Fabian Kammel

Principal Security Consultant at ControlPlane

Nauen, Brandenburg, Germany
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Fabian Kammel is a Principal Security Consultant with 11 years of experience building secure cloud-native systems and bridging hardware security with developer-friendly tooling. Based in Germany, he has driven projects ranging from enterprise HSM-backed PKIs for vehicle services to always-encrypted Kubernetes distributions leveraging confidential computing, and recently focused on protecting SPIFFE machine identities via hardware attestation. He combines hands-on engineering—evidenced by security-driven CI/CD contributions to the SLSA GitHub generator—with public-facing advocacy, having presented at KubeCon and SigstoreCon and appeared on the Kubernetes Podcast. Known for improving developer experience in security workflows, he brings a pragmatic mix of applied research, product architecture, and field engineering grounded in a Master’s in IT Security.
code11 years of coding experience
job11 years of employment as a software developer
bookMaster's degree IT Security, Master's degree IT Security at Ruhr University Bochum
languagesGerman, English
github-logo-circle

Github Skills (12)

github-ci10
security-hardening10
go10
githubaction-workflow10
cicd10
security9
testing9
security-txt9
security-scan9
dockers7
docker7
bash5

Programming languages (13)

JavaC++CSSRustVueGoHTMLTypeScript

Github contributions (5)

github-logo-circle
Language-agnostic SLSA provenance generation for Github Actions
Role in this project:
userDevOps Engineer & Security Engineer
Contributions:9 reviews, 9 commits, 13 PRs in 2 months
Contributions summary:Fabian primarily contributes to the project by improving the codebase's quality and security posture. They refactored code to use `GITHUB_OUTPUT`, enabled and fixed various linters such as `lll`, `EXC0012`, `EXC0013`, `EXC0014`, `govet`, `gosec`, and `errcheck`. They also added changes related to OIDC client, and implemented and fixed tests. The user's contributions demonstrate a focus on CI/CD pipeline enhancements, code quality, and security best practices within the context of SLSA provenance generation.
security-toolsagnosticsecurityprovenanceslsaprovenance
datosh/goinvaders

May 2020 - Jun 2020

Contributions:93 commits, 55 pushes, 1 branch in 1 month
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Fabian Kammel - Principal Security Consultant at ControlPlane