Julian Schauder
Open Source Strategist | DevSecOps Engineer
Focusing on secure software delivery, automation, and sustainable infrastructure. Advocate for Open Source, digital sovereignty, and transparent software supply chains. Contributor to the Linux Foundation’s OpenChain Project (ISO 5230; ISO 18974), SSDLC initiative (BSI/ZenDiS), Bitkom’s Open Source Guidelines, and the PostgreSQL community. Computer Scientist from HSNR.
Sovereign Infrastructure & DevSecOps: In 2024, joined the initial team at ZenDiS to lead the build-out of secure, sovereign software supply chains for Germany. Technical Product Manager at openCode focusing on platform- and security infrastructure ( e.g. SBOM automation, cve & vex workflows, attestations, legal documentation ) for national-scale OSS delivery.
Audit, Compliance & Secure Delivery: At PwC, scaled enterprise OSS audit processes by integrating security reviews, license compliance, and controls. Projects spanned regulated industries, M&A, and Open Source adoption.
Engineering & Infrastructure Automation: Early work focused on PostgreSQL infrastructure, high-performance and high-availability systems at credativ. Built tooling for automated deployments, backup orchestration, and observability across open source stacks.
Publications
Primary author of the whitepaper on secure software delivery, co-published by ZenDiS and BSI.
Co-author of the Bitkom "Open Source 3.0" guide, contributing primarily to the "Use" section.
Contributor to international standards for OSS compliance and vulnerability disclosure (Tooling Group & Audit Practices).
