🇪🇸 Leer en Español

LinkedIn | Website | 📧 lapc506@gmail.com | 📱 (+506) 8945-6736

Leaving a Lasting Legacy is my Driver. Helping others access the opportunities I had is my purpose.

I'm a Site Reliability Engineer and serial entrepreneur with over 10 years of experience in the technology industry, having worked at multinational companies such as IBM, Western Union, Roche, Hewlett Packard Enterprise, and Provectus.

My areas of expertise include Site Reliability Engineering (Cloud and Clusters Management using GitOps), Patch Management, and Endpoints Administration. I'm also CTO and co-founder of startups in the EdTech, AgriTech, and Web3 sectors.

• Containerization:
  • 
• Automation:
  • 
• Observability:
  • 
• GitOps & CI/CD:
  • 
• Infrastructure-as-Code:
  • 
• AWS Cloud:
  • 
• GCP Cloud:
  • 
• AI Coding Agents:
  • 
• MLOps:
  • 

• Patch Management:
  • 
• LDAP & Identity:
  • 
• ITSM (ITIL v3):
  • 
• Windows Admin:
  • 
• macOS Admin:
  • 
• Virtualization & VPN:
  • 
• Endpoints Monitoring:
  • 
• Infrastructure & OS:
  • 

• Agile Tools:
  • 

• Mobile & Frontend:
  • 
• Design & Low-Code:
  • 
• Backend & Platforms:
  • 

• Visualization:
  • 
• Databases:
  • 
• Data Science:
  • 

• Democratic leadership & teamwork
• Self-learner & continuous learning
• Data-driven decision maker
• Assertive & non-violent communication
• Dialectic & maieutic reasoning
• Anti-fragility & adaptability
• Persuasiveness & rapport building
• Timeboxing & attention to detail

Mar. 2026 – Present

Dojo OS — EdTech SaaS Platform (Supabase + React + Edge Functions)

Responsibilities

• Comprehensive security hardening implementation: rate limiting on critical serverless functions, fixing overly permissive row-level access policies, field allowlists against mass-assignment, and pre-commit SQL linter to prevent privilege escalation
• Anti-bot CAPTCHA integration on signup and password reset forms
• Security audit table creation and serverless function instrumentation for full traceability
• Integration test writing to validate data access policies on critical tables
• Refactoring and renaming chat API endpoints across frontend and backend
• Centralization of environment configuration helpers to resolve staging vs production inconsistencies in transactional emails, payment gateway, and error monitoring
• CI/CD pipeline migration to self-hosted runners on Google Compute Engine
• New domain entity modeling with dedicated tables and API clients

Achievements

• AI agent chat enablement in production, including post-streaming state synchronization and contextual enrichment with course data
• AI transparency visual indicator in the chat interface
• Hackathon lead capture playbook documentation and pitch deck templates

Dojo Agent — Claude Code Plugin for Autonomous Project Management

Responsibilities

• Development of a toolset for bidirectional integration with the project manager: creation, updating, commenting, project querying, and sprint cycles
• Code repository integration tools: PR listing with scheduled cron, and agent knowledge self-persistence via commits
• Webhook endpoint for automated pull request review
• Semantic search tool across team messaging channel history
• Secure SQL query tool with auto-generated schema descriptions and controlled access functions
• Ingestion endpoints for atomic educational content synchronization and webhooks with automation templates
• Persistent agent memory system with relevance weighting and categorization
• User input and external content sanitization before persistence
• Automated periodic reports on project issue status
• Agent contextual enrichment with infrastructure URLs for internal team channels

Achievements

• Embeddings model migration to a newer generation, with enriched source and title metadata
• Duplicate message defense with persistent cross-replica deduplication for messaging integrations
• Data anchoring to prevent fabricated responses in database queries, with audit logging
• 21-phase structured brainstorming tool for Business Model Canvas generation
• 31+ E2E test suite for graph search and self-healing capability, with hackathon and incubation scenarios
• Token consumption estimation when the model provider does not report it
• Transparency disclaimers on AI-generated recommendations

Freedom Academy — GCP Infrastructure for Educational LMS (OpenTofu + Bash)

Responsibilities

• Design and implementation of infrastructure-as-code modules: managed relational database, in-memory cache, and compute with automatic provisioning scripts
• Elasticity configuration with managed instance groups, load balancer, and autoscaler
• Web application firewall (WAF) implementation, monitoring alerts, and automated backup strategy
• Visual identity centralization (brand tokens, color palette, email templates) with EN/ES multilingual support
• SSL/TLS certificate configuration and full domain migration to production
• Transactional email configuration scripts, anti-bot protection, and backup restoration verification
• Third-party interactive e-learning package compatibility enablement
• Student data export pipeline with relational schema and privacy regulation compliance (GDPR)
• Complete documentation: credential handover, incident response playbook, deployment runbook, and cloud roles/permissions matrix
• Local development environment for pre-production migration testing

Achievements

• Server runtime migration to a newer version with artifact integrity verification
• Security hardening against server-side request forgery vulnerabilities and static analysis findings

