Mission-critical software for
fintech, insurance & government.
Senior engineering based in Colombia, working in your timezone. 27 years building systems for governments, banks, and regulators where errors had legal consequences. Now serving fintech, insurance, and government contractors in the USA mid-market.
AI that passes your audit
The same audit discipline, now for AI — governed, sovereign, in your own environment.
How we engage
Most engagements start with an Architecture & Compliance Review and grow from there. Invoiced in USD via international wire.
Architecture & Compliance Review
2-4 week assessment of your current architecture and compliance posture. We review against the regulatory frameworks that affect your business (SOX, PCI-DSS, SOC2, GDPR). You receive a prioritized roadmap your auditor will respect and your engineering team can actually execute. Most companies start here.
Custom Software Development
End-to-end mission-critical systems. Compliance built into the foundation, not bolted on at the end. We specialize in projects where standard agencies fail: strict regulatory requirements, legacy integrations, audit-readiness non-negotiable.
Advisory Retainer
Ongoing architectural and compliance guidance without full-time engagement. Weekly office hours, on-demand consultation, code reviews of architectural-level changes. For CTOs and VPs Engineering who need a sounding board they can trust.
System Modernization
Move legacy systems (COBOL, mainframes, monoliths) to modern stacks without breaking compliance or causing service interruption. Strangler Fig patterns, gradual cutovers, audit-trail preservation. Zero-downtime migrations are our specialty.
Built for audits.
When we build software, we assume it will be audited. 27 years leading engineering at DIAN (tax authority), DNP (national planning), Aerocivil (aviation authority), Davivienda (top-3 Colombian bank), and UN agencies. At DIAN, our RUT pipeline consolidates 106.5 million XML documents and 4.74 billion records, sustaining peaks of 28 million records per minute on Azure Databricks. At CGN we keep the national public-accounting consolidator running while we design its API-first replacement, with no downtime. Extensive logging, audit trails, and robust RBAC are foundations from day one.
Domain expertise auditors trust
Systems audited by Colombian SuperFinanciera, DIAN tax authority, and aviation regulator Aerocivil. We have lived SOX, PCI-DSS, SARLAFT, Habeas Data, GDPR — we did not read about them in a certification course.
Senior is a behavior, not a title
Asks "why?" before "how?". Considers trade-offs explicitly. Documents decisions for the next maintainer. Resists pressure to cut corners on security or quality. That behavior is what we charge for, and what we deliver.
Same timezone, deeper trust
ET−0/1h. Trilingual EN/ES/PT. You communicate directly with whoever writes your code — no account managers, no juniors disguised as senior.
Built for audits from day one
Extensive logging. Detailed audit trails. Robust permission systems. Verifiable backups. Not features we add at the end — foundations we build from the start.
Instruments, published and in use
Open tools and AI work with a contractual track record. You can use them today, without talking to anyone.
MSPI-IA self-assessment
Colombia's MinTIC AI Security Guidelines (v1.0, Dec 2025) turned into an interactive tool: 131 controls, instant results in your browser. In Spanish.
Use the toolElectoral geography 2026
Interactive choropleth of 1,020 municipalities with spatial statistics computed over official results: Moran's I of 0.71. In Spanish.
See the instrumentArquitectura Simbiótica
Published book (2nd ed., ISBN 978-628-02-4845-5): human-AI collaboration as a design discipline. Its sequel, El Estado Aumentado, takes the thesis into the public sector. In Spanish.
About the bookJARVIS — fully local RAG
Sovereign AI agent built by the firm (LlamaIndex · Ollama · Qdrant): runs entirely on our own infrastructure; data never leaves it.
The AI practiceANDJE · 2022
Semantic search engine over state jurisprudence for Colombia's National Agency for Legal Defense. The firm's AI line carries years of contractual track record in applied NLP.
See the practiceThe tools we master
Languages
Backend & Frameworks
Frontend & Mobile
Databases
Cloud & DevOps
Where we've delivered
Government
- DIAN
- DNP
- SIC
- Ministry of Energy and Mines
- Aerocivil
- Ministry of Education
International
- UNICEF Colombia
- UNODC
Financial
- Davivienda
- Ultracem
Enterprise
- VTEX
- Yobitech
- Belltech
- LINKTIC
- AND
From first contact to delivery
Discovery call
We understand your needs. 30 minutes, no commitment, free.
Technical proposal
Detailed scope, timeline, and clear budget.
Agile development
Weekly sprints with demos. Real progress every week.
Delivery + support
Deployment, documentation, and ongoing post-launch support.
Ready to get started?
Tell us about your project and we'll get back to you within 24 hours.
Thanks — I'll get back to you within 24 hours.