Madison Ficorilli is a security-focused engineering manager with six years of experience leading vulnerability curation and incident response at GitHub, where she runs the Advisory Database team that powers Dependabot and operates one of the most active CVE Naming Authorities. She combines hands-on incident leadership—having coordinated responses to high-profile incidents like Log4Shell—with program-level work in CVE and OpenSSF community groups to improve ecosystem-wide vulnerability processes. A Penn State and Carnegie Mellon graduate, she previously led vulnerability coordination at CERT/SEI and has taught applied threat detection as an adjunct professor. Known for turning complex disclosure and remediation challenges into scalable, auditable workflows, she blends technical rigor with policy-savvy collaboration across security, engineering, and legal stakeholders.
6 years of coding experience
2 years of employment as a software developer
Bachelor of Science (B.S.), Security and Risk Analysis - Information and Cyber Security Option, Senior, Bachelor of Science (B.S.), Security and Risk Analysis - Information and Cyber Security Option, Senior at Pennsylvania State University-University Park
Master’s Degree, Information Security Policy and Management, Master’s Degree, Information Security Policy and Management at Carnegie Mellon University - H. John Heinz III College
Contributions:18 pushes, 1 branch, 1 issue in 3 years 6 months
configbadgeconfig-files
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.