio building custom digital products (from idea to enterprise teams) with a live client portal where every sprint is tracked and every deliverable is signed off.

View project
View all projects →
Writing

Field notes

Honest notes on AI agent security, non-human identity, and the infrastructure underneath.

A2A Agent Card Poisoning: Signed but Lying

A poisoned description field in an A2A agent card can hijack your orchestrator's routing, and the JWS signature you trust does nothing to stop it.

Read more

AI Agent Identity Needs SPIFFE and OAuth, Not One Key

The fix for AI agent identity is two layers: SPIFFE proves what the agent is, OAuth token exchange proves what it may do right now and for whom.

Read more

Non-Human Identity Governance: Field Tips for 2026

How to discover, scope, and govern service accounts, API keys, tokens, and AI agents before machine credentials become your breach path.

Read more
View all writing →
Contact

Comparing notes on agents and identity?

I am always glad to talk through a hard infrastructure or security problem, trade notes, or hear what you are building. Reach me by email or on LinkedIn.