As the Chief Technology Officer at GitHub, Mike Hanley is reshaping how developers approach security within the software industry. Recognizing that traditional developer tools lag in security measures, Hanley has championed a proactive, developer-focused approach, emphasizing a “shifting left” strategy. This entails embedding security directly into the development process—introducing feedback while code is written to prevent vulnerabilities early. His vision extends beyond GitHub’s platform to the broader open-source community, aspiring to create a culture where security is integral, intuitive, and accessible, even for developers who aren’t cybersecurity experts.
Before joining GitHub, Hanley brought years of expertise from notable roles, including as VP of Security at Duo Security and Chief Information Security Officer (CISO) at Cisco following Duo's $2.35 billion acquisition. His career in cybersecurity includes contributions at CERT/CC, where he worked on research and development for the U.S. Department of Defense and the Intelligence Community. Hanley initially served as the first Chief Security Officer at GitHub, a critical position underscoring GitHub’s shift toward a more security-centric identity.
Hanley’s focus remains on “getting the basics right” in security, a perspective he encourages across GitHub and its user community. He underscores the importance of foundational security measures, such as two-factor authentication (2FA), while empowering teams to make security-related decisions independently. Hanley believes that a strong security culture should prioritize simplicity and clarity, helping developers secure code effortlessly. He envisions a future where GitHub not only leads in software development but also strengthens global cybersecurity, addressing long-standing issues like credential security and providing developers with tools to safeguard critical open-source projects that underpin modern infrastructure.