Engineering Manager, Security Risk Management: Security Insights

Join GitLab: Engineering Manager, Security Risk Management – Security Insights

GitLab is an open-core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating human progress. Our platform unites teams and organizations, breaking down barriers and redefining what's possible in software development. Thanks to products like Duo Enterprise and Duo Agent Platform, customers get AI benefits at every stage of the SDLC. 🚀

The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier, with all team members expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact. GitLab is where careers accelerate, innovation flourishes, and every voice is valued. Our high-performance culture is driven by our values and continuous knowledge exchange, enabling our team members to reach their full potential while collaborating with industry leaders to solve complex problems. Co-create the future with us as we build technology that transforms how the world develops software.

An overview of this role

The Engineering Manager specializes in the management of people, with a specific focus on Application Security Posture Management. This role will lead a team building features within the Security Risk Management stage, primarily focused on Vulnerability Management, Dependency Management, and the Security Dashboard. Engineering Managers at GitLab see their team as their product. While they are technically credible and know the details of what engineers work on, their time is spent safeguarding their team's health, hiring a world-class team, and putting them in the best position to succeed. They own the delivery of product commitments and are always looking to improve productivity. They must also coordinate across departments to accomplish collaborative goals.

What You’ll Do

• Lead and grow a high-performing engineering team focused on Application Security Posture Management within the Security Risk Management stage
• Guide the technical direction of the Security Insights team while ensuring alignment with GitLab's overall security strategy and vision
• Manage cross-functional dependencies by coordinating with other engineering teams, product, UX, and QA
• Collaborate with Product Managers to define and prioritize the roadmap for Security Insights features
• Drive the delivery of features focused on Vulnerability Management, Dependency Management, and Security Dashboard capabilities
• Represent the team in planning meetings and stakeholder discussions, effectively communicating progress, challenges, and requirements
• Develop and mentor engineers through regular 1:1s, providing clear feedback and growth opportunities
• Hire, onboard, and retain world-class engineering talent to build a diverse and inclusive team

What You’ll Bring

• Engineering management experience with a focus on people development and delivery excellence
• Strong technical background in software development, preferably with experience in application security, vulnerability management, or related fields
• Experience with modern software development practices, including agile methodologies, CI/CD, and software testing
• Understanding of security concepts, particularly in vulnerability assessment, dependency scanning, and security dashboard implementations
• Demonstrated ability to drive engineering excellence through code quality, test automation, and operational reliability
• Experience building, maintaining, and optimizing high-scale systems with a focus on performance, reliability, and scalability
• Track record of successful product delivery in a complex software environment
• Strong analytical skills for problem-solving and decision-making

About the team

The Security Insights team is part of the Security Risk Management stage at GitLab, focused on helping users identify, prioritize, and remediate security vulnerabilities efficiently. The team operates within three focused swimlanes: Performance and Optimization, Projects, and AI, each approaching work in vertical slices to enable progress on multiple fronts while reducing planning overhead.

For FY25, the team's top priorities include:

• Enabling users to identify risk and visualize trends through enhanced Security Dashboards
• Estimating potential impact and likelihood of vulnerability exploitation using industry risk scores
• Enabling tracking of vulnerabilities across multiple branches
• Offering AI-powered guidance for vulnerability remediation
• Ensuring features are reliable and perform at scale

The team follows GitLab's Product Development Flow and maintains a structured milestone planning process. Engineering excellence is emphasized through async issue updates, a dedicated support rotation, and robust quality assurance practices. The team welcomes community contributions and fosters cross-stack collaboration, encouraging frontend engineers to contribute to the backend and vice versa.

As the Engineering Manager for Security Insights, you'll be joining a collaborative and transparent organization that values remote work, results, iteration, and community contribution. You'll play a key role in GitLab's mission to make security accessible to all developers, helping organizations build more secure software efficiently.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. If you have a disability or special need that requires accommodation, please let us know.