5+ years building production web apps with React, Next.js, and AWS. GIAC GFACT certified. Currently delivering cloud-native solutions and AI integrations for clients across the US and Spain.
Where software engineering meets security
I'm a software engineer with a strong focus on frontend development, cloud technologies, and cybersecurity. I recently earned the GIAC Foundational Cybersecurity Technologies (GFACT) certification through the SANS Institute, validating my knowledge across networking, operating systems, cloud platforms, web technologies, and core security principles.
I bring together real-world software engineering experience and formal security training to design and build applications that are secure by design, scalable, and production-ready.
In addition to traditional web development, I work with AI-enabled features, including LLM integrations and automation workflows, always with a security-aware mindset around data handling, access control, and responsible AI usage.
Currently building full-stack applications and architecting serverless AWS solutions at GDNA. Always open to interesting conversations.
Main tools and technologies by category.
5+ years across startups, agencies, and independent consulting
Started translating Figma designs into React/Next.js code. Evolved into owning full application architecture, API design, and database design on AWS.
Independent projects and web development under a personal brand. Built and shipped production sites to explore AI integration, bilingual platforms, and e-commerce.
Built a client project using Svelte and maintained Querri's HubSpot website with custom code modifications throughout the contract.
Short-term contract to rebuild the company's Shopify storefront. The engagement ended before completion.
First engineering role after JRS Coding School bootcamp. Promoted from Software Engineer I to II. Full-stack development on Angular/NestJs stack with Azure cloud services.
Honest Assessment
Not a wall of logos. Three columns: what I'm strong at, what I can ramp on, and what I'm still learning.
Daily use, production experience, can mentor others
TypeScript / JavaScript
Primary language for 4+ years
React & Next.js
App Router, SSR, streaming, server actions
Tailwind CSS
Design systems, responsive, dark mode, animations
Node.js & Express
REST APIs, middleware, auth flows
AWS
API Gateway, Lambda, S3, RDS, Cognito, IAM, Secrets Manager, Amplify, CDK. Daily at GDNA
Git & GitHub
Branching, PRs, CI/CD, code review
Linux CLI
Daily driver, scripting, server admin
Security Fundamentals
OWASP top 10, secure coding, security audits
Project experience, can deliver with some ramp-up
Python
Scripting, automation, security tools
Angular
2 years production at Interloop
Svelte
Built production features at Querri
Docker
Containerization, compose, not orchestration
MongoDB / Cosmos DB
Used daily at Interloop for 2 years
Supabase
Auth, database, used at GDNA and TalentAgent
Figma
Translating designs to code at GDNA
OpenAI / LangChain
AI integrations, TalentAgent, portfolio chat
Claude
Daily development accelerator at GDNA
Stripe
Payments integration in TalentAgent
Penetration Testing
Labs, write-ups, tools (Burp, Nmap, Wireshark)
Honest about what I'm still learning
Kubernetes
Conceptual understanding, no production use
Terraform / IaC
Exposure through tutorials, not hands-on
GraphQL
Read the spec, minimal implementation
System Design at Scale
Learning patterns, not battle-tested
Mobile Development
React Native awareness, no shipped apps
ML / Data Science
Basic understanding, not a practitioner
Industry certifications validating security and engineering fundamentals
Hands-on labs and evidence of real skill beyond certifications.
Solo, Lab
Analyzed PCAP traffic with tcpdump: identified /.env probing, WordPress brute-force with Hydra, and cleartext login parameters visible in the HTTP payload.
Solo, Lab
Investigated a 628K-packet PCAP in Wireshark: used protocol hierarchy and conversation statistics to surface a port-80 scanning pattern from 3.142.238.241, followed an HTTP stream revealing a successful WordPress brute-force login (Hydra, admin/#AlphaInc!), and completed a live-capture exercise extracting an HTTP object from loopback traffic.
Solo, Lab
Coming soonComing soon.
Labs are from SANS Cyber Academy.
Selected client and independent work with measurable outcomes
Delivered via GDNA, Querri, and direct engagements
Mentorship platform needed secure, scalable onboarding UX for ~1,200 users.
Built React UI components and AWS Cognito auth, with scalable backend and CDK-managed infrastructure.
Onboarding efficiency improved by 60%; secure registration and sign-in flow in production.
Construction company needed a professional, responsive site with reliable hosting.
Built and deployed a Next.js site with AWS Amplify; clean layout and fast load times.
Delivered 2 weeks ahead of schedule; live site supports lead generation and brand presence.
Platform needed better performance and a smoother user experience.
Optimized front-end and deployment; deployed with AWS Amplify for stability and speed.
Platform performance improved by 30%; clearer UX and faster page loads.
Analytics platform site needed faster load times and better mobile engagement.
Built custom HubSpot CMS solutions; optimized assets and front-end code.
Site speed improved by 35%; mobile engagement increased by 40%.
Selected Projects
Side projects and open-source work with live demos and source code
Role: Solo builder: design, full-stack development, AI integration, payments, deployment
Paste any job description and get an honest 0-100 fit score with strengths, gaps, and interview prep. Includes ghost job detection and a job board with AI scores.
Role: Design, full-stack development, deployment (Vercel)
A modern product curation platform with hand-picked Amazon products, reviews, category filtering, and Editor's Choice. Responsive, SEO-optimized, with affiliate integration.
.40b41f69.png&w=828&q=75)
Role: Design, front-end development, deployment
Modern bilingual (EN/ES) business site with AI features and responsive design. Increased engagement and expanded reach to Spanish-speaking audiences.
Role: Full-stack development, database design, deployment
Community-driven platform for sharing and discovering AI behavior rules for Cursor Editor. Rule browsing, creation tools, and file-pattern matching.
Role: Backend, AI integration, scripting/automation
AI-assisted automation for YouTube content workflows using Python and LangChain, reducing manual steps in scripting and planning.
Fit Check
Paste a job description and get an honest AI assessment of how Luis's experience maps to the role.
Client feedback
“Luis at IberiaTech does amazing work. He is a skilled developer and really great to work with.”
Dave Ingram
CEO, Querri
Let's discuss your next project. Reach out via the form below or connect on LinkedIn