Ben De Haan is a security consultant and engineer with 11 years of experience helping organisations adopt secure cloud and DevSecOps practices across AWS and Kubernetes. He has led hands-on implementations of secret management, SCA/SAST/DAST pipelines, and monitoring/detection foundations while coaching teams and delivering threat modelling and security trainings. His open-source work includes automating Vault, Consul and secrets-store integrations for the widely referenced OWASP/wrongsecrets project, demonstrating a practical focus on safe secrets handling in complex environments. Based in Utrecht, he blends deep technical delivery with practitioner-led education, and has a background in medical informatics that informs his methodical, evidence-driven approach to security.
11 years of coding experience
7 years of employment as a software developer
Certified Professional Program IT Security Engineer, Certified Professional Program IT Security Engineer at Open Universiteit
Master’s Degree Medical Informatics, Master’s Degree Medical Informatics at University of Amsterdam
Vulnerable app with examples showing how to not use secrets
Role in this project:
DevOps Engineer & Security Engineer
Contributions:11 reviews, 19 commits, 2 PRs in 1 month
Contributions summary:Ben primarily contributed to setting up and configuring infrastructure related to secrets management and integrating it with Kubernetes. They automated the deployment of Vault, Consul, and the secrets-store-csi-driver, and configured authentication for Kubernetes. Furthermore, they introduced the AWS Secrets Manager and GCP challenges to the application. Their changes included scripting to bootstrap environments, modifications to existing templates and code, and setting up services.
Contributions:5 commits, 3 PRs, 3 pushes in 1 year 5 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.