An overview of this role

As a Manager, you will lead engineering teams to deliver cross-organizational collaborative results, leveraging your expertise in automation, SIEM operations, trust and safety, purple teaming, detection development and incident response to amplify high quality security program outcomes and enhance security protocols company-wide. You are well-versed in leading security incident response and are comfortable using critical thinking skills to resolve time-sensitive, complex incidents. You make good business decisions under pressure. You work across multiple teams to unblock engineers and resolve escalations where the problem and solutions, as well as risk strategy, may not be well defined. You'll champion a security-conscious culture, leading with metrics for data-driven decision making, developing security engineers to become high performers, tackling pressing security challenges with innovative solutions, ensuring the organization stays ahead of potential threats. You are comfortable being on-call, working nights and weekends when necessary, and volunteer when the team needs help. 

Find out more about the Security Operations team and responsibilities here:

• Incident Response
• Trust and Safety
• Red Team

What you’ll do  

• Serve as a trusted advisor as part of the security division’s leadership team, actively contributing to the program direction
• Mature Security Operations programs for new and existing service offerings
• Collaborate across teams to implement automation, detection development and to perform incident response, and minimizing the impact of trust and safety issues, driving the success of larger projects
• Provide leadership to multiple security operations team shifts that will sometimes require you to work on nights or weekends
• Actively develop high performing team members to consistently deliver advanced program results, solving systemic problems and delivering on complex projects
• Contribute to the development of security metrics to think critically, drive decisions and implement actionable insights
• Evangelize and implement a culture of security awareness across the company, through thought leadership
• Drive the team to deliver quality and on time and on budget quarterly Objectives and Key Results (OKRs), as well as critical security projects
• Proactively address high-impact and difficult security challenges, contributing to innovative solutions
• Identify trends and prevent recurring security issues through the contribution of proactive mitigations and adopted product changes
• Implement solutions that address complex and challenging security issues with cross-functional dependencies
• Productively handle ambiguity and make response related decisions, sometimes with incomplete information, driving consistently positive outcomes
• Responsible for cross-regional security incident response backup
• See your teams as the product, fulfilling the expectations of security leadership at GitLab

What you’ll bring 

• An exceptional ability to understand communicate complex technical issues and communicate effectively across multiple teams within the organization
• Excellent written and verbal communication skills
• Excellent leadership in incident detection engineering, response and automation, with a computer science background 
• A metrics-driven analytical mindset to champion cross-functional challenges and projects, with experience using tools such as Tableau
• Experience leading the efficient stakeholder management of SIEM tools, such as Splunk or Devo
• Hands-on proficiency with Google Cloud Platform (GCP), or AWS equivalent, and cloud forensics experience
• Proficiency in proactive hunting based on threat intelligence
• Innovative problem-solving skills on complex security issues within incident detection, response and mitigation
• Eagerness to effectively collaborate with cross-functional teams, actively fostering a culture of security awareness, and supporting the development of security solutions that impact larger projects
• Diplomacy and the ability to influence various audiences with compelling perspectives
• Comfortable working with ambiguity and making difficult decisions, with consistently positive outcomes
• Strong technical leadership skills and analytical skills

About the team

Security Operations is a globally distributed team of engineers split across three core regions; AMER, APAC and EMEA, and is at the forefront of security events that impact both GitLab.com and GitLab. We are both proactive and reactive, leading security investigations, conducting purple teaming exercises, incident response support and response resolution, through to cyber threat analysis and logging, detection, and response engineering. Even though we’re a global team, we work together in a cross-regional manner and have automation and processes to facilitate collaboration when resolving incidents, handovers, and general collaboration for project work as well.

How GitLab will support you

• Benefits to support your health, finances, and well-being
• All remote, asynchronous work environment
• Flexible Paid Time Off
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and development budget 
• Parental leave 
• Home office support

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.