Technical Program Manager · AI Security
The gap between AI safety research and enterprise deployment is where I work.
I am a TPM at Microsoft. I build security for AI agent communication protocols, and I own ML pipelines end to end (evaluation design, data generation, model training, iteration).
PM who ships code. Hands on the ML pipeline.
Lima → New York → San Francisco
Featured · Shipped · Public
MS Featured Speaker: Win32 Isolation
I work on AI security at Microsoft. Both sides of it: AI for security (detecting threats with ML) and security for AI (defending agent communication protocols).
I am not a typical TPM. I own the ML pipeline end to end for security agents: evaluation scenario design, synthetic data generation, model training, iterative evaluation. I also consult with researchers on parameter-efficient fine-tuning (LoRA / QLoRA) because the pipeline decisions are mine to make.
My path here was not straight. I started in corporate finance in Peru, pivoted to CS at Indiana University (3.86 GPA), and joined Microsoft in 2023. The finance years taught me to read the business behind the tech: where time and resources go, what's worth building, what actually matters. That lens still shapes how I ship software.
I also build things on the side. Small personal technical explorations. I do them because I like shipping code and because a TPM who writes code makes better decisions than one who does not.
MicrosoftMay 2023 — Present
San Francisco, CA
Technical Program Manager
Current
Agent evaluation
Expanded evaluation frameworks across additional agent services, building on the end-to-end ML pipeline pattern.
EvaluationBenchmarks
Adversarial input detection
Designed adversarial input detection systems for multi-agent AI environments. Led threat modeling, evaluation design, and the detection roadmap end-to-end.
Threat modelingEvaluation
AI agent communication protocol security
Led design of security platforms for emerging AI agent communication protocols. Inspection and enforcement of AI agent tool-call traffic across local and remote environments.
Agent protocolsMCP-adjacent
Package revocation workflow
Built a package revocation workflow that integrates real-time security signals to block malicious packages and enable clean rollback. Usable by third-party security vendors to enforce signals on MCPs.
ShippedThird-party integration
AI-powered threat detection
Designed and drove a detection system using fine-tuned Small Language Models on system telemetry. Defined confidence thresholds and human-in-the-loop workflows to balance precision with scaled coverage.
SLMHITL
+0%detection lift
★
Win32 App Isolation
Shipped from technical design to production. OS-level traffic filtering and identity-bound policy enforcement. Achieved first-party app adoption. Featured on the Microsoft YouTube channel.
OS securityShippedPublic
End-to-end ML pipeline ownership
Owned the full ML pipeline as PM for two security agents: evaluation scenario design, synthetic data generation, model training, iterative evaluation. Consulted researchers on parameter-efficient fine-tuning (LoRA / QLoRA) for large-scale security data.
End-to-endLoRA/QLoRA
Cross-functional leadership
A constant across the programs above: cross-functional teams of 5+ engineers and 15+ stakeholders per initiative. Not one team, a pattern.
Leadership
MicrosoftMay 2022 — Aug 2022
Redmond, WA
Program Manager Intern
Cloud asset telemetry
Designed and shipped a telemetry pipeline surfacing cloud asset visibility from internal studios to Defender SecOps teams. Enabled centralized monitoring and incident response.
Valero Energy Corp.Oct 2020 — Jan 2021
Lima, Peru
Commercial Analyst
Capital planning
Built financial models for capital investment projects exceeding $300M. Market analysis to support executive decision-making.
$0M+modeled capex
Commercial modeling
Built financial models for gas-station and mining clients that the sales team used to shape commercial proposals. Daily Excel reports (pivot tables, macros) the sales team ran in the field.
BAT (British American Tobacco)Jun 2019 — Oct 2020
Lima, Peru
Financial Planning & Marketing — Finance Assistant
Financial modeling
Modeled financial impacts of business strategies. Identified marketing optimizations that delivered approximately £2M in savings.
£0Msavings
P&L ownership
Controlled expenses and P&L reporting for the marketing finance area against business targets.
AI coaching prototype
Personal technical project
2024 — Present
Serverless RAG with structured retrieval and an LLM-as-judge evaluation harness.
A proving ground for retrieval, context injection, and multi-provider portability. I also built the eval harness I use to decide whether the system is actually working.
Serverless on AWS (Lambda, API Gateway, WebSockets) with Supabase for structured context and token-streamed responses
Structured retrieval via direct database queries (no embedding layer) drives sub-0.3s context injection
LiteLLM abstraction swaps providers without code changes; exercised across Anthropic, Gemini, and Cerebras
Cross-platform surfaces: Next.js web app and Electron desktop client
LLM-as-judge eval harness with four grounding suites (faithfulness, factual accuracy, matchup reasoning, generalization across contexts)
Playwright end-to-end test coverage across both web and desktop surfaces
AWS LambdaWebSocketsSupabaseLiteLLMElectronPythonTypeScript
Real-time social prototype
Personal technical project
2025 — Present
Exploring real-time architecture, custom native animation, and incentive-aligned economic design.
Solo build. The goal was to see how far I could push real-time sync, 60fps native animation, and virtual-economy design in a consumer form factor.
Live subscriptions with Convex, JWT-propagated auth across client and backend
Custom 3D card animations in React Native Reanimated, running on the native thread
Particle system (burst, shimmer, ripple, rain) driven by SVG primitives
Glass component library (button, card, pill) with a cohesive dark theme
Multi-step haptic sequences for core interactions
Virtual economy with incentive-aligned signaling
Cascade-delete user-data flow across Convex tables for account-removal compliance
Expo (RN)ConvexClerkReanimatedGesture HandlerNativeWind
BS Computer ScienceIndiana University BloomingtonGPA 3.86 / 4.00May 2023
BA EconomicsIUPUI, IndianapolisDec 2018
Maven · Hamel Husain & Shreya ShankarAI Evals For Engineers & PMsSponsored by MicrosoftApril 2026
Focus
AI Security & Threat Detection
ML Pipeline Design (End-to-End)
Prompt Injection Defense
AI Agent Protocol Security
SLM Fine-Tuning & Evaluation
Cross-Functional Program Leadership
Stack
PythonTypeScriptSQLAWSNext.jsReact NativeLoRA / QLoRA
