Hi! I'm

Federico Calò

Software Developer | Technical Writer

I create modern web applications and custom digital tools to help businesses grow through technological innovation. My passion is combining computer science and economics to generate real value.

Contact Me

About Me

My passion for computer science was born at the Technical Commercial Institute of Maglie, where I discovered the power of programming and the fascination of creating digital solutions. From the start, I understood that computer science was not just code, but an extraordinary tool for turning ideas into reality.

During my studies in Business Information Systems, I began to interweave computer science and economics, understanding how technology can be the engine of growth for any business. This vision accompanied me to the University of Bari, where I obtained my degree in Computer Science, deepening my technical skills and passion for software development.

Today I put this experience at the service of businesses, professionals and startups, creating tailor-made digital solutions that automate processes, optimize resources and open new business opportunities. Because true innovation begins when technology meets the real needs of people.

My Skills

Data Analysis & Predictive Models

I transform data into strategic insights with in-depth analysis and predictive models for informed decisions

Process Automation

I create custom tools that automate repetitive operations and free up time for value-added activities

Custom Systems

I develop tailor-made software systems, from platform integrations to customized dashboards

const federico = {
  nome: "Federico Calò",
  ruolo: "Sviluppatore Software",
  città: "Bari, Italia",
  missione: "Aiutare attraverso l'informatica",
  passioni: [
    "Codice Pulito",
    "Innovazione",
    "Crescita Continua"
  ]
};

La Mia Missione

Credo fermamente che l'informatica sia lo strumento più potente per trasformare le idee in realtà e migliorare la vita delle persone.

Democratizzare la Tecnologia

La mia missione è rendere l'informatica accessibile a tutti: dalle piccole imprese locali alle startup innovative, fino ai professionisti che vogliono digitalizzare la propria attività. Ogni realtà merita di sfruttare le potenzialità del digitale.

Unire Informatica ed Economia

Non è solo questione di scrivere codice: è capire come la tecnologia possa generare valore reale. Intrecciando competenze informatiche e visione economica, aiuto le attività a crescere, ottimizzare processi e raggiungere nuovi traguardi di efficienza e redditività.

Creare Soluzioni su Misura

Ogni attività è unica, e così devono esserlo le soluzioni. Sviluppo strumenti personalizzati che rispondono alle esigenze specifiche di ciascun cliente, automatizzando processi ripetitivi e liberando tempo per ciò che conta davvero: far crescere il business.

Trasforma la Tua Attività con la Tecnologia

Che tu gestisca un negozio, uno studio professionale o un'azienda, posso aiutarti a sfruttare le potenzialità dell'informatica per lavorare meglio, più velocemente e in modo più intelligente.

Parliamone Insieme →

Join the Community

Join the developer community where we discuss software, AI, architecture and DevOps. Share ideas, ask questions and grow with us.

Channel

FC Dev Blog

Get notifications on new articles, complete series, weekly tips and featured tools. Bilingual IT/EN content directly in your Telegram.

New articles as they are published
Weekly tips and code snippets
Polls on future topics

Subscribe to Channel

Group

FC Dev Community

A bilingual IT/EN community for developers. Discussions, Q&A, mutual help and networking with other professionals.

Discussions on articles and technologies
Coding help and code review
Job opportunities and collaboration

Join the Group

Discussion Topics

View

Master SQL

RoadMap.sh

November 2024

View

Oracle Certified Foundations Associate

Oracle

October 2024

View

People Leadership Credential

Connect

September 2024

💻 Languages & Technologies

Java

Python

JavaScript

Angular

React

TypeScript

SQL

PHP

CSS/SCSS

Node.js

Docker

Git

💼

12/2024 - Present

Custom Software Engineering Analyst

Accenture

Bari, Puglia, Italy · Hybrid Analysis and development of computer systems through the use of Java and Quarkus in Health and Public Sector. Continuous training on modern technologies for creating customized and efficient software solutions and on agents.

💼

06/2022 - 12/2024

Software analyst and Back End Developer Associate Consultant

Links Management and Technology SpA

Experience analyzing as-is software systems and ETL flows using PowerCenter. Completed Spring Boot training for developing modern and scalable backend applications. Backend developer specialized in Spring Boot, with experience in database design, analysis, development and testing of assigned tasks.

