Manager - Infrastructure Security
An overview of this role
Infrastructure Security plays a critical role in GitLab as it holds responsibility for securing the infrastructure components that constitute our public cloud, cloud native, and software pipeline environments that our customers depend on to power their DevSecOps goals. You’ll be focused on fostering and developing an existing high performance team on their journey to redefine the benchmark for Infrastructure Security through relentless advocacy of our Core Values and Dogfooding. You’ll maintain strong partnerships with peers across GitLab (e.g. Infrastructure, Finance, Product and Legal) to ensure that the team can contribute effectively to cross-functional initiatives building security in from the foundation upward. When needed, you’ll leverage your extensive infrastructure experience and conflict resolution skills to unblock decisions. You’ll collaborate with the Product Security Leadership to develop and refine the Infrastructure Security vision and strategic roadmap.
Relevant Links:
What you’ll do
Contribute to the infrastructure security team’s vision and strategic roadmap
Own and be responsible for securing
GitLab’s customer-facing infrastructure which encompasses our multi-tenant, dedicated, government, and on-prem architectures.
Infrastructure that supports GitLab’s software supply chain.
Provide professional guidance and input on infrastructure security within and outside of your team
Collaborate with other security teams in support of
cross-team security efforts
Process improvements
Driving down risk across the organization
Build collaborative cross-functional partnerships with teams across
Infrastructure Engineering
Engineering and Development
Product Management; and
Legal
Manage an existing high performing team of infrastructure security professionals along with hiring new members as appropriate
Lead and mentor your team by
helping grow their skills and experience
fostering a culture of continuous improvement
holding regular 1:1’s
being your team’s role model in terms of exemplifying GitLab company values, positive thinking, and managing conflict
Establish and implement security policies, procedures, standards, and guidelines in support of infrastructure security
What you’ll bring
Experience with:
Public cloud security
Ideally, practical experience with site-reliability engineering
CI/CD at a practitioner level
Google Cloud Platform or Amazon Web Services
Docker, Kubernetes, Cloud Native technologies and Serverless technologies
Managing SaaS infrastructure security related issues especially within regulated environments such as FedRAMP and GDPR
leading and implementing automation implementations in the service of infrastructure security (things like CSPM, Ansible, Terraform, etc)
Knowledge of:
infrastructure security issues, mitigations, and a solid grasp of the current global threat landscape
distributed architectures
systems design at an infrastructure component level
threat modeling at the infrastructure level
Strongly skilled in:
written and verbal communication
presentation skills to a variety of stakeholders
collaborating with a global and diverse workforce
adapting to evolving circumstances, technologies, and strategic priorities, while leading complex initiatives
managing and developing teams of at least 5 people
Able to
deliver results that are “good enough” in the face of ambiguity and imperfect knowledge
excel in a remote-only, asynchronous, multicultural, and distributed environment
Alignment with Manager responsibilities as outlined in Leadership at GitLab
How GitLab will support you
All remote, asynchronous work environment
Home office support
Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.
About the job
Apply for this position
Manager - Infrastructure Security
An overview of this role
Infrastructure Security plays a critical role in GitLab as it holds responsibility for securing the infrastructure components that constitute our public cloud, cloud native, and software pipeline environments that our customers depend on to power their DevSecOps goals. You’ll be focused on fostering and developing an existing high performance team on their journey to redefine the benchmark for Infrastructure Security through relentless advocacy of our Core Values and Dogfooding. You’ll maintain strong partnerships with peers across GitLab (e.g. Infrastructure, Finance, Product and Legal) to ensure that the team can contribute effectively to cross-functional initiatives building security in from the foundation upward. When needed, you’ll leverage your extensive infrastructure experience and conflict resolution skills to unblock decisions. You’ll collaborate with the Product Security Leadership to develop and refine the Infrastructure Security vision and strategic roadmap.
Relevant Links:
What you’ll do
Contribute to the infrastructure security team’s vision and strategic roadmap
Own and be responsible for securing
GitLab’s customer-facing infrastructure which encompasses our multi-tenant, dedicated, government, and on-prem architectures.
Infrastructure that supports GitLab’s software supply chain.
Provide professional guidance and input on infrastructure security within and outside of your team
Collaborate with other security teams in support of
cross-team security efforts
Process improvements
Driving down risk across the organization
Build collaborative cross-functional partnerships with teams across
Infrastructure Engineering
Engineering and Development
Product Management; and
Legal
Manage an existing high performing team of infrastructure security professionals along with hiring new members as appropriate
Lead and mentor your team by
helping grow their skills and experience
fostering a culture of continuous improvement
holding regular 1:1’s
being your team’s role model in terms of exemplifying GitLab company values, positive thinking, and managing conflict
Establish and implement security policies, procedures, standards, and guidelines in support of infrastructure security
What you’ll bring
Experience with:
Public cloud security
Ideally, practical experience with site-reliability engineering
CI/CD at a practitioner level
Google Cloud Platform or Amazon Web Services
Docker, Kubernetes, Cloud Native technologies and Serverless technologies
Managing SaaS infrastructure security related issues especially within regulated environments such as FedRAMP and GDPR
leading and implementing automation implementations in the service of infrastructure security (things like CSPM, Ansible, Terraform, etc)
Knowledge of:
infrastructure security issues, mitigations, and a solid grasp of the current global threat landscape
distributed architectures
systems design at an infrastructure component level
threat modeling at the infrastructure level
Strongly skilled in:
written and verbal communication
presentation skills to a variety of stakeholders
collaborating with a global and diverse workforce
adapting to evolving circumstances, technologies, and strategic priorities, while leading complex initiatives
managing and developing teams of at least 5 people
Able to
deliver results that are “good enough” in the face of ambiguity and imperfect knowledge
excel in a remote