I build the boring infrastructure decentralized storage networks need to survive. I find the bugs everything else trips over. Protocol engineer and security researcher, founder of two products, designer and marketer by training. Eight years inside Filecoin, 200+ vulnerabilities disclosed last year, 5 PiB of storage in production today.
Every decentralized storage network dies the same way: someone has to own the unglamorous middle. The sealing pipeline at 3 AM. The faucet nobody funds. The migration when the protocol changes under your feet. The stability work that's only visible when it breaks. I own the unglamorous middle. The flashy parts ship themselves.
A design degree, a marketing master's, an early Ethereum bag, a sunglasses brand, and somewhere along the way a deep specialty in Filecoin protocol work.
Filecoin protocol depth. Lotus, Boost, Curio internals. SNARK / PoRep math. Sealing pipeline, GPU proving (CUDA), FEVM, calibration network operations, IPLD / CBOR / FRC encodings, libp2p, on-chain state.
Engineering. Go and Rust at protocol level. TypeScript and Node for product. Solidity and viem on the EVM side. Python for ops glue. Distributed systems, control-plane design, multi-machine cluster architecture.
Infrastructure. Linux, systemd, nginx, Caddy, SSH tunneling, Cloudflare (Pages, Workers, Turnstile, DNS), Hetzner, datacenter hardware. Hardened deploys, observability, on-call ops.
Security research. Web, API, mobile, and crypto-stack auditing. RNG / provably-fair, ATO chains, IDOR and auth-flow analysis, wire-protocol reversing, responsible disclosure. Comfortable with both attacker and defender posture.
Design and brand. Graphic design (NKF) plus marketing master's (BI). Brand systems, landing pages, dashboards, technical writing. Things that ship look like things that ship.
AI fluency. Working expert across Claude, GPT, Gemini, Llama, Mistral, DeepSeek. Agent orchestration as a real discipline, not a demo. AI woven into research, code, security tooling, and operational decision-making.
Founded CC Security to do the iGaming and crypto-stack security research the existing audit shops weren't doing well. Started Nøytral and Swopa on the side because Norway needs better civic-tech and better local-community infrastructure than the marketplace template every other Nordic startup ships.
Bridges deep technical knowledge with real-world deployment experience to shape Curio's direction from both sides of the protocol. Leads the Calibration Stability initiative and operates 10+ dedicated test environments so the calibration network stays robust and testing-ready.
Technical Support Engineer for Lotus and Boost. Worked across the SP community with the people running the network at production scale. The rare seat where you see every failure mode the protocol can produce.
Pandemic gave me the time. Always had the interest in compute, finally had the runway to learn the engineering side properly. From hobbyist scripts to protocol-level contributions in roughly four years.
Active since the network's earliest days. Contributed across MinerX, SPX, and continuous testing efforts on Lotus and Boost. The hands-on operator experience is the foundation everything since has been built on top of.
Started paying attention to crypto early. Got the entrepreneurial side and the protocol side at the same time, which is part of why I work where I work now.
Solo e-commerce brand selling sunglasses. Sold over 30,000 pairs before closing it down. Lessons in sourcing, brand voice, paid social before paid social was easy. @shadyfruits
Norges Kreative Fagskole for the design fundamentals, BI Norwegian Business School for the master's. Two languages of the same problem: how to make people care about something on purpose.
One flagship inside the Filecoin protocol, one independent security firm, two products of my own. Each one is here because I'd rather build it than wait for someone else to.
The next-generation storage stack for Filecoin storage providers. A complete rewrite of the legacy Lotus and Boost pipeline as a multi-machine cluster architecture. I work on protocol internals, sealing pipeline performance, GPU-accelerated PoRep, and the operational tooling that keeps multi-PiB storage providers running in production.
Independent security research firm. Web, API, mobile, and crypto-stack auditing. Paid retainers, scoped engagements, and responsible disclosure.
Norwegian news intelligence platform. Multi-source clustering, framing analysis across the 8-party political spectrum, blindspot detection, transparent methodology.
nøytral.no
Norwegian neighborhood-help platform (Nabohjelp). Built for real local-community use cases, not the marketplace template every other Nordic startup ships.
swopa.noA handful of pieces from 2026 that I can show without breaking an NDA.
Real-time stability console for the Filecoin calibration network. Tracks tipset cadence and chain health, surfaces upgrade-readiness state with manifest and migration audits, monitors top miners and rich-list movement, and publishes the result publicly so SPs can self-diagnose without DMing me on Slack. Built and shipped during the nv28 Fire Horse upgrade. Live at calix.reiers.io.
Operator-level census of the entire Filecoin storage network. The 728 reported "SPs" deduplicate to 73 unique operators after analyzing shared control, worker, and beneficiary addresses. 37 entities run 90% of physical storage. Includes IP geolocation showing China and Hong Kong account for ~60% of resolved infrastructure. Methodology and raw data delivered for governance review. Live public version at filcensus.reiers.io with continuously refreshed snapshots.
Lead the Calibration Stability initiative for Filecoin. Operate faucet.reiers.io (public tFIL + USDFC faucet), maintain 10+ dedicated test environments, and build the broader stability tooling the Calibration network needs. Public-good infrastructure that's invisible until it breaks.
23 findings across 10 audit phases on a pre-launch product. Headline finding was a multi-step attack chain combining authentication weaknesses, account-recovery gaps, and fulfillment-side IDOR that would have allowed attacker-controlled rerouting of $5K to $125K shipments per incident at launch. Customer report delivered with prioritized remediation; client patched before going live.
Found hardcoded SDK credentials in a major operator's production Android app. Confirmed cross-brand impact across 14 production tenants, 4 brands, and 7 jurisdictions. CVSS 7.3. Reported through public bug bounty.
Co-author on a comprehensive economic-rebalancing proposal for Filecoin. Modeling and policy-design work on pledge dynamics, supply emission, and verified-deal incentives. github.com/Reiers/fip-daybreak
Three years inside Protocol Labs as the engineer SPs called when production broke. Triaged failure modes across the Lotus consensus and storage pipeline, the Boost deal stack, and the Saturn CDN. Tested bleeding-edge releases in production environments before they shipped to the network. Every weird sealing failure, every chain-sync edge case, every libp2p quirk eventually came through this seat. The kind of role where you see every failure mode the protocol can produce, which is why I keep finding bugs nobody else does.
Selected from github.com/Reiers. 24 public repos, mostly Filecoin storage tooling.
If you're shipping decentralized storage, auditing a launch-critical product, or just want to talk about why most public-good infrastructure dies of neglect: write.