diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
deleted file mode 100644
index be5e7cf..0000000
--- a/.gitlab-ci.yml
+++ /dev/null
@@ -1,102 +0,0 @@
-stages:
-  - build
-  - push
-  - deploy
-
-variables:
-  DOCKER_DRIVER: overlay2
-  IMAGE_BACKEND: $CI_REGISTRY/$CI_PROJECT_PATH/backend
-  IMAGE_FRONTEND: $CI_REGISTRY/$CI_PROJECT_PATH/frontend
-
-before_script:
-  - echo "Logging in to GitLab Container Registry..."
-  - echo $CI_REGISTRY_PASSWORD | docker login -u $CI_REGISTRY_USER $CI_REGISTRY --password-stdin
-
-# BUILD BACKEND
-build-backend:
-  stage: build
-  script:
-    - |
-      if [[ "$CI_COMMIT_BRANCH" == "main" ]]; then
-        TAG="prod-latest"
-        ENVIRONMENT="prod"
-      elif [[ "$CI_COMMIT_BRANCH" == "staging" ]]; then
-        TAG="staging-latest"
-        ENVIRONMENT="stag"
-      else
-        TAG="dev-latest"
-        ENVIRONMENT="dev"
-      fi
-    - echo "Building backend image for $ENVIRONMENT"
-    - docker build -t $IMAGE_BACKEND:$TAG employee-be
-  only:
-    - main
-    - staging
-    - dev
-
-# BUILD FRONTEND
-build-frontend:
-  stage: build
-  script:
-    - |
-      if [[ "$CI_COMMIT_BRANCH" == "main" ]]; then
-        TAG="prod-latest"
-        ENVIRONMENT="prod"
-      elif [[ "$CI_COMMIT_BRANCH" == "staging" ]]; then
-        TAG="staging-latest"
-        ENVIRONMENT="stag"
-      else
-        TAG="dev-latest"
-        ENVIRONMENT="dev"
-      fi
-    - echo "Building frontend image for $ENVIRONMENT"
-    - docker build -t $IMAGE_FRONTEND:$TAG employee-fe
-  only:
-    - main
-    - staging
-    - dev
-
-# PUSH IMAGES TO REGISTRY
-push-images:
-  stage: push
-  script:
-    - |
-      if [[ "$CI_COMMIT_BRANCH" == "main" ]]; then
-        TAG="prod-latest"
-      elif [[ "$CI_COMMIT_BRANCH" == "staging" ]]; then
-        TAG="staging-latest"
-      else
-        TAG="dev-latest"
-      fi
-    - echo "Pushing images with tag $TAG..."
-    - docker push $IMAGE_BACKEND:$TAG
-    - docker push $IMAGE_FRONTEND:$TAG
-  only:
-    - main
-    - staging
-    - dev
-
-# DEPLOY USING KUSTOMIZE
-
-deploy:
-  stage: deploy
-  image:
-    name: bitnami/kubectl:latest
-    entrypoint: [""]
-  script:
-    - echo "$KUBECONFIG_DATA" | base64 -d > kubeconfig.yaml
-    - export KUBECONFIG=$(pwd)/kubeconfig.yaml
-    - |
-      if [[ "$CI_COMMIT_BRANCH" == "main" ]]; then
-        ENVIRONMENT="prod"
-      elif [[ "$CI_COMMIT_BRANCH" == "staging" ]]; then
-        ENVIRONMENT="stag"
-      else
-        ENVIRONMENT="dev"
-      fi
-    - echo "Deploying to $ENVIRONMENT environment..."
-    - kubectl apply -k employee-manifest/overlays/$ENVIRONMENT
-  only:
-    - main
-    - staging
-    - dev
diff --git a/Dockerfile.jenkins b/Dockerfile.jenkins
new file mode 100644
index 0000000..520da4f
--- /dev/null
+++ b/Dockerfile.jenkins
@@ -0,0 +1,14 @@
+FROM jenkins/jenkins:2.516.2-jdk21
+
+USER root
+
+RUN apt-get update && apt-get install -y lsb-release
+RUN curl -fsSLo /usr/share/keyrings/docker-archive-keyring.asc \
+  https://download.docker.com/linux/debian/gpg
+RUN echo "deb [arch=$(dpkg --print-architecture) \
+  signed-by=/usr/share/keyrings/docker-archive-keyring.asc] \
+  https://download.docker.com/linux/debian \
+  $(lsb_release -cs) stable" > /etc/apt/sources.list.d/docker.list
+RUN apt-get update && apt-get install -y docker-ce-cli
+
+RUN jenkins-plugin-cli --plugins "blueocean docker-workflow json-path-api"
\ No newline at end of file
diff --git a/Jenkinsfile b/Jenkinsfile
new file mode 100644
index 0000000..4389936
--- /dev/null
+++ b/Jenkinsfile
@@ -0,0 +1,127 @@
+pipeline {
+  agent any
+
+  environment {
+    // --- Konfigurasi umum ---
+    REGISTRY          = "docker.io/adelyao"
+    APP_NAME          = "employee" 
+    MANIFEST_REPO     = "https://git.winteraccess.id/adel/employee-manifest.git"
+    APP_REPO          = "https://git.winteraccess.id/adel/employee-app.git"
+    MANIFEST_CRED_ID  = "GIT_CRED_ID"
+    DOCKER_CRED_ID    = "DOCKER_CRED_ID"
+    BRANCH            = "main"
+  }
+
+  parameters {
+    string(name: 'IMAGE_TAG', defaultValue: '', description: 'Image tag (e.g., commit SHA or build number)')
+  }
+
+  stages {
+
+    stage('Clean Workspace') {
+      steps {
+        cleanWs()
+      }
+    }
+
+    stage('Install yq') {
+      steps {
+        sh '''
+          if ! command -v yq &> /dev/null; then
+            echo "Installing yq..."
