Rahul Zhade

Software Engineer

New York, New York, United States6 yrs 2 mos experience
Highly Stable

Key Highlights

  • Led security for GitHub's Copilot product suite.
  • Developed internal tools identifying 10 vulnerabilities daily.
  • Created security standards enhancing compliance education.
Stackforce AI infers this person is a SaaS Application Security Engineer with extensive experience in vulnerability management and product security.

Contact

LinkedIn

Skills

Core Skills

Product SecuritySecurity StandardsSecurity AuditingApplication SecurityVulnerability ManagementThreat MonitoringSecurity ReviewSecurity TestingSoftware DevelopmentFuzz TestingTeaching

Other Skills

Penetration TestingThreat ModelingCodeQLtfsecBrakemanRuby on RailsGo (Programming Language)Node.jsMicroservicesGoFuzzingCArduinoAmazon Web Services (AWS)Secure Code Review

About

I’m an application security engineer at GitHub! My skills include application development and reviewing software architecture and code for security vulnerabilities.

Experience

6 yrs 2 mos
Total Experience
6 yrs 2 mos
Average Tenure
6 yrs 2 mos
Current Experience

Github

3 roles

Staff Product Security Engineer

Promoted

Mar 2026Present · 2 mos

Senior Product Security Engineer

Promoted

Mar 2023Feb 2026 · 2 yrs 11 mos

  • Led product security for Copilot product suite, reducing review timelines from several weeks to less than one week by coordinating multiple security and compliance teams
  • Created internal application security standard for internal Golang, JavaScript, and AI applications to proactively enforce and educate developers on compliance and security requirements
  • Developed several internal auditing tools to identify code and infrastructure errors in CI, using CodeQL, tfsec and Brakeman, identifying an average of 10 vulnerabilities a day
  • Designed internal Security Portal and created internal security standard for all Golang, JavaScript and AI applications, increasing speed of security requirement generation from two weeks to self service process of less than three hours
Penetration TestingThreat ModelingProduct SecuritySecurity Standards

Application Security Engineer

Feb 2020Mar 2023 · 3 yrs 1 mo

  • Built Rails application to automate vulnerability lifecycle management, tracking and assisting with prioritization of over 1000 vulnerabilities with FEDRAMP POAM reporting functionality
  • Developed and maintained a Go-based backend job system to monitor for emerging threats to the business, preventing over 20 valid bounty reports a year
  • Conducted acquisition security review of npm, performing multiple technical reviews and risk assessments of entire architecture and infrastructure to surface technical debt and compliance issues to inform acquisition timeline and remediation efforts
  • Managed Bug Bounty program by triaging and remediating vulnerabilities, including organizing and running private bounty engagements with over 30 private bounty hunters
  • Led threat modeling, design reviews and security testing for over 100 new feature launches
Ruby on RailsGo (Programming Language)Application SecurityVulnerability Management

Datacoral inc

Software Developer Intern

May 2019Aug 2019 · 3 mos · San Francisco Bay Area

  • Developed and maintained Node.js microservices for data orchestration
  • Designed API and corresponding UX for onboarding, login and management flows
Node.jsMicroservicesSoftware Development

Github

2 roles

Application Security Contractor

Sep 2018Apr 2019 · 7 mos

Application Security Intern

Jun 2018Aug 2018 · 2 mos

  • Expanded functionality of internal fuzzer tool to provide support for Golang projects, resulting in discovery of three high severity corruption bugs in open source and internal dependencies
  • Validated and triaged automatic report of 400+ potential vulnerabilities to assist in Microsoft acquisition
  • Managed public bounty program
GoFuzzingFuzz Testing

Coding with kids

Camp Instructor

Jun 2017Aug 2017 · 2 mos · Greater Seattle Area

  • Ran several summer coding camps for K-12 students as an instructor. Curriculums for camps included Minecraft Modding in Java, and Introduction to Arduino in Robot C.
CArduinoTeaching

Education

Georgia Institute of Technology

Bachelor's degree — Computer Science

Jan 2016Jan 2019

Stackforce found 100+ more professionals with Product Security & Security Standards

Explore similar profiles based on matching skills and experience

SA

Sahil Ahamad

Security Analyst, Bug Bounty

at Meta

London, United Kingdom12 yrs 6 mos exp
bug bounty managementpenetration testingsecurity auditsvulnerability assessments
Anand Choksi, CISSP, CRISC, CDPSE, CISA, PMP

Anand Choksi, CISSP, CRISC, CDPSE, CISA, PMP

Head - Information Security Compliance

at Razorpay

Bengaluru, India16 yrs 10 mos exp
Business ContinuityData ProtectionGRCIT AuditInformation Security
D Tarun Chaithanya

D Tarun Chaithanya

Software Developer

at AMD

Hyderabad, India11 mos exp
Asha N

Asha N

Principal Consultant

at Daimler Truck Innovation Center India (DTICI)

Chennai, India13 yrs 5 mos exp
Information Security Management System (ISMS)Information Security
Sanjay Mahalingam

Sanjay Mahalingam

Founder

at Spacetil

New York, United States12 yrs 3 mos exp
Artificial IntelligenceStart-up VenturesMachine LearningJava
Jyoti Founder

Jyoti Founder

Founder

at GOG Analytics IT Solutions INC

Delhi, India6 yrs 8 mos exp
RecruitingBusiness Development
Garima Arora

Garima Arora

Sr. Software Development Engineer at AWS EMR

at Amazon Web Services (AWS)

Seattle, United States7 yrs 9 mos exp
Amazon Web Services (AWS)Software Development
Avik Chowdhury

Avik Chowdhury

Senior Cloud Security Engineer

at FalconX

Bengaluru, India12 yrs 4 mos exp
Application SecurityCloud OperationsCloud SecurityCybersecurityIncident Management