Björn Kimminich
Product Group Lead Architecture Governance Application Security
Hamburg, Germany
Summary
🤩
Rockstar🎓
Top School
Top expert inCybersecurity and Penetration Testing Technology
Björn Kimminich is a product group lead for architecture governance and application security at Kuehne + Nagel with 12 years of experience blending enterprise security, software architecture and product leadership. As OWASP Juice Shop project leader and OWASP German Chapter co‑lead he pairs community-driven open-source stewardship with hands-on contributions to security tooling like ZAP extensions and DependencyCheck. He combines full-stack development (including web3 wallet features in Juice Shop) with robust test-automation and back-end improvements, and even contributes to embedded IoT work such as IR codes for Flipper devices. A former university lecturer in IT security and software engineering, he brings a pragmatic teaching mindset to governance and developer enablement. Based in Hamburg, he focuses on building auditable, maintainable security practices that scale across global products.
13 years of coding experience
17 years of employment as a software developer
Diploma (UAS), Business Informatics, Diploma (UAS), Business Informatics at Fachhochschule Nordakademie ElmshornUniversity-Entrance Diploma, University-Entrance Diploma at Ludwig-Meyn-Schule Uetersen
English, German
Stackoverflow
426reputation
29kreached
5answers
3questions
Github Skills (74)
junit510
website-development10
testing10
localizations10
security10
javas10
junit10
flip10
vulnerability-detection10
maven10
javascript10
maven310
localize10
localization10
html10
Programming languages (24)
Github contributions (5)
juice-shop/juice-shop
Sep 2014 - Jan 2023
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Role in this project:
Full-stack Developer
Full-stack DeveloperContributions:171 releases, 65 reviews, 16903 commits in 8 years 5 months
Contributions summary:Björn made various code contributions to the project, primarily focusing on the front-end and back-end development of a vulnerable web application. Their commits involved fixing bugs in the regular expressions, addressing module dependencies, and implementing features such as code snippets for solved challenges. Additionally, the user added and modified code for the web3 wallet, showing involvement in smart contract-related functionality.
ctfweb-applicationshop24pullrequestsapplication-security
juice-shop/juice-shop-ctf
Nov 2016 - Aug 2022
Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF
Role in this project:Full-stack Developer
Full-stack DeveloperContributions:48 releases, 570 commits, 95 PRs in 5 years 9 months
Contributions summary:Björn primarily contributed to the development of tools for exporting and integrating OWASP Juice Shop challenges within CTFd, a capture-the-flag platform. Their work involved modifying and generating code, specifically focusing on the creation of SQL-based insert statements for challenges and flags. These contributions included implementing code-snippet hints, and code formatting for the CTFd platform. Furthermore, the user also worked on integrating these challenges within an FBCTF environment.
ctfshopctfd24pullrequestsapplication-security
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.