Five years writing React and Next.js on AWS, increasingly on the security side. GIAC certified (GFACT + GSEC). Currently working with clients in the US and Spain.
GIAC GFACT + GSEC Certified · Pursuing GCIH · US Work Authorized
Six years in construction. Now writing code and breaking it.
I'm from Spain. I studied architectural engineering at IE University and spent almost 6 years in commercial construction (structural detailing, CAD, project management) before switching to software.
Now I work on the security side of web and cloud. I went through the SANS Cyber Academy scholarship and came out with the GIAC GFACT and GSEC certifications.
Most of my recent work mixes web development with LLM features. I'm currently running a prompt-injection lab against a chatbot I built, testing how well the usual defenses hold up in practice.
Day job is at GDNA, building cloud-native apps on AWS. Next cert on my list is GIAC GCIH.
Technologies I reach for every day, and the broader toolkit I bring to projects.
5+ years across startups, agencies, and independent consulting
Started translating Figma designs into React/Next.js code. Evolved into owning full application architecture, API design, and database design on AWS.
Built a client project using Svelte and maintained Querri's HubSpot website with custom code modifications throughout the contract.
Short-term contract to rebuild the company's Shopify storefront. The engagement ended before completion.
First engineering role after JRS Coding School bootcamp. Promoted from Software Engineer I to II. Full-stack development on Angular/NestJs stack with Azure cloud services.
Selected hands-on labs with real packet captures, full analysis, and detailed writeups. Evidence of skill beyond certifications.
Analyzed 173K VPC flow records across 579 log files: isolated 33,232 attacker flows from 20.106.124.93, determined a 6.5-hour attack window, quantified 265MB exfiltrated on port 8889 and 190MB on port 80, and confirmed the full attack surface (HTTP, SSH, 8889) using PCAP-to-NetFlow conversion with nfpcapd/nfdump.
Investigated a 628K-packet PCAP in Wireshark: used protocol hierarchy and conversation statistics to surface a port-80 scanning pattern from 3.142.238.241, followed an HTTP stream revealing a successful WordPress brute-force login (Hydra, admin/#AlphaInc!), and completed a live-capture exercise extracting an HTTP object from loopback traffic.
Discovered a SQL injection in Catalog.php's search parameter (LIKE '%<input>%'), dumped all products, enumerated databases and tables via stacked queries, then deployed the lab WAF and confirmed identical payloads were blocked with HTTP 418.
Analyzed PCAP traffic with tcpdump: identified /.env probing, WordPress brute-force with Hydra, and cleartext login parameters visible in the HTTP payload.
Cracked passwords across 4 hash types using John the Ripper and Hashcat: extracted and cracked an Office 2013 encrypted Excel file, an NTLM hash, and Linux crypt hashes using a CeWL wordlist. Demonstrated brute-force infeasibility against SHA-512 with Hashcat, then used John's word-mangling rules to expand 1,552 base words into 4M+ candidates to crack passwords the original wordlist missed.
Validated Snort 3.1.73 config, tightened HOME_NET to 10.130.0.0/16, ran the community ruleset against investigate.pcap, and surfaced an SSH CRC32 overflow shellcode pattern (294 alerts from 20.106.124.93 → 10.130.8.94:22). Re-ran Snort with a BPF filter pinned to the attacker IP, then processed the same PCAP with Zeek's extract-all-files policy and confirmed log output.
Labs are from SANS Cyber Academy.
Industry certifications and academic foundation
Cybersecurity and system administration program covering security fundamentals, network protection, and infrastructure management.
Intensive full-stack development program. Career pivot from construction to software engineering. Landed first engineering role at Interloop within months of completion.
Technical architecture degree covering structural engineering, construction management, and building design. Final thesis: design and construction technical drawings for a hospital. Foundation for project management and analytical thinking that carried into software engineering.
Selected client and independent work with measurable outcomes
Delivered via GDNA, Querri, and direct engagements
Mentorship platform needed secure, scalable onboarding for ~1,200 users.
React UI components and a managed authentication flow. Session handling and input validation at the auth layer; infrastructure provisioned with least-privilege access controls.
60% improvement in onboarding efficiency. Secure registration and sign-in live in production.
Side projects and open-source work with live demos and source code
Role: Technical co-founder alongside a business development partner. I lead product design, technical architecture, and full-stack development.
Subscription platform that lets financial advisors initiate strategic exit planning conversations with business owner clients earlier in the relationship. $99/mo, no contracts, cancel anytime.
Role: Solo build: concept, design, full-stack development, deployment
Bilingual online gallery for two Spanish watercolorists, bringing their work to US buyers. Custom i18n routing, locale-aware unit display (in/cm), and an inquiry pipeline through Gmail SMTP.
Role: Solo builder: design, full-stack development, AI integration, payments, deployment
Paste any job description and get an honest 0-100 fit score with strengths, gaps, and interview prep. Includes ghost job detection and a job board with AI scores.
Role: Solo build: design, full-stack development, deployment (Vercel)
A thousand options on Amazon, one honest pick per category. Hand-tested gear across coffee, home, tech, and pets. No AI slop, no drop-ship clones, no fake stars.
Role: Solo consultancy: design, full-stack development, client relationships, deployment
Solo consultancy out of Charleston, SC. Websites, online stores, and the occasional piece of software nobody else will sell off the shelf. Built in English and Spanish. Recent clients: NEVA Estudio, Tinta Gallery, Coastal Millwork.
Role: Full-stack development, database design, deployment
Community-driven platform for sharing and discovering AI behavior rules for Cursor Editor. Rule browsing, creation tools, and file-pattern matching.
Role: Backend, AI integration, scripting/automation
AI-assisted automation for YouTube content workflows using Python and LangChain, reducing manual steps in scripting and planning.
Role: Solo build: concept, design, full-stack development
Unsolicited concept redesign for a bilingual (ES/EN) architecture studio. Image-led project gallery, service detail modals, contact form, and Framer Motion interactions. Not affiliated with or endorsed by NEVA Estudio.
Role: Solo build: concept, design, full-stack development
Unsolicited concept redesign for a commercial interiors contractor. Project gallery, service detail pages, and local SEO patterns. Built with Next.js 16 and Tailwind CSS. Not affiliated with or endorsed by Coastal Millwork & Supply.
Fit Check
Paste a job description and get an honest AI assessment of how Luis's experience maps to the role.
Let's discuss your next project. Reach out via the form below or connect on LinkedIn