Security Engineers at GitLab work on securing our product and on internal security. On the product side, this includes the open source version of GitLab, the enterprise editions, and the GitLab.com service. Security Engineers work with peers on cross-functional teams dedicated to areas of the product. They also work together with product managers, developers, and the infrastructure teams to solve common goals.

The Security Automation role focuses on developing internal tooling and automation mechanisms to scale the security team. While it is valuable to have a security background, ideally, we are seeking candidates who have a primary background of software development (DevSecOps), with some security experience, and are most passionate about developing tooling and automation.

The Security Team is responsible for leading and implementing the various initiatives that relate to improving GitLab’s security.

Responsibilities

• • Build security tooling and automation for internal use that enable the security team to operate at high speed and wide scale
  • Assess security tools and integrate tools as needed
  • Assist with recruiting activities and administrative work
  • Define and own metrics and key performance indicators to determine the effectiveness of security programs
  • Define, implement, and monitor security measures to protect GitLab.com and company assets

Requirements

• • Previous experience on a Security Operations team, especially experience coordinating responses to security incidents
  • Extensive scripting/coding experience with one or more languages
  • Extensive knowledge of Internet security issues, cloud architectures, and threat landscape
  • Solid understanding of the Software as a Service (SaaS) model
  • Experience with Cloud Computing Platforms – especially GCP and GCP-related services
  • Excellent written and verbal communication skills
  • Demonstrable teamwork skills and resourcefulness
  • Familiarity with cloud security controls and best practices
  • Passion for open source
  • Linux experience (e.g. Ubuntu)
  • Network security experience (Routing, firewalls, VPNs, common services and protocols)

Hiring Process

• • Applicants for this position can expect the hiring process to follow the order below. Please keep in mind that applicants can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find her/his job title on our team page .
  • Selected candidates will be invited to schedule a screening call with a Recruiter
  • Next, candidates will be invited to schedule a 45 minute technical interview with the Director of Security
  • Candidates will then be invited to schedule a 45 minute interview with a Security Team member
  • Candidates will then be invited to schedule a 45 minute interview with a second Security Team member
  • Candidates will be invited to schedule an interview with our VP of Engineering
  • Finally, candidates may have a 50 minute interview with our CEO
  • Successful candidates will subsequently be made an offer via email
  • As always, the interviews and screening call will be conducted via a video call. See more details about our hiring process on the hiring handbook .

Compensation

• • Please view the compensation range for this role at the bottom of the position description.

Remote-ZIM

About GitLab

GitLab Inc. is a company based on the GitLab open-source project. GitLab is a community project to which over 1,000 people worldwide have contributed. We are an active participant in this community, trying to serve its needs and lead by example. We have one vision : everyone can contribute to all digital content, and our mission is to change all creative work from read-only to read-write so that everyone can contribute.

We value results, transparency, sharing, freedom, efficiency, frugality, collaboration, directness, kindness, diversity, boring solutions, and quirkiness. If these values match your personality, work ethic, and personal goals, we encourage you to visit our primer to learn more. Open source is our culture, our way of life, our story, and what makes us truly unique.

Avoid the confidence gap ; you do not have to match all the listed requirements exactly to apply. Our hiring process is described in more detail in our hiring handbook .

Work remotely from anywhere in the world. Curious to see what that looks like? Check out our remote manifesto .

There are unfortunately a few countries we are unable to hire in right now, kindly review our Country Hiring page for further info: https://about.gitlab.com/jobs/faq/#country-hiring-guidelines

Top 10 Reasons To Work For GitLab

• Work with helpful, kind, motivated, and talented people.
• Work remote so you have no commute and are free to travel and move.
• Have flexible work hours so you are there for other people and free to plan the day how you like.
• Everyone works remote, but you don’t feel remote. We don’t have a head office, so you’re not in a satellite office.
• Work on open source software so you can interact with a large community and can show your work.
• Work on a product you use every day: we drink our own wine.
• Work on a product used by lots of people that care about what you do.
• As a company we contribute more than we take, most of our work is released as the open source GitLab CE.
• Focused on results, not on long hours, so that you can have a life and don’t burn out.
• Open internal processes: know what you’re getting in to and be assured we’re thoughtful and effective.

See our culture page for more!