Ian Haken

Principal Security Software Engineer at Netflix

San Francisco Bay Area United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Ian Haken is a Principal Security Software Engineer in the San Francisco Bay Area with 14 years of experience building cryptographic and identity systems at scale, currently leading security engineering at Netflix. He has deep expertise in PKI, secure cloud platform tooling, and static/dynamic application analysis from prior research roles, and has moved seamlessly between hands-on vulnerability research and large-scale production service design. Ian contributes to prominent open-source projects such as grpc-node, where he enhanced SSL credential handling and custom certificate verification, reflecting an attention to interoperable, well-tested security primitives. He pairs a rigorous academic background in mathematics (UC Berkeley PhD/BA) with practical software delivery across startups and enterprise, and is known for turning formal reasoning about cryptography into pragmatic, auditable systems.
code14 years of coding experience
job18 years of employment as a software developer
bookDoctor of Philosophy (Ph.D.) Mathematics, Doctor of Philosophy (Ph.D.) Mathematics at University of California, Berkeley
bookHigh School, High School at University of North Texas
github-logo-circle

Github Skills (10)

javascript10
nodejs10
ssl10
tls1210
tls1310
grpc10
typescript-types9
testing9
typescript9
typescripts9

Programming languages (15)

C#JavaC++CMakefilePLpgSQLGoMustache

Github contributions (5)

github-logo-circle
grpc/grpc-node

Mar 2018 - Jul 2018

gRPC for Node.js
Role in this project:
userBack-end Developer
Contributions:20 commits, 7 comments in 4 months
Contributions summary:Ian focused on enhancing the `grpc-node` library's SSL credential functionality. They implemented and refined the `checkServerIdentity` callback, allowing for custom certificate verification. The contributions included refactoring code for improved clarity, adding type assertions, and creating tests to validate the callback's behavior and error handling, ultimately ensuring more robust and secure gRPC connections. They also updated the documentation to reflect the new features.
node-jsgrpcgrpc-webnodejstypescript
Netflix/bettertls

Dec 2016 - Jun 2022

BetterTLS: A Name Constraints test suite for HTTPS clients.
Contributions:3 reviews, 46 commits, 20 PRs in 5 years 6 months
securityclientstlssuite
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial