Director, Security Engineering – Platform Security

Title: Director, Security Engineering (Platform Security)

Location: Remote

The GitLab DevSecOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 2,000+ team members and values that foster a culture where people embrace the belief that everyone can contribute. Learn more about Life at GitLab.

This position is remote based.

The Director of Platform Security, Application Security role extends the Security Manager role.

The Director of Security, Platform Security will lead a globally distributed, growing team of Security Engineers, Data Engineers, and Managers. This reports to the CISO.

Responsibilities

• Drives strategy for the Platform Security Engineering organization, aligned with broader GitLab business initiatives, with a specific focus on production security services, data security engineering, applied machine learning, and security automation.
• Hire a world class team of managers, security analysts, security engineers, and security researchers.
• Drive quarterly OKRs
• Promote new and innovative security features for GitLab’s product and services
• Evaluate and improve security of GitLab’s CI/CD pipeline
• Work to scope and plan key deliverables with business stakeholders and development teams to ensure successful delivery
• Build strong, collaborative partnerships with internal and external stakeholders
• Ensure our engineers and contributors from the wider community run a secure software development lifecycle for GitLab by training them in best practices and creating automated tools.

Requirements

• 8+ years of experience leading teams of Engineers, Security Researchers, and Managers. Preferably, experience leading remote globally distributed teams
• Experience leading teams responsible for backend (or full stack) software development, data engineering, distributed systems, applied cryptography, machine learning, and security automation
• Strong commitment to talent development, training and coaching to acquire and retain key security talent
• Significant engineering and SaaS security experience in production-level settings
• Familiarity with secure software development best practices in Ruby, Go, and the common components underlying
• Experience with monorepos and CI best practices working with large code repositories
• Considerable knowledge of operating SaaS products and services and containerized workloads
• You share our values, and work in accordance with those values.
• Leadership at GitLab
• Ability to use GitLab

Performance Indicators

Security Management has the following job-family performance indicators.

• Hiring actual vs plan
• Diversity
• Handbook update frequency
• Team member retention
• HackerOne spend actual vs planned

Compensation

To view the full job description and its compensation calculator, view our handbook. The compensation calculator can be found towards the bottom of the page.

Additional details about our process can be found on our hiring page.

To view the full job description and its compensation calculator, view our handbook. The compensation calculator can be found towards the bottom of the page.

Additional details about our process can be found on our hiring page.

Remote-Global

Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.

Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.