Freedom Academy — Custom Plugin Suite for Educational LMS (PHP)

Responsibilities

• Partner Enrollment: Enrollment plugin with individual student management, aggregated statistics, student journey kanban board, and organization-scoped report export
• Campaign Tracking: Marketing campaign tracking with analytics and conversion platform integration, including performance funnel reporting and automated HTTP mock tests
• Journey Automation: Student journey automation engine with quiz and grading-based triggers, certificate issuance, visual rule editor for non-technical admins, metrics dashboard and execution detail view, with push notifications
• Centralized Dashboard: Native control panel with role-based access controls (admin/partner/staff), data aggregators, custom views, and organization-scoped report export
• AI Feedback: AI-powered feedback plugin with documented research on natural language engines

Achievements

• Architectural decision documentation for the hybrid dashboard approach
• Compatibility bug fixes for the latest LMS version

Maximo Application Suite and Maximo Manage Feb. 2024 – Sept. 2025

Responsibilities

• Administering Red Hat OpenShift on multiple clusters in AWS, manually modifying YAML manifests from Custom Resource Definitions and operators
• Administering IBM WebSphere (WAS) on multiple RHEL servers
• Deploying MAS application upgrades using ArgoCD workflows
• MAS application observability with IBM Instana and Grafana
• Composing runbooks and knowledge base articles on GitHub Pages and Atlassian Confluence
• Real-time incident response using IBM On Call Manager, PagerDuty and Salesforce Lightning, and Root Cause investigation
• Building multiple Bash scripts for Red Hat OpenShift and IBM WebSphere (WAS) for task automation and application data retrieval

Achievements

• Successfully supported multiple Maximo major upgrades, including MAS 8 to 9.1 and 9.0 to 9.1.2
• Documented a Disaster Recovery scenario for Db2U Standalone on OpenShift clusters (May 2024)
• Cleaned up multiple outdated runbooks in Confluence

Consulting contractor for Model N Sept. 2021 – Nov. 2023

Responsibilities

• Support for ManageEngine Desktop Central and Jamf Cloud MDM device management suites
• Development of automated Patch Management workflows to manage monthly Microsoft Windows and macOS patches
• Corporate policy documentation to preserve good overall patch management health in the client ecosystem
• Custom PowerShell script development for scheduling System Restore Points, blocking Windows 11 updates, and root cause analysis of patch deployment failures
• Working with internal customers scheduling one-to-one sessions for corporate backup creation with MS OneDrive
• Building project management sub-tasks and generating self-service and internal documentation in Jira and Confluence

Achievements

• Successfully upgraded +1,100 endpoints from Windows 10 v1703 to version 21H2 (August 2022)
• Successfully implemented manual upgrades from macOS Monterey 12.5 to macOS Ventura 13.6, deploying Nudge via Jamf Cloud for both Intel-based and Apple Silicon Macs using a customized Bash script

Sept. 2020 – Sept. 2021

Responsibilities

• Creating IT incidents and requests received via multiple channels (phone, email, chat, self-service portal)
• Managing classification, assignment, tracking, and completion of service requests and incidents in ServiceNow ITSM per Incident Management and Problem Management processes (ITIL3 framework)
• First-level support for Roche applications related to Google Suite, Microsoft Office, SAP, internal and proprietary apps, conferencing tools (Webex, Google Meet), and macOS applications
• First-level support for standard and exception hardware (laptops, desktops, tablets, mobile devices, monitors, and printers)
• Escalating tickets that could not be resolved at first level to second-level SMEs
• Instructing end users on optimal use of Roche tools and services

Achievements

• Implemented a custom problem analysis reporting tool for continuous improvement, systematizing root cause analysis to suggest proactive change recommendations in IT Service Desk troubleshooting articles

EUC Desktop Engineering Feb. 2018 – May. 2020

Responsibilities

• Keeping computers up to date through WSUS
• Building PowerShell scripts to create new install packages, planning their mass distribution via Tanium
• Reviewing vulnerabilities previously detected in Qualys VMDR and error alerts in Pulse Secure
• Tracing Windows OS system errors via Event Viewer, using CMTrace to interpret source log files
• Change Management process via ServiceNow
• Deploying new applications using VMware Horizon, with installation via AppStacks and customization via User Environment Manager
• Sending a monthly email newsletter to IT teammates with a complete list of Windows Updates from each WSUS deployment
• Translating legacy batch scripts to PowerShell 5.1, enabling Western Union to complete its migration from legacy IBM BigFix to the new Tanium implementation (2019)
• Configuring the testing environment for the Tanium Patch Management module prior to its production release
• Working alongside InfoSec colleagues to proactively patch vulnerabilities found with Qualys VMDR

