Kylie Stradley is a Senior Product Security Engineer with 12 years of software and security experience, currently shaping product-level security at GitHub after a multi-role tenure at Mailchimp. She combines deep practical engineering—Ruby/Rails and back-end contributions to projects like secure_headers—with security research work on high-impact open-source tooling such as CodeQL, enhancing detection of workflow and action vulnerabilities. Her background in operations and supply-chain analytics lends a systems-thinking approach to security, emphasizing automation and measurable risk reduction. Based in Atlanta, she’s comfortable moving between code, tests, and policy, and has a knack for turning operational inefficiencies into reproducible developer tooling.
11 years of coding experience
9 years of employment as a software developer
High School Diploma, High School Diploma at NORTHGATE HIGH SCHOOL
B.S. Business Administration, Operations & Supply Chain Management, Information Technology Management, B.S. Business Administration, Operations & Supply Chain Management, Information Technology Management at Georgia Institute of Technology
Manages application of security headers with many safe defaults
Role in this project:
Back-end Developer
Contributions:1 release, 14 reviews, 12 commits in 2 months
Contributions summary:Kylie primarily contributed to the `secure_headers` repository by fixing syntax errors, refactoring code, and implementing new features related to the Content Security Policy (CSP). Their work included modifying existing directives, adding support for the `trusted-types` directive, and adjusting tests to align with code changes. The user's changes focused on improving the functionality and testability of security header management within the Ruby on Rails application.
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Role in this project:
Security Engineer
Contributions:1 review, 3 PRs, 2 comments in 2 months
Contributions summary:Kylie's contributions focus on enhancing the security of the CodeQL project. They are implementing checks for potential vulnerabilities related to unversioned and immutable actions used in workflows. Their work involves creating new queries, modifying existing ones, and refactoring code to improve the detection of security flaws. The user also adds workflows to catch ineligible wildcards and eligible latest versions for immutable actions.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Kylie Stradley - Senior Product Security Engineer at GitHub