Barcelona, Catalonia, Spain
I’m an engineering executive responsible for security, platform, and infrastructure in AI-native companies, with a focus on scaling systems that underpin enterprise trust, reliability, and growth. At Sourcegraph, I lead Security, Platform, and Services, reporting to the CEO and representing engineering leadership at the board level. My organization owns the core systems that enable our AI platform to operate securely and reliably at scale for global enterprise customers. I’ve built and led company-wide security and infrastructure programs in high-growth SaaS and fintech companies, including Thought Machine, where I established security and compliance foundations critical to enterprise adoption. I specialize in aligning infrastructure and security with business outcomes, accelerating product delivery, enabling revenue growth, and supporting global scale.
Lead Security, Platform, and Services at Sourcegraph, reporting directly to the CEO and representing engineering leadership in board-level discussions. Own the secure, reliable, and scalable foundations of Sourcegraph’s Code understanding platform, supporting enterprise customers and thousands of engineers globally. My organization is responsible for platform reliability, infrastructure, and company-wide security, ensuring the system can operate safely and at scale as AI capabilities expand. Manage a multi-functional engineering organization, with responsibility for hiring, organizational design, and execution across security, infrastructure, and core platform systems. Built and scaled the company’s security and compliance programs, including achieving SOC2 Type II, enabling enterprise adoption and expansion into regulated industries. Partner with product, go-to-market, and executive leadership to align infrastructure, security, and reliability with business priorities, accelerating product velocity, supporting revenue growth, and strengthening customer trust.
• Led the security initiatives for a unicorn company distributed across 20 countries. • Directly reported to the CEO, shaping and executing pivotal security decisions and strategies. • Oversaw comprehensive security measures, integrating security engineering, operations, and GRC. • Managed end-to-end hiring for the security department, focusing on building a high-performing team. • Engineered and delivered a secure Sourcegraph Cloud architecture, safeguarding private code for major tech companies, financial institutions, and other enterprise clients. • Spearheaded the company's inaugural SOC2 Type 2 audit within 8 months, crafting and implementing requisite policies and processes. Maintained unwavering compliance in follow-up audits and external pentests, consistently achieving positive outcomes that facilitated multimillion-dollar deals.
A community comprised of cybersecurity leaders and experts, with exposure to early-stage (Seed/ Series A) start-ups and innovation, access to private investment opportunities, leveraging domain expertise and connections to assess and contribute to the success of early stage cybersecurity ventures.
• Shaped the overarching strategy and roadmap for areas including vulnerability management, CICD security, identity/access management, multi-cloud security, and Kubernetes security. • Engineered, implemented, and monitored technical security measures for MessageBird SaaS products, ensuring optimal protection and compliance. • Devised technical solutions and security tools, targeting vulnerability mitigation and task automation, adopting a shift-left strategy.
• Led security engineering with oversight of application security, cloud security, and security automation teams. • Hired, nurtured, and retained multiple high-performing teams, ensuring consistency in execution and alignment with organizational goals. • Engineered, implemented, and monitored robust security measures for the Vault core banking platform and its ecosystem. • Defined clear system security requirements emphasizing security by design principles. • Crafted security architecture for cloud infrastructure and delivered detailed cybersecurity designs. • Engaged directly with multiple banking prospects and customers, articulating the robust security and design features of Thought Machine's product, instilling confidence in its capabilities. • Championed both tactical and strategic goals, propelling a comprehensive and mature information security program forward. • Devised technical solutions and innovative security tools, targeting vulnerability mitigation and task automation. • Conducted thorough security assessments across production, corporate, and cloud infrastructures to pinpoint and address vulnerabilities.
• Oversaw AWS, Azure, and GCP cloud infrastructures management, covering hundreds of instances and multiple Kubernetes clusters. Implemented infrastructure as code and automation with Cloudformation and Terraform. • Progressed to lead the cloud and infrastructure team, emphasizing a culture of innovation and continuous learning. • Led the team in automating deployment, scaling, and management of containerized applications across diverse environments using Kubernetes. • Upheld best security practices, with a lead role in ensuring cloud and Kubernetes security. • Spearheaded the design, implementation, and maintenance of CI/CD processes for optimized operations. • Pioneered the migration of microservices from traditional Ubuntu VMs to an efficient setup with Alpine Linux and Kubernetes. • Advanced the enhancement of the secret management and certificate issuing system, leveraging Hashicorp Vault for best-in-class storage and retrieval of both static and dynamic secrets.