+            wget https://github.com/mikefarah/yq/releases/latest/download/yq_linux_amd64 -O /usr/local/bin/yq
+            chmod +x /usr/local/bin/yq
+          else
+            echo "yq already installed"
+          fi
+          yq --version
+        '''
+      }
+    }
+
+    stage('Checkout Application Repo') {
+      steps {
+        script {
+          git branch: 'main', url: env.APP_REPO
+        }
+      }
+    }
+
+    stage('Build and Push Docker Image') {
+      steps {
+        script {
+          def tag = params.IMAGE_TAG ?: "build-${env.BUILD_NUMBER}"
+          echo "Building and pushing image with tag: ${tag}"
+
+          withCredentials([usernamePassword(credentialsId: env.DOCKER_CRED_ID, usernameVariable: 'DOCKER_USER', passwordVariable: 'DOCKER_PASS')]) {
+            sh """
+              echo "$DOCKER_PASS" | docker login -u "$DOCKER_USER" --password-stdin
+              docker build -t ${REGISTRY}/${APP_NAME}-be:${tag} ./backend
+              docker build -t ${REGISTRY}/${APP_NAME}-fe:${tag} ./frontend
+              docker push ${REGISTRY}/${APP_NAME}-be:${tag}
+              docker push ${REGISTRY}/${APP_NAME}-fe:${tag}
+              docker logout
+            """
+          }
+
+          env.IMAGE_TAG_FINAL = tag
+        }
+      }
+    }
+
+    stage('Checkout Manifest Repo') {
+      steps {
+        script {
+          checkout([$class: 'GitSCM',
+            branches: [[name: env.BRANCH]],
+            userRemoteConfigs: [[url: env.MANIFEST_REPO, credentialsId: env.MANIFEST_CRED_ID]]
+          ])
+        }
+      }
+    }
+
+    stage('Update Image Tags in Manifests') {
+      steps {
+        script {
+          echo "Updating manifests to tag: ${env.IMAGE_TAG_FINAL}"
+
+          sh """
+            yq e -i '.images[] |= (.newTag = "${env.IMAGE_TAG_FINAL}")' base/kustomization.yaml || true
+
+            yq e -i '.spec.template.spec.containers[0].image = "${REGISTRY}/${APP_NAME}-be:${env.IMAGE_TAG_FINAL}"' base/backend-deployment.yaml
+            yq e -i '.spec.template.spec.containers[0].image = "${REGISTRY}/${APP_NAME}-fe:${env.IMAGE_TAG_FINAL}"' base/frontend-deployment.yaml
+          """
+        }
+      }
+    }
+
+    stage('Commit & Push Manifest Updates') {
+      steps {
+        withCredentials([usernamePassword(credentialsId: env.MANIFEST_CRED_ID, usernameVariable: 'GIT_USER', passwordVariable: 'GIT_PASS')]) {
+          sh """
+            git config user.email "jenkins@local"
+            git config user.name "jenkins"
+            git add -A
+            git diff --staged --quiet || (git commit -m "chore: update image to ${env.IMAGE_TAG_FINAL}" && git push https://${GIT_USER}:${GIT_PASS}@${env.MANIFEST_REPO#https://} ${env.BRANCH})
+          """
+          echo "Manifest repo updated successfully"
+        }
+      }
+    }
+
+    stage('ArgoCD Sync (optional)') {
+      steps {
+        echo "If ArgoCD auto-sync is enabled, deployment will update automatically."
+      }
+    }
+  }
+
+  post {
+    success {
+      echo "GitOps pipeline completed successfully!"
+    }
+    failure {
+      echo "Pipeline failed."
+    }
+  }
+}