Product Design Manager, Security Risk Management

About GitLab

GitLab is an open core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating the rate of human progress. This mission is integral to our culture, influencing how we hire, build products, and lead our industry. We make this possible at GitLab by running our operations on our product and staying aligned with our values.

Thanks to products like Duo Enterprise and Duo Workflow, customers get the benefit of AI at every stage of the SDLC. The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier. All team members are encouraged and expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact across our global organisation.

An overview of this role

GitLab is looking for a Product Design Manager to lead design for our Security Risk Management (SRM) stage that sits within the Security & Compliance section. This section provides GitLab Ultimate customers with comprehensive coverage for all their security needs across the SDLC, from development to production, including risk assessment, compliance frameworks, application security posture, and vulnerability management. We enable AppSec and Dev teams to efficiently release secure applications while maintaining rapid delivery.

As Product Design Manager, you’ll lead a team creating solutions for GitLab’s application security testing tools (SAST, SCA, Secret Scanning, DAST) and AI-powered vulnerability management. You will oversee design across the Security Insights, Security Platform management, and Security Policies groups - helping organizations build secure applications while reducing risk throughout the software supply chain.

In this role, you will own the delivery of UX commitments and product experience. You’ll develop and communicate the experience vision, support and position your team for success, improve team productivity and design processes, and collaborate with security experts, engineers, and managers across the Secure & Compliance section.

This position is distinctive as you’ll work at the intersection of multiple security workflows, requiring broad understanding of how different areas interconnect. You’ll design solutions that address the challenge of limited security resources by enabling developers to “shift left” and proactively address security issues. Your contributions will help create a platform that consolidates DevSecOps tools and workflows.

What you’ll do

• Proactively identify large, strategic UX opportunities that span both inside your areas and across the product. Work with other product design managers, staff, and principal product designers to drive cross-product initiatives through awareness and prioritization.
• Identify strategic user research initiatives that span multiple stage groups (and possibly the entire product), and work with other product design/research managers to organize research efforts.
• Be a frequent and active participant in milestones by reviewing UX deliverables (such as research and designs) that your team creates, and provide feedback to ensure high-quality output.
• Communicate the value of UX to cross-functional GitLab team members and work with them to leverage the product development flow.
• Help the product teams of areas you support to prioritize UX initiatives including Deferred UX, triage and resolution of UX bugs, and overall usability improvements to the product. Lead UX Scorecard initiatives in order to consistently measure the experience of your product areas and show improvements over time.
• Contribute to product direction conversations, with emphasis on leading the experience vision for your product areas.
• Hire, grow and retain a world-class team of designers.

What you’ll bring

• Experience managing a group of designers remotely, who work on complex products.
• Strong understanding of application security concepts (SAST, DAST, SCA, container security, IAST) and ability to design interfaces that help users navigate vulnerabilities, prioritize remediation, and demonstrate compliance.
• Experience designing dashboards and workflows that help organizations to effectively and translate complex security data into actionable insights for diverse stakeholders and manage risk.
• Familiarity with popular security scanners like Checkmarx, Snyk, Wiz, Palo Alto, and Veracode and they are used by developers and security teams. Deep experience designing products that balance security with usability.
• Experience defining/executing on the high-level strategy (the why) and creating design deliverables (the how) based on research.
• Experience driving organizational change with cross-functional stakeholders, including Product Management and Engineering.
• Solid visual awareness with understanding of basic design principles and accessibility.
• You share our values, and work in accordance with those values.
• You possess leadership qualities needed to thrive at Gitlab.
• Ability to use GitLab.

How GitLab will support you

• Benefits to support your health, finances, and well-being
• All remote, asynchronous work environment
• Flexible Paid Time Off
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and development budget
• Parental leave
• Home office support

The base salary range for this role’s listed level is currently for residents of listed locations only. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, and alignment with market data. Sales roles are also eligible for incentive pay targeted at up to 100% of the offered base salary.

Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.