💼

02/2021 - 10/2021

Software programmer

Adesso.it (prima era WebScience srl)

Experience in AS-IS and TO-BE analysis, SEO evolutions and website evolutions to improve user performance and engagement.

🎓

2018 - 2025

Degree in Computer Science

University of Bari Aldo Moro

Bachelor's degree in Computer Science, focusing on software engineering, algorithms, and modern development practices.

📚

2013 - 2018

Diploma - Corporate Information Systems

Technical Commercial Institute of Maglie

Technical diploma specializing in Business Information Systems, combining IT knowledge with business management.

Contattami

Hai un progetto in mente? Parliamone! Compila il form qui sotto e ti risponderò al più presto.

* Campi obbligatori. I tuoi dati saranno utilizzati solo per rispondere alla tua richiesta.

Multi-Cloud: Strategy and Reality

Multi-cloud is the strategy of using services from two or more cloud providers (AWS, Azure, GCP) to distribute workloads, reduce vendor lock-in risk, and optimize costs. For a platform team, designing a multi-cloud IDP means building abstractions that hide the differences between providers, allowing developers to deploy without worrying about the underlying cloud.

However, multi-cloud is not a silver bullet. It introduces significant complexity in infrastructure management, networking, security, and monitoring. In this article, we will analyze when multi-cloud makes sense, which patterns to adopt, and how to mitigate vendor lock-in without falling into the trap of excessive complexity.

What You'll Learn

Multi-cloud strategies: active-active, active-passive, best-of-breed
Kubernetes as an abstraction layer for portability
Provider-agnostic IaC: patterns and trade-offs
Cross-cloud secrets management with HashiCorp Vault
Multi-cloud cost management and optimization
Service mesh for cross-cloud networking

Multi-Cloud Strategies

There is no single multi-cloud strategy. Organizations adopt different approaches based on their needs:

Active-Active: workloads actively distributed across multiple cloud providers. Maximum resilience but maximum complexity
Active-Passive: one primary cloud provider with failover to a secondary. Good balance between resilience and complexity
Best-of-Breed: using the best service from each provider (e.g., AWS for compute, GCP for ML, Azure for enterprise). Optimizes capabilities but complicates governance
Hybrid: combination of public cloud and on-premise infrastructure. Common in regulated sectors (finance, healthcare)


# Multi-cloud strategy: active-passive with failover
multi-cloud-architecture:
  primary: AWS (eu-west-1)
  secondary: GCP (europe-west1)
  strategy: active-passive

  workload-distribution:
    primary-aws:
      services:
        - all production workloads
        - primary databases (RDS PostgreSQL)
        - primary cache (ElastiCache Redis)
        - primary message queue (MSK Kafka)
      traffic: 100% (normal operations)

    secondary-gcp:
      services:
        - read replicas (Cloud SQL)
        - DR databases (standby)
        - static assets (Cloud CDN)
        - batch processing (BigQuery)
      traffic: 0% (failover only)

  failover:
    trigger: "Primary region unavailable for > 5 minutes"
    rto: "15 minutes"
    rpo: "5 minutes"
    steps:
      1: "DNS failover (Route53 health check)"
      2: "Promote GCP read replicas to primary"
      3: "Scale up GCP compute"
      4: "Verify service health"
      5: "Notify teams"

  data-replication:
    databases: "Async replication, 5-minute lag"
    object-storage: "Cross-cloud sync (rclone)"
    secrets: "Vault replication"

Kubernetes as an Abstraction Layer

Kubernetes is the most effective abstraction layer for multi-cloud portability. A containerized application running on Kubernetes can be deployed on EKS (AWS), GKE (GCP), AKS (Azure), or any Kubernetes cluster with minimal changes.

However, portability is not automatic. Areas where cloud specificity emerges include:

Storage: StorageClass and PersistentVolume differ per provider
Networking: LoadBalancer, Ingress Controller, and DNS have provider-specific implementations
IAM: IRSA (AWS), Workload Identity (GCP), Pod Identity (Azure) for pod authentication
Managed services: managed databases, caches, and message queues are the primary lock-in vector

The Portability Trade-Off

100% portability is an unrealistic and expensive goal. Every abstraction layer added for portability introduces complexity and potential performance loss. The optimal strategy is portability where it matters: abstract compute (Kubernetes), but use native managed services for databases and storage where performance and management benefits outweigh lock-in risk.

