About the author

Welcome to my blog

I share thoughts on technology, open source, license compliance, Linux, and more. I write in Spanish and English—though Spanish is my native language, please excuse any rough edges in my English posts.

ABOUT

I'm a Principal Engineer turned entrepreneur, building AI and automation solutions for companies navigating the evolving software supply chain landscape. With 15+ years of experience in AI governance, open source compliance, and software security, I now channel that expertise into helping organizations embrace AI-driven transformation.

WHAT I DO NOW

After a decade at Amazon leading technical compliance programs, I've taken the leap into entrepreneurship. I'm building AI and automation solutions that help companies secure their software supply chains, streamline compliance, and unlock the full potential of modern AI tooling.

I also serve as a technical advisor for a pioneering open source company at the forefront of supply chain security, contributing strategic insight to one of the most innovative projects in the space.

And honestly? I'm having the time of my life. I studied electronics because I wanted to create robots. I jumped into informatics because I wanted to learn how to teach them. Now, I've come full circle, building and playing with evolutive automatas. There's something deeply exciting about this moment in Agentic AI: autonomous systems that reason, act, and collaborate. Every day brings new experiments, new architectures, and new ways to push what's possible.

MY BACKGROUND

I started my career in telecommunications as a Specialist Engineer at Telefónica in Chile, managing contractor teams and building OSS/BSS monitoring systems for specialized telecom networks. My background in electronics and informatics gave me a strong foundation in systems thinking and large-scale infrastructure management.

When I joined Amazon in 2014, I transitioned into program management as a Technical Program Manager for Kindle, leading 30+ engineering teams with 200+ engineers across Seattle, Bangalore, and Beijing. That experience taught me how to coordinate massive, multi-organizational initiatives and align stakeholders with competing priorities.

I then moved into security engineering because I wanted deeper technical expertise in an area that was becoming critical. I spent years building compliance automation, conducting M&A due diligence (30+ acquisitions), and establishing policies that became standard practice across multiple business units.

Today, I bring all three backgrounds together: telecommunications systems experience, program leadership skills to drive enterprise initiatives, and the technical depth to architect and build security solutions. Now applied to building my own ventures.

INDUSTRY IMPACT

I'm an international speaker, presenting at conferences across North America, Europe, and Asia on topics like SBOM automation, AI governance, and building compliance programs that scale. Published researcher on AI supply chain security, semantic code analysis, and agentic AI frameworks for compliance automation.

WHAT I'VE BUILT

  • AI governance frameworks for GenAI/LLM deployments, including threat modeling and risk assessment
  • ML-powered compliance platforms using Python, NLP, and RAG architecture, achieving 84% accuracy in license analysis
  • Agentic AI systems for SBOM analysis and vulnerability detection
  • M&A security due diligence methodology for 30+ acquisitions
  • Policy-as-code enforcement integrated into CI/CD pipelines
  • Organization-wide OSS compliance policies adopted across multiple business units

EXPERTISE

AI Governance & Risk Management | Software Supply Chain Security | Open Source Compliance & Licensing | SBOM Automation | M&A Security Due Diligence | Technical Program Management | Policy-as-Code | Compliance Automation | ML/AI Security Platforms | Cross-functional Leadership

WHAT DRIVES ME

Building security and compliance systems that enable innovation rather than block it. Creating automation that helps engineers move fast while staying secure. Shaping industry standards that make software supply chains safer for everyone.

Connect with me if you're working on AI governance, supply chain security, OSS compliance, or building security platforms that scale.

Licenses

* All the scripts and code I developed are under MIT or Apache-2.0.
* The content is licensed under a Creative Commons Attribution-NoDerivatives 4.0 International License.