Programming Java since 1996. Developer Advocate, conference speaker, author and Arctic expedition trainer.
Former Developer Advocate at JFrog and Vaadin. DevOps Institute Ambassador, JCP Member and Oracle Developer Champion.
Bridging the gap between development communities and product teams by advocating for developer-friendly products, engaging in hands-on coding, building demos and contributing directly to development projects.
International conference speaker (US/CA, EU, Australia, Singapore)
Responsible for DACH, Australia/New Zealand and Singapore regions.
POCs for potential corporate customers
Blogs, books and articles — online and print media
Conference speaker: US/CA, EU, AU/NZ, Singapore
Topics: Core Java, Kotlin, Vaadin and server-side technologies
Head of R&D
2015 – 2017
Macros reply GmbH
Responsible for the development of the new product generation. Improved QM/QA and team performance. Technical focus on performance scalability and architecture refactoring. Core Java
Kotlin
Vaadin
CDI
JAX-RS
Hazelcast
MapDB
Principal IT Consultant
2014 – 2015
codecentric AG, Munich
Responsible for customer development team (15+ developers). Improved QM/QA and delivery performance. Focus on performance scalability and architecture refactoring. Core Java
CDI
JAX-RS
Hazelcast
Vaadin
Oracle
Cassandra
Principal Architect / Technology Scout
2013 – 2014
SiteOS AG, Munich
Responsible for Swing-to-JavaFX migration of a 15-year-old product with 1 million lines of code. Core Java and performance improvements on client and server. Core Java
CDI
Swing
JavaFX
Hibernate
Hazelcast
(Interim) COO/CTO
2012 – 2013
Jtel GmbH, Munich
Responsible for refactoring a web-based call centre product. Core Java and performance improvements on client and server. Core Java
CDI
JavaEE
JSF
SQL
Lead Architect / Project Manager – Freelancer
2007 – 2014
Europe and Asia
Java projects: server-side, persistence layer and distributed computing
EU research project on distributed search engines and data/text mining for German SMEs
QM/QA lead for large German tourist booking portal — managing up to 50 developers in India
Testing framework for automated UI testing of JavaFX applications. Integrates with JUnit, supports cross-platform testing and provides a high-level API for simulating user interactions.
Advisory Board
2022 – present
MicroStream Software GmbH, Regensburg
Advisory board member for MicroStream — high-performance Java object persistence, eliminating the need for ORM and SQL.
Ambassador
2021 – present
DevOps Institute
Ambassador for the DevOps Institute — advancing the human elements of DevOps through education, certifications and community engagement.
JCP Member
2016 – present
Java Community Process
Active member of the Java Community Process, participating in the development and revision of Java technology specifications.
Head of Cloud Native Security
2015 – present
DOAG (Deutsche Oracle-Anwendergruppe)
Leading the Cloud Native Security special interest group within the German Oracle Users Group.
Founder & Organiser – Kotlin User Group Munich
2015 – present
1,700+ Members · meetup.com
Founded and organise the Kotlin User Group Munich, one of Germany's largest Kotlin communities.
Relational database design, query optimisation, stored procedures across Oracle, PostgreSQL and DB2.
Bash
Shell scripting for build pipelines, deployment automation and server administration.
Frameworks & Libraries
Skill
Description
Vaadin Flow
Full-stack Java web UI framework. Building server-side web applications with a pure Java API — no JavaScript required. Developer Advocate at Vaadin 2017–2019.
EclipseStore / MicroStream
High-performance Java object graph persistence. Eliminates ORM and SQL overhead by directly persisting Java objects. Advisory Board member at MicroStream.
Spring Boot
Rapid application development on the Spring ecosystem — REST APIs, security, data access, microservices.
CDI
Contexts and Dependency Injection for JavaEE/Jakarta EE — used extensively in enterprise projects.
JAX-RS
RESTful web services in Java EE environments.
JUnit5
Advanced testing with parameterised tests, dynamic tests, custom extensions and TestFactory. Author of multiple articles and a workshop on effective JUnit5 usage.
TestFX
Open-source project lead. Automated UI testing framework for JavaFX applications — integrates with JUnit and supports cross-platform testing.
Hazelcast
In-memory data grid for distributed caching, clustering and computation across multiple Java enterprise projects.
Security
Skill
Description
OWASP Top 10
Deep knowledge of the ten most critical web application security risks — injection, XSS, broken access control, etc. — with practical mitigation strategies in Java.
DevSecOps
Integrating security practices throughout the development lifecycle: security as code, automated checks in CI/CD pipelines, shift-left security.
SAST / DAST
Static Application Security Testing (code analysis) and Dynamic Application Security Testing (runtime analysis). Tool selection, pipeline integration and result triage.
CWE / CVE
Common Weakness Enumeration and Common Vulnerabilities and Exposures — author of a dedicated blog series covering CWE-22, CWE-377, CWE-416, CWE-787, CWE-778 and more.
CVSS
Common Vulnerability Scoring System — calculating and interpreting severity scores for vulnerability prioritisation.
EPSS
Exploit Prediction Scoring System — probabilistic model for assessing the likelihood of vulnerability exploitation.
Supply Chain Security
Dependency confusion, cache poisoning, SBOM, artefact signing and integrity verification in Maven/Gradle build pipelines.
SLSA
Supply chain Levels for Software Artefacts — Linux Foundation framework for improving software supply chain integrity.
Build & DevOps
Skill
Description
Maven
Expert-level: multi-module projects, custom plugins, dependency management, reproducible builds and security hardening of the Maven build pipeline.
Gradle
Build automation for Android and JVM projects. Custom tasks, build scans and incremental builds.
JFrog Artifactory
Universal artefact repository management. Binary management, access control and replication. Developer Advocate at JFrog 2020–2024.
JFrog Xray
Continuous security and compliance scanning of artefacts and dependencies — CVE detection, licence compliance and policy enforcement.
Docker
Containerisation of Java applications, multi-stage builds, image optimisation and container security scanning.
Atlassian Stack
Jira, Confluence, Bitbucket — project management, documentation and code review workflows for distributed teams.
