The intersection of code, infrastructure, and security.
I'm a senior software engineer with nearly 30 years of PHP experience, building, deploying, and securing web applications. Started with PHP 2 in 1996 and have evolved with every major version since. My core expertise spans PHP and Laravel development, DevOps, and application security. Currently based in Spain, available for remote work worldwide. Fluent in Dutch, English, and Spanish.
Part-time CTO & Co-founder at Smoove Exchange, a startup building innovative solutions. Alongside this, I take on select freelance projects for clients who need senior-level PHP/Laravel expertise.
My most recent major project was building a platform from scratch to open the Private Equity market for private investors. Within 3 months after launch, the first customers were onboarded, and within almost a year, the first fund was completely filled.
Most developers don't think about security until it's too late. Most security professionals don't understand how code actually gets written. I've spent my career bridging that gap.
Having held my CISSP certification from 2001-2010, I understand the OWASP Top 10 not as an abstract list, but as specific code patterns I've seen—and fixed—in real applications.
This combination means I can help organisations build secure software from the start, rather than retrofitting security as an afterthought.
Started with PHP 2 in 1996, evolved through every major version. Nearly a decade of deep expertise in Laravel. Built everything from small business sites to high-traffic SaaS platforms handling millions of requests daily.
Nearly 30 years of experience managing Linux servers, configuring Nginx, optimising MySQL, and building deployment pipelines. If I write the code, I also know how to deploy and monitor it in production.
Held the CISSP certification from 2001-2010. This foundation in security principles continues to inform my approach to building robust, secure applications and conducting code security analysis.
Over two decades as an independent consultant, working as lead backend developer, code security analyst, mobile app issues fixer, bug fixer, and even as recruiter and treasurer for various organisations.
Vrije Universiteit Amsterdam (1990-1998)
2001-2010
ISC² certification covering all eight domains of information security.
PHP Certification
Professional certification demonstrating PHP expertise.
Java certification (2001)
Sun Microsystems Java programming certification.
Database certification
MySQL database certification.
Agile certification
Certified Scrum Master for agile project management.
Introduction to artificial intelligence
Introduction to artificial intelligence models.
A linting tool for Laravel Blade templates.
IP lookup utility at in.je/ip
Security scanning tool for detecting malicious code.
Building the tech community in the Alicante region of Spain.
Over two decades of working with organisations across various industries:
No jargon, no hand-waving. I'll tell you exactly what I think, what the risks are, and what it will take to fix things. Dutch directness is a feature, not a bug.
Perfect is the enemy of good. I focus on solutions that work in your context, with your constraints, not theoretical ideals that ignore reality.
My goal is to make your team better, not to create dependency. I document, explain, and train so you can maintain things independently.
Quick fixes that create future problems aren't solutions. I build for maintainability, because code lives longer than any of us expect.
Whether you have a project, a question, or just want to discuss PHP and security, I'm always happy to talk.