GitLab is an open core software company that develops the most comprehensive
AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating the rate of human progress. This mission is integral to our culture, influencing how we hire, build products, and lead our industry. We make this possible at GitLab by running our operations on our product and staying aligned with our values.
Learn more about Life at GitLab.
An overview of this role
As a Manager, you will lead engineering teams to deliver cross-organizational collaborative results, leveraging your expertise in automation, SIEM operations, trust and safety, purple teaming, detection development and incident response to amplify high quality security program outcomes and enhance security protocols company-wide. You are well-versed in leading security incident response and are comfortable using critical thinking skills to resolve time-sensitive, complex incidents. You make good business decisions under pressure.
You work across multiple teams to unblock engineers and resolve escalations where the problem and solutions, as well as risk strategy, may not be well defined. You'll champion a security-conscious culture, leading with metrics for data-driven decision making, developing security engineers to become high performers, tackling pressing security challenges with innovative solutions, ensuring the organization stays ahead of potential threats. You are comfortable being on-call, working nights and weekends when necessary, and volunteer when the team needs help. Find out more about the Security Operations team and responsibilities here:
- Incident Response
- Trust and Safety
- Red Team
What you’ll do
- Serve as a trusted advisor as part of the security division’s leadership team, actively contributing to the program direction
- Mature Security Operations programs for new and existing service offerings
- Collaborate across teams to implement automation, detection development and to perform incident response, and minimizing the impact of trust and safety issues, driving the success of larger projects
- Provide leadership to multiple security operations team shifts that will sometimes require you to work on nights or weekends
- Actively develop high performing team members to consistently deliver advanced program results, solving systemic problems and delivering on complex projects
- Contribute to the development of security metrics to think critically, drive decisions and implement actionable insights
- Evangelize and implement a culture of security awareness across the company, through thought leadership
- Drive the team to deliver quality and on time and on budget quarterly Objectives and Key Results (OKRs), as well as critical security projects
- Proactively address high-impact and difficult security challenges, contributing to innovative solutions
- Identify trends and prevent recurring security issues through the contribution of proactive mitigations and adopted product changes
- Implement solutions that address complex and challenging security issues with cross-functional dependencies
- Productively handle ambiguity and make response related decisions, sometimes with incomplete information, driving consistently positive outcomes
- Responsible for cross-regional security incident response backup
- See your teams as the product, fulfilling the expectations of security leadership at GitLab
What you’ll bring
- An exceptional ability to understand communicate complex technical issues and communicate effectively across multiple teams within the organization
- Excellent written and verbal communication skills
- Excellent leadership in incident detection engineering, response and automation, with a computer science background
- A metrics-driven analytical mindset to champion cross-functional challenges and projects, with experience using tools such as Tableau
- Experience leading the efficient stakeholder management of SIEM tools, such as Splunk or Devo
- Hands-on proficiency with Google Cloud Platform (GCP), or AWS equivalent, and cloud forensics experience
- Proficiency in proactive hunting based on threat intelligence
- Innovative problem-solving skills on complex security issues within incident detection, response and mitigation
- Eagerness to effectively collaborate with cross-functional teams, actively fostering a culture of security awareness, and supporting the development of security solutions that impact larger projects
- Diplomacy and the ability to influence various audiences with compelling perspectives
- Comfortable working with ambiguity and making difficult decisions, with consistently positive outcomes
- Strong technical leadership skills and analytical skills
About the team
Security Operations is a globally distributed team of engineers split across three core regions; AMER, APAC and EMEA, and is at the forefront of security events that impact both GitLab.com and GitLab. We are both proactive and reactive, leading security investigations, conducting purple teaming exercises, incident response support and response resolution, through to cyber threat analysis and logging, detection, and response engineering. Even though we’re a global team, we work together in a cross-regional manner and have automation and processes to facilitate collaboration when resolving incidents, handovers, and general collaboration for project work as well.
How GitLab will support you
- Benefits to support your health, finances, and well-being
- All remote, asynchronous work environment
- Flexible Paid Time Off
- Team Member Resource Groups
- Equity Compensation & Employee Stock Purchase Plan
- Growth and development budget
- Parental leave
- Home office support
Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.
#LI-JM1
Country Hiring Guidelines:
GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.
Privacy Policy:
Please review our
Recruitment Privacy Policy. Your privacy is important to us.GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law.
GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.