Jorge A. Avelar-Lopez

Software Engineer 2 at Microsoft

I build and ship multi-tenant SaaS products end-to-end — from data models and security boundaries to deployment.

GitHub LinkedIn jorgeavelar98@alumni.stanford.edu

Projects

All repos are private. Links go to the live products.

CareerSignal

Data-driven employability reports for school counselors: career, major, and college recommendations grounded in real labor-market and education data.

ReactTypeScriptViteExpressMongoDBZod

The hard part

Multi-tenant RBAC across three permission tiers (admin / counselor / student), a recommendation engine that matches students to majors and careers using cosine similarity over O*NET knowledge-area profiles, and integrating messy real-world reference data (CIP codes, SOC occupation crosswalks, MSA-level labor market stats, and College Scorecard data) into one coherent, query-efficient data model.

Preordyreal business

View live

Multi-tenant preorder platform for vendors selling custom goods: structured orders, deposits, and pickup scheduling, replacing DM chaos.

Next.jsSupabasePostgresRow-Level SecurityEdge Functions (Deno)Resend

The hard part

Designing the security boundary deliberately rather than by accident. An RLS-enforced browser client handles vendor dashboard CRUD, while anything mutating or sensitive (order creation, status changes, staff invites) goes through server-side Edge Functions with RBAC checks. Invite tokens are hashed (SHA-256) before storage, never stored raw.

Inscrivoreal business

View live

A real, operating business: professional websites designed and hosted for restaurants, including a multi-tenant platform that powers every client site from a single codebase.

Next.jsTailwind CSSSupabaseISRWebhook cache revalidation

The hard part

One Next.js codebase serves every client deployment, differentiated by a RESTAURANT_SLUG env var per Vercel project, with all content stored in Supabase. Pages use ISR (60s) with webhook-triggered cache revalidation, so an owner's dashboard edit goes live in under a minute with zero redeploy. New client onboarding is automated through a custom Claude Code slash command that searches Google Places, seeds Supabase, and deploys the Vercel project, turning a manual setup process into a single command.

Experience

May 2023 – Present

Software Engineer II, Microsoft Fabric

Microsoft

Own production UX and APIs serving 7k+ enterprise workspaces across 40+ regions; built an agentic RAG system for live-site incident triage and shipped a cluster-delete redesign saving ~$1.27M/year.

Sept 2020 – May 2023

Software Engineer I, Azure Data Factory

Microsoft

Built an automated cleanup pipeline removing 60M+ orphaned records, cutting database shard load 70% and saving $1.5M+/year; added Git-based CI/CD for ADF Airflow.

Summers 2017, 2018, 2019

Software Engineer Intern, Azure Networking / Azure Data

Microsoft

Built backend systems including a shared pipeline API for cross-factory execution, across a new unfamiliar codebase each summer.

About

I'm a Software Engineer 2 at Microsoft, and a Stanford CS grad — the first in my family to go to college, from Oakland public schools (Lionel Wilson Prep) to CS on the Farm. I build full-stack products end-to-end: data modeling, security architecture, and the operational work of keeping real users happy.

The projects on this page are the clearest evidence of how I work. CareerSignal required integrating five messy real-world datasets into one coherent model and building RBAC that actually reflects how school districts are structured. Preordy meant thinking hard about where the security boundary should live, not just where it was easiest to put. Inscrivo is a business I designed, built, and operate — real clients, real revenue, real on-call.

I'm looking for a senior-track engineering role where I can own systems end-to-end, work on hard data or platform problems, and ship things that matter. I prefer places that treat security and correctness as design constraints, not afterthoughts.