Kylie Stradley

Senior Product Security Engineer at GitHub

Atlanta, Georgia, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Kylie Stradley is a Senior Product Security Engineer with 12 years of software and security experience, currently shaping product-level security at GitHub after a multi-role tenure at Mailchimp. She combines deep practical engineering—Ruby/Rails and back-end contributions to projects like secure_headers—with security research work on high-impact open-source tooling such as CodeQL, enhancing detection of workflow and action vulnerabilities. Her background in operations and supply-chain analytics lends a systems-thinking approach to security, emphasizing automation and measurable risk reduction. Based in Atlanta, she’s comfortable moving between code, tests, and policy, and has a knack for turning operational inefficiencies into reproducible developer tooling.
code11 years of coding experience
job9 years of employment as a software developer
bookHigh School Diploma, High School Diploma at NORTHGATE HIGH SCHOOL
bookB.S. Business Administration, Operations & Supply Chain Management, Information Technology Management, B.S. Business Administration, Operations & Supply Chain Management, Information Technology Management at Georgia Institute of Technology
languagesFrench, German
github-logo-circle

Github Skills (15)

ruby10
it-security10
security10
github-advanced-security10
rspec10
semmle-ql10
codeql10
csc10
middleware9
regular-expression9
git8
version-control8
cookie4
rack4
hsts4

Programming languages (8)

TypeScriptDockerfileCSSSCSSJavaScriptCodeQLHTMLRuby

Github contributions (5)

github-logo-circle
github/secure_headers

May 2022 - Aug 2022

Manages application of security headers with many safe defaults
Role in this project:
userBack-end Developer
Contributions:1 release, 14 reviews, 12 commits in 2 months
Contributions summary:Kylie primarily contributed to the `secure_headers` repository by fixing syntax errors, refactoring code, and implementing new features related to the Content Security Policy (CSP). Their work included modifying existing directives, adding support for the `trusted-types` directive, and adjusting tests to align with code changes. The user's changes focused on improving the functionality and testability of security header management within the Ruby on Rails application.
csphttp-headersecure-headersracksecurity-headers
github/codeql

Dec 2024 - Feb 2025

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Role in this project:
userSecurity Engineer
Contributions:1 review, 3 PRs, 2 comments in 2 months
Contributions summary:Kylie's contributions focus on enhancing the security of the CodeQL project. They are implementing checks for potential vulnerabilities related to unversioned and immutable actions used in workflows. Their work involves creating new queries, modifying existing ones, and refactoring code to improve the detection of security flaws. The user also adds workflows to catch ineligible wildcards and eligible latest versions for immutable actions.
github-advanced-securitysecurity-toolsgithub-security-labsecurity-researcherssecurity
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Kylie Stradley - Senior Product Security Engineer at GitHub