Product Group Lead Architecture Governance Application Security
Hamburg, Germany
Join Prog.AI to see contacts
Join Prog.AI to see contacts
Summary
🤩
Rockstar
🎓
Top School
Top expert inCybersecurity and Penetration Testing Technology
Björn Kimminich is a seasoned product and architecture leader with 13+ years driving application security and governance at Kuehne + Nagel, currently heading Product Group Architecture Governance & Application Security. He combines hands-on full‑stack development experience with strategic oversight, having progressed from software architect and application security officer to senior manager and product group lead. An active OWASP leader — project lead for the widely used OWASP Juice Shop and co‑lead of OWASP Germany — he contributes code and tooling that bridge training, CTFs and real‑world security testing. His open‑source work spans front‑end and back‑end fixes, test automation for ZAP, and dependency analysis improvements, reflecting a pragmatic focus on reliability and maintainability. Beyond enterprise security, he has taught IT security and software engineering at Nordakademie for over a decade, bringing pedagogical clarity to complex topics. Based in Hamburg, he blends product stewardship, developer empathy, and community impact to turn security best practices into usable, deployable solutions.
13 years of coding experience
17 years of employment as a software developer
Diploma (UAS), Business Informatics, Diploma (UAS), Business Informatics at Fachhochschule Nordakademie Elmshorn
University-Entrance Diploma, University-Entrance Diploma at Ludwig-Meyn-Schule Uetersen
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Role in this project:
Full-stack Developer
Contributions:171 releases, 65 reviews, 16903 commits in 8 years 5 months
Contributions summary:Björn made various code contributions to the project, primarily focusing on the front-end and back-end development of a vulnerable web application. Their commits involved fixing bugs in the regular expressions, addressing module dependencies, and implementing features such as code snippets for solved challenges. Additionally, the user added and modified code for the web3 wallet, showing involvement in smart contract-related functionality.
Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF
Role in this project:
Full-stack Developer
Contributions:48 releases, 570 commits, 95 PRs in 5 years 9 months
Contributions summary:Björn primarily contributed to the development of tools for exporting and integrating OWASP Juice Shop challenges within CTFd, a capture-the-flag platform. Their work involved modifying and generating code, specifically focusing on the creation of SQL-based insert statements for challenges and flags. These contributions included implementing code-snippet hints, and code formatting for the CTFd platform. Furthermore, the user also worked on integrating these challenges within an FBCTF environment.
ctfshopctfd24pullrequestsapplication-security
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Björn Kimminich - Product Group Lead Architecture Governance Application Security