The GitLab DevSecOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 2,000+ team members and values that foster a culture where people embrace the belief that everyone can contribute. Learn more about Life at GitLab.

An overview of this role

As a Manager, you will lead engineering teams to deliver cross-organizational collaborative results, leveraging your expertise in automation, log engineering, trust and safety, purple teaming, detection development and incident response to amplify high quality security program outcomes and enhance security protocols company-wide. You are well-versed in leading security incident response and are comfortable using critical thinking skills to resolve time-sensitive, complex incidents. You make good business decisions under pressure. You work across multiple teams to unblock engineers and resolve escalations where the problem and solutions, as well as risk strategy, may not be well defined. You’ll champion a security-conscious culture, leading with metrics for data-driven decision making, developing security engineers to become high performers, tackling pressing security challenges with innovative solutions, ensuring the organization stays ahead of potential threats. You are comfortable being on-call, working nights and weekends when necessary, and volunteer when the team needs help. 

Find out more about the Security Operations team and responsibilities here:

• Incident Response
• Trust and Safety
• SIEM Operations
• Red Team

What you’ll do  

• Serve as a trusted advisor as part of the security division’s leadership team, actively contributing to the program direction
• Mature Security Operations programs for new and existing service offerings
• Collaborate across teams to implement automation, log engineering, detection development and to perform incident response, driving the success of larger projects
• Provide leadership to multiple security operations team shifts that will sometimes require you to work on nights or weekends.
• Actively develop high performing team members to consistently deliver advanced program results, solving systemic problems and delivering on complex projects
• Contribute to the development of security metrics to think critically, drive decisions and implement actionable insights
• Evangelize and implement a culture of security awareness across the company, through thought leadership
• Drive the team to deliver quality and on time and on budget quarterly Objectives and Key Results (OKRs), as well as critical security projects
• Proactively address high-impact and difficult security challenges, contributing to innovative solutions
• Identify trends and prevent recurring security issues through the contribution of proactive mitigations and adopted product changes
• Implement solutions that address complex and challenging security issues with cross-functional dependencies
• Productively handle ambiguity and make response related decisions, sometimes with incomplete information, driving consistently positive outcomes
• Responsible for cross-regional security incident response backup
• See your teams as the product, fulfilling the expectations of security leadership at GitLab

What you’ll bring 

• An exceptional ability to understand communicate complex technical issues and communicate effectively across multiple teams within the organization
• Excellent written and verbal communication skills
• Excellent leadership in incident detection engineering, response and automation, with a computer science background 
• A metrics-driven analytical mindset to champion cross-functional challenges and projects, with experience using tools such as Tableau
• Experience leading the efficient management of SIEM tools, such as Splunk or Devo
• Current working knowledge of Google Cloud Platform (GCP) and cloud forensics
• Proficiency in proactive hunting based on threat intelligence
• Innovative problem-solving skills on complex security issues within incident detection, response and mitigation
• Eagerness to effectively collaborate with cross-functional teams, actively fostering a culture of security awareness, and supporting the development of security solutions that impact larger projects
• Diplomacy and the ability to influence various audiences with compelling perspectives
• Comfortable working with ambiguity and making difficult decisions, with consistently positive outcomes
• Strong technical leadership skills and analytical skills

About the team

Security Operations is a globally distributed team of engineers split across three core regions; AMER, APAC and EMEA, and is at the forefront of security events that impact both GitLab.com and GitLab. We are both proactive and reactive, leading security investigations, conducting purple teaming exercises, incident response support and response resolution, through to cyber threat analysis and logging, detection, and response engineering. Even though we’re a global team, we work together in a cross-regional manner and have automation and processes to facilitate collaboration when resolving incidents, handovers, and general collaboration for project work as well.

How GitLab will support you

• Benefits to support your health, finances, and well-being
• All remote, asynchronous work environment
• Flexible Paid Time Off
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and development budget 
• Parental leave 
• Home office support

Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.  

Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.