About me
Xin Hu
I am currently a senior staff security engineer at the security team at Robinhood working primarily on building security services, platforms and tools to protect the safety and integrity of Robinhood infrastructure and customer data. . Before joining Robinhood, I managed Infrastructure Security team at Pinterest after spending awesome 4 years as a Research Scientist in the IBM Security Research Department at IBM Thomas J. Watson Research Center. I received my Ph.D. in Computer Science and Engineering at the University of Michigan, Ann Arbor in 2011, under the direction of Professor Kang G. Shin.
My interest is primarily in the cybersecurity and I have hands on experience building large scale security solutions for:
Access control and identity management: SSO, identity management, authN, authZ, FIDO2, WebAuthN
PKI (Public Key Infrastructure), mTLS, L7 service authentication, encryption/decryption
Scalability and reliability: led the design that scale Robinhood's authentication system to handle over 3 million requests per second
Account security: ATO detection and prevention, MFA, compromised credential monitoring, passwordless login, device attestation
Detection and response framework: log ingestion, indexing, and alerting platform
Data privacy: data governance, PII management, GDPR, CCPA
Infrastructure Security: AWS security, Kubernetes (container security, image scanner, runtime monitoring), VPN
Machine learning powered security analytics