RemoteLeaf Logo
Log in Sign up

Principal Cybersecurity Incident Manager (USA)

2 hours, 26 minutes ago
United States
Full-time
Lead
Penetration Tester
Cybersecurity
AWS DevSecOps GCP GitLab Kubernetes SIEM
Apply Now
GitLab

GitLab

GitLab: The comprehensive DevOps platform revolutionizing software development with automation, AI workflows, and essential tools for efficient collaboration.

Internet Software & Services
1K-5K
Founded 2014
View All Jobs 171

Description

  • Serve as the primary Incident Commander for critical and complex security incidents across GitLab.com and corporate infrastructure.
  • Coordinate response efforts across Security Operations, Infrastructure, Legal, Engineering, Product, and executive stakeholders.
  • Lead technical incident calls or async collaboration to keep response efforts focused and moving toward resolution.
  • Conduct blameless post-incident reviews and retrospectives, turning findings into action items and process improvements.
  • Design, maintain, and continuously improve incident response playbooks, runbooks, and standard operating procedures.
  • Build and refine incident command frameworks, communication protocols, and escalation procedures for a global all-remote organization.
  • Develop and deliver incident command training and mentor incident commanders at different levels.
  • Translate technical incident details into clear communications for executives, customers, and internal stakeholders.
  • Identify automation opportunities in incident response workflows and collaborate with engineering to build supporting tools.
  • Maintain awareness of current threat actors, attack vectors, and security trends to improve preparedness.

Requirements

  • 10+ years of experience in information security, including at least 5 years in incident response, security operations, or related disciplines.
  • Demonstrated experience serving as Incident Commander for critical security events in complex, distributed environments.
  • Proven ability to lead teams during high-stress, high-impact incidents with clarity, authority, and calm decisiveness.
  • Strong knowledge of attacker tactics, techniques, and procedures, such as the MITRE ATT&CK framework.
  • Technical proficiency with cloud infrastructure such as GCP and AWS, Kubernetes, and modern application architectures.
  • Experience with SIEM platforms, log analysis, and security monitoring tools.
  • Excellent written and verbal communication skills, including communicating technical concepts to non-technical stakeholders and executive leadership.
  • Demonstrated ability to build relationships and coordinate across security, engineering, legal, and business teams.
  • Ability to identify systemic issues from incident patterns and drive organizational improvements.
  • Must be a United States citizen due to government requirements.
  • Nice to have: Experience working in SRE, DevOps, or Infrastructure Engineering.
  • Nice to have: Experience with GitLab the product and familiarity with DevSecOps practices.
  • Nice to have: Experience working in an all-remote or distributed team environment.

Benefits

  • Base salary range of $168,000 to $270,000 USD.
  • Benefits to support health, finances, and well-being.
  • Flexible Paid Time Off.
  • Equity Compensation and Employee Stock Purchase Plan.
  • Growth and Development Fund.
  • Parental leave.
  • Home office support.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Twilio

Staff Engineer, Offensive Security

Twilio 5K-10K Diversified Telecommunication Services

Twilio is hiring a remote Staff Engineer, Offensive Security in Ireland to lead advanced offensive security work that identifies systemic risk across applications, networks, cloud environments, and AI systems.

Ireland Full-time Lead Penetration Tester
Android AWS Azure Bash Burp Suite C++ iOS Kubernetes Metasploit Network Security Nmap Penetration Testing Python SIEM TensorFlow Wireshark
26 minutes ago
Magnet Forensics

Vulnerability Researcher

Magnet Forensics 251-1K Internet Software & Services

Magnet Forensics is hiring a Vulnerability Researcher to support its remote research and development team in advancing digital investigative software used by customers worldwide.

Canada United Kingdom France Germany Spain Sweden Full-time Mid Level Penetration Tester
7 hours, 26 minutes ago
Coalfire

Principal, FedRAMP Advisory

Coalfire 251-1K Internet Software & Services

Coalfire is seeking a Principal Consultant, FedRAMP Advisory to lead public sector compliance engagements and guide clients through complex security and regulatory programs.

United States Full-time Lead Penetration Tester
$104k-$180k
AWS Azure Cybersecurity DevSecOps Encryption GCP
9 hours, 57 minutes ago
Infosys

Third Party Risk Management (TPRM) Consultant - Principal

Infosys 100K+ Internet Software & Services

Infosys Consulting is seeking a Principal Third Party Risk Management Consultant to lead enterprise third-party risk, GRC, and vendor assurance programs for clients across multiple industries.

Poland Full-time Lead Penetration Tester Program Manager
13 hours, 57 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers