Chaim Sanders is an information security professional with 11 years of hands-on experience building and leading security teams across healthcare, finance, entertainment, and technology. He combines software security, web application penetration testing, DevOps-secure practices, and Web Application Firewall expertise to design practical, auditable defenses and incident-ready programs. As a Co-Lead and active committer on the widely used OWASP ModSecurity Core Rule Set project, he focuses on test automation and regression testing to keep critical WAF protections reliable across Apache and Nginx deployments. Based in Seattle, he brings a blend of technical depth—from log-checking and dockerized test environments to social engineering and physical security—and program-level leadership that scales security across diverse environments. Colleagues rely on him for turning complex compliance and threat models into repeatable engineering solutions.
OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
Role in this project:
QA Engineer / Test Automation Engineer
Contributions:9 releases, 143 commits, 336 PRs in 2 years 7 months
Contributions summary:Chaim primarily contributed to the development and maintenance of regression tests within the repository. They added new tests, modified existing ones, and updated the configuration and entrypoint scripts to support testing across different environments, including Apache and Nginx. The contributions involved creating and adapting testing frameworks, implementing log checking functionalities, and ensuring the proper functioning of the Core Rule Set through automated testing procedures. They have also updated the docker images to ensure consistency for automated tests.
Contributions:1 PR, 11 pushes, 1 branch in 3 years 2 months
owasp-crssecuritycrsowasp
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.