Cross-Cloud Secrets Management

Secrets management in a multi-cloud environment is particularly critical. Each cloud provider has its own secret management service (AWS Secrets Manager, GCP Secret Manager, Azure Key Vault), and developers should not have to interact with each one separately.

HashiCorp Vault is the most widely adopted solution for centralizing secrets management in multi-cloud environments:

Centralization: a single management point for all secrets, regardless of cloud
Dynamic secrets: on-demand generation of temporary credentials (database, AWS IAM, certificates)
Auto-rotation: automatic secret rotation without application downtime
Audit: complete log of every secret access for compliance


# Vault: multi-cloud secrets configuration
vault:
  storage:
    type: raft
    ha_enabled: true
    nodes:
      - vault-0.vault.svc (primary)
      - vault-1.vault.svc (follower)
      - vault-2.vault.svc (follower)

  auth-methods:
    # AWS authentication
    aws:
      path: auth/aws
      config:
        access_key: #123;VAULT_AWS_ACCESS_KEY}
        secret_key: #123;VAULT_AWS_SECRET_KEY}
      roles:
        - name: eks-pods
          bound_iam_principal_arn: "arn:aws:iam::*:role/eks-pod-*"
          policies: [app-secrets]

    # GCP authentication
    gcp:
      path: auth/gcp
      config:
        credentials: #123;VAULT_GCP_CREDENTIALS}
      roles:
        - name: gke-pods
          type: iam
          bound_service_accounts: ["*@project.iam.gserviceaccount.com"]
          policies: [app-secrets]

    # Kubernetes authentication (works on any cluster)
    kubernetes:
      path: auth/kubernetes
      roles:
        - name: app-role
          bound_service_account_names: ["app-sa"]
          bound_service_account_namespaces: ["*"]
          policies: [app-secrets]
          ttl: 1h

  secret-engines:
    - path: secret/data/apps
      type: kv-v2
      description: "Application secrets"

    - path: database/
      type: database
      description: "Dynamic database credentials"
      config:
        - name: checkout-db
          plugin: postgresql-database-plugin
          connection_url: "postgresql://{{username}}:{{password}}@checkout-db:5432/checkout"

Multi-Cloud Cost Optimization

One of the stated advantages of multi-cloud is cost optimization by choosing the most economical provider for each workload. In practice, this requires sophisticated cost management tools:

Cost visibility: unified dashboard showing costs per team, service, and cloud provider
Rightsizing: identifying over-provisioned resources and recommending right-sizing
Reserved capacity: managing reserved instances, savings plans, and committed use discounts
Spot/Preemptible: using spot instances for interruption-tolerant workloads
Tagging policy: mandatory tags for allocating costs to responsible teams

Service Mesh for Cross-Cloud Networking

A service mesh is essential for networking in multi-cloud environments. Istio, in particular, supports multi-cluster configurations that allow services to communicate transparently across different cloud providers:

Multi-cluster mesh: a single mesh spanning clusters on AWS, GCP, and Azure
Traffic routing: intelligent routing based on latency, locality, and health status
Automatic failover: if a service on one cloud is degraded, traffic is redirected
Cross-cloud mTLS: end-to-end encryption even for communications between different clouds


# Istio: multi-cluster service mesh configuration
apiVersion: networking.istio.io/v1beta1
kind: DestinationRule
metadata:
  name: checkout-service-dr
spec:
  host: checkout-service.checkout.svc.cluster.local
  trafficPolicy:
    connectionPool:
      tcp:
        maxConnections: 100
      http:
        h2UpgradePolicy: DEFAULT
        maxRequestsPerConnection: 10
    outlierDetection:
      consecutive5xxErrors: 5
      interval: 30s
      baseEjectionTime: 30s
      maxEjectionPercent: 50
    loadBalancer:
      localityLbSetting:
        enabled: true
        failover:
          - from: eu-west-1    # AWS primary
            to: europe-west1   # GCP failover
        distribute:
          - from: eu-west-1/*
            to:
              "eu-west-1/*": 90
              "europe-west1/*": 10

Practical Multi-Cloud Advice

Do not adopt multi-cloud on principle. Adopt it when you have a concrete business case: compliance requirements mandating geo-distribution, need for provider-specific services, or real risk of dependence on a single vendor. For most organizations, a single cloud provider with good IaC practices and DR is sufficient.