Achievements

• Successfully detected the root cause of Windows Update failures affecting +1,000 endpoints across Latin America and some US states in 2019; alongside my manager, we found a database records corruption on the corporate WSUS servers, which were later restored by Microsoft expert engineers
• Successfully deployed the first AppStacks images used in the VMware Horizon environment for third-party contractors in Cloud Operations, Software Development, and Data Analysis
• Discovered in 2018 an unexpected bug in Microsoft's October 2018 Feature upgrade (error code 0x80070070 in Windows Update Agent); changes were successfully rolled back and a new corporate policy was established to implement System Restore Points on all Windows 10 endpoints

Ene. 2017 – Ene. 2018

Responsibilities

• Supporting end users addressing technology incidents and requests, escalating issues and cooperating with next-tier IT teams
• Supporting IT outages as per the Business Continuity Plan
• Supporting multiple standard business applications and employer proprietary apps

Achievements

• Worked alongside End User Computing Technician (L2) colleagues to resolve complex issues that other L1 team members did not know how to solve, thanks to prior knowledge acquired in 2013 and during 2016
• Updated multiple Knowledge Base articles in ServiceNow ITSM

Pfizer Global Service Desk Nov. 2015 – Dic. 2016

Responsibilities

• Supporting RightFax at the Pfizer Printing Support Team, configuring the internal BIOS of multiple HP printers deployed across Pfizer buildings
• Raising major incidents affecting Pfizer on a larger scale, including outages at New York HQ
• Creating IT incidents and requests via multiple channels (phone, email, chat, self-service portal)
• Managing classification, assignment, tracking, and completion of tickets in ServiceNow ITSM per ITIL3 processes

Achievements

• Promoted to Pfizer's L2 Printing Support team

Contractor for HPE at Pfizer GSD Dic. 2014 – Nov. 2015

Responsibilities

• Creating IT incidents and requests received via multiple channels
• Managing tickets in ServiceNow ITSM per Incident Management and Problem Management processes (ITIL3)
• Quickly adapting to frequent corporate changes

Achievements

• Successfully supported the transition from Windows XP to Windows 8, then to Windows 8.1, for most Pfizer computers still running Windows XP until 2015
• Successfully supported the integration efforts of Hospira colleagues after Pfizer completed their acquisition (prior to their split and rebranding as "IHS Medical"), who were running Windows 7 on a separate AD domain
• Built a custom marquee-style tool using HTML5 and jQuery to help the team reduce loud environmental noise during IT outages; this improved the satisfaction rate across multiple accounts (Pfizer, Universal Music Group, Grupo Bimbo, and Under Armour)

Urban vertical farming startup incubated at Bridge for Billions (2021). Manufacturing and remote management of MicroInvernaderos Aeropónicos Autónomos. Monorepo with Serverpod backend, Flutter app, Raspberry Pi orchestrator (Balena), EMQX MQTT, K8s + ArgoCD GitOps. Pre-seed round of US $9,500 raised with Auge-UCR. Finalists with honorable mention at Road to Innovate Central America (Friedrich Naumann Foundation).

Flutter mobile application for animal protection: rescue coordination, foster homes, crowdfunding campaigns, and anonymous animal abuse reports.

Real estate management platform developed in Dart/Flutter.

Decentralized educational collaboration platform with Life Learning Passport based on blockchain micro-credentials (Starknet). 5-layer modular architecture using Flutter, Dart, GraphQL, gRPC, Starknet/Cairo, Redis Streams.

• Computer Sciences Engineering | Instituto Tecnológico de Costa Rica (on Hiatus)
• Information Technology Technical Support | Colegio Técnico Profesional de Flores (2011 – 2013)

• Spanish Native
• English C1 Level
• Portuguese A2 Level (Listening and Reading)

• PIEA 2023 – INCAE Business School Executive Education & Invermaster Ventures – Acceleration and Mentoring Program for Agro-Industrial Projects (2023)
• Innovate Programme 2022 – Friedrich Naumann Stiftung für die Freiheit – Online Incubation Program for Early-Stage Startups (2022)
• The Leap Incubation Program – Bridge for Billions – Online Incubation Program for Early-Stage Startups (2021)
• Scrum Product Owner – CertiProf (2020)
• User Stories Foundation – CertiProf (2020)
• Scrum Foundation Professional – CertiProf (2020)
• Management 3.0 Fundamentals – Management 3.0 / F&M Consulting Perú (2020)
• Tableau 2019.2 Intermediate – Prisma Análisis Costa Rica – Preparation for Tableau Desktop Certified Associate (2019)
• Cambridge English B1 CEFR – University of Cambridge – English for Speakers of Other Languages (2013)
• Cisco IT Essentials – Cisco Networking Academy & Fundación Omar Dengo (2011)

• Ciencia de Datos en Latinoamérica – ~3,000 members on LinkedIn (since Jul. 2019)
• Flutter Apps en Latinoamérica – LinkedIn community (since Aug. 2025)
• Startups 506 – Co-founder and co-administrator (2022 – 2024)

• DJ and Electronic Dance Music production (Pioneer DDJ-FLX4-W)
• Electronic music festivals, karts, and Formula 1
• Canopy and exploring natural wonders
• Spicy food 🌶️

lapc506@gmail.com | LinkedIn | Website