Jan 2022 – Apr 2025
- Led development of Jetpack Protect, scaling it to 100 000 + active installs on WordPress.org and a 4.7★ rating, generating new subscription revenue.
- Shipped and maintained core Jetpack security features (site malware scanning, WAF, brute‑force protection) used by 4 + million sites.
- Built the internal vulnerability‑submission platform for WPScan: automated PoC analysis, CVE reservation/assignment, and researcher workflow; integrated WPScan data into WordPress.com after acquisition.
- Contributed hundreds of open‑source commits across Jetpack, Calypso, and Gutenberg; collaborated in public on GitHub to improve APIs, databases, and server‑side ORMs powering WordPress.com’s 409 M monthly users / 20 B monthly page views.
- Contributed to the development of the Automattic for Agencies multi-site management platform, enabling large agencies to manage licenses and security across thousands of WordPress sites.
- Operated in a fully distributed, async‑first environment; mentored teammates and represented the team at meetups in Las Vegas, Denver, Victoria, Montreal, Málaga, Mexico City, and São Paulo.
Tech: TypeScript, JavaScript, PHP, React, WordPress, MySQL, REST/GraphQL APIs, GitHub Actions