GitLab

GitLab

GitLab: The comprehensive DevOps platform revolutionizing software development with automation, AI workflows, and essential tools for efficient collaboration.

Internet Software & Services
1K-5K
Founded 2014

Description

  • Set the long-term strategy and operating model for Product Security across GitLab.com, GitLab Dedicated, and self-managed offerings.
  • Lead a global, multi-disciplinary organization spanning application security, product security engineering, security architecture and platforms, vulnerability management, PSIRT, and infrastructure, cloud, and data security.
  • Partner with senior leaders across Engineering, Product, AI, and Security to embed security into product architecture, planning, and delivery.
  • Own the roadmap for core security services and developer-facing platform capabilities, including authentication, authorization, secrets management, auditability, and security APIs.
  • Drive secure design reviews, threat modeling, and risk-based security practices that help teams ship securely with minimal friction.
  • Guide GitLab’s approach to AI and agentic security, including security architecture, governance decisions, and risk acceptance for new AI surfaces.
  • Oversee vulnerability management, product security incident response, and bug bounty operations.
  • Use trends and root-cause analysis to drive durable product and process improvements.
  • Establish security metrics, planning inputs, and risk visibility to support executive decision-making, customer conversations, and engineering prioritization.

Requirements

  • Senior engineering or security leadership experience with strong product engineering credibility and ownership of security-relevant product architecture.
  • Experience building, shipping, and operating services in a high-growth SaaS or AI environment.
  • Experience leading multi-disciplinary organizations through Directors, Senior Managers, and senior individual contributors in a distributed, remote-first setting.
  • Knowledge of secure design, threat modeling, web application and API security, and modern authentication and authorization patterns.
  • Familiarity with software supply chain security, CI/CD pipelines, vulnerability management, incident response, and cloud security concepts.
  • Experience partnering with Product, Engineering, AI, and Security leaders to turn risk, customer needs, and technical trade-offs into practical roadmaps and decisions.
  • Strong written and verbal communication skills, including presenting technical risk and business trade-offs to executives, customers, and stakeholders.
  • Open to candidates with different career paths, including product engineering leaders with deep security ownership or security leaders with a strong record of building and shipping products.
  • Must be a United States Citizen due to government requirements.
  • Nice to have: experience with developer tools, DevOps/DevSecOps platforms, large-scale open-source projects, security standards and frameworks such as OWASP, NIST, and SLSA, bug bounty and coordinated disclosure programs, or regulated/security-sensitive customer environments such as financial services, government, or healthcare.

Benefits

  • Base salary range of $297,600 to $360,000 USD for the listed level in the United States.
  • Flexible Paid Time Off.
  • Equity compensation and an Employee Stock Purchase Plan.
  • Growth and Development Fund.
  • Parental leave.
  • Benefits to support health, finances, and well-being.
  • Team Member Resource Groups.
  • Remote work with roles generally offered globally, subject to location-based eligibility requirements.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

B2B Commercial Product Manager

Google 100K+ Internet Software & Services

GFiber is hiring a Commercial Product Manager to lead the strategy and growth of its B2B connectivity portfolio for SMB and enterprise customers across its internet services business.

20 hours, 18 minutes ago

Head of Category Management

SupplyHouse.com 251-1K Building Materials

SupplyHouse.com is hiring a remote Head of Category Management to lead enterprise category strategy, vendor partnerships, financial performance, and team development for its merchandising organization.

20 hours, 18 minutes ago

Senior Product Manager, Internal Tools

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a CorpTech Platform product leader to drive its internal AI builder tools platform for employees across the company, from factory operations to executive teams.

CRM ERP
20 hours, 33 minutes ago

Associate Director of Social Commerce

Power Digital is seeking an Associate Director of Social Commerce to lead cross-functional social commerce strategy, optimize platform and affiliate-driven revenue, and help scale new commerce offerings across the business.

Affiliate Marketing Content Marketing Email Marketing Influencer Marketing SEO Social Media Marketing TikTok
20 hours, 33 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers