Sr. Manager, Security Operations Engineering at GitLab

Title: Sr. Manager, Security Operations Engineering (USA, West Coast)

Location: Remote, US

JobDescription:

The GitLab DevSecOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 2,000+ team members and values that foster a culture where people embrace the belief that everyone can contribute. Learn more about Life at GitLab.

An overview of this role

As a Senior Manager, you will lead engineering teams to deliver cross-organizational collaborative results, leveraging your expertise in automation, log engineering, threat intelligence, trust and safety, red-teaming, purple teaming, detection development and incident response to amplify high quality security program outcomes and enhance security protocols company-wide. You are an expert in incident response and are comfortable using critical thinking skills to resolve time-sensitive, complex incidents. You make good business decisions under pressure. You work across multiple organizations to unblock teams and resolve escalations where the problem and solutions, as well as risk strategy, may not be well defined. You’ll champion a security-conscious culture, leading with metrics for data-driven decision making, developing security engineers to become high performers, tackling pressing security challenges with innovative solutions, ensuring the organization stays ahead of potential threats. You are comfortable being on-call, working nights and weekends when necessary, and volunteer when the team needs help.

Find out more about the Security Operations team and responsibilities here:

• Incident Response
• Trust and Safety
• SIEM Operations
• Red Team

What you’ll do

• Provide leadership to multiple security operations team shifts that will sometimes require you to be available on nights or weekends.
• Serve as trusted advisor as part of the security division’s leadership team, actively shaping the program direction
• Build and mature Security Operations programs for new and existing service offerings
• Collaborate across teams as a trusted advisor in automation, log engineering, detection development and incident response, driving the success of larger projects
• Actively develop high performing team members to consistently deliver advanced program results, solving systemic problems and delivering on complex projects
• Lead efforts in developing security metrics to think critically, drive decisions and resolve intricate issues
• Evangelize and foster a culture of security awareness across the company, and within the industry through thought leadership
• Drive the team to deliver quality and on time and on budget quarterly Objectives and Key Results (OKRs), as well as critical security projects
• Proactively address high-impact and difficult security challenges, contributing to innovative solutions
• Identify trends and prevent recurring security issues through the contribution of proactive mitigations and adopted product changes
• Implement solutions that address complex and challenging security issues with cross-functional dependencies
• Productively handle ambiguity and make response related decisions, sometimes with incomplete information, driving consistently positive outcomes
• Responsible for overflow Director responsibilities
• See your teams as the product, fulfilling the expectations of security leadership at GitLab

What you’ll bring

• An exceptional ability to understand communicate complex technical issues and communicate effectively across multiple levels of the organization
• Excellent written and verbal communication skills
• Expert-level leadership in incident detection engineering, response and automation, with a computer science background
• A metrics-driven analytical mindset to champion cross-functional challenges and projects, with experience using tools such as Tableau
• Experience leading the efficient management of SIEM tools, such as Splunk or Devo
• Current working knowledge of Google Cloud Platform (GCP) and cloud forensics
• Proficiency in proactive hunting based on threat intelligence
• Innovative problem-solving skills on complex security issues within incident detection, response and mitigation
• Eagerness to effectively collaborate with cross-functional teams, actively fostering a culture of security awareness, and supporting the development of security solutions that impact larger projects
• Diplomacy and the ability to influence various audiences with compelling perspectives
• Comfortable working with ambiguity and making difficult decisions, with consistently positive outcomes
• Strong technical leadership skills and analytical skills

About the team

Security Operations is a globally distributed team of engineers split across three core regions; AMER, APAC and EMEA, and is at the forefront of security events that impact both GitLab.com and GitLab. We are both proactive and reactive, leading security investigations, conducting purple teaming exercises, incident response support and response resolution, through to cyber threat analysis and logging, detection, and response engineering. Even though we’re a global team, we work together in a cross-regional manner and have automation and processes to facilitate collaboration when resolving incidents, handovers, and general collaboration for project work as well.

How GitLab will support you

• Benefits to support your health, finances, and well-being
• All remote, asynchronous work environment
• Flexible Paid Time Off
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and development budget
• Parental leave
• Home office support

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you’re excited about this role, please apply and allow our recruiters to assess your application.

The base salary range for this role’s listed level is currently for residents of listed locations only. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, and alignment with market data. See more information on our benefits and equity. Sales roles are also eligible for incentive pay targeted at up to 100% of the offered base salary.

Colorado/Washington pay range

$168,000—$324,000 USD

California/Hawaii/New York/New Jersey pay range

$168,000—$360,000 USD

Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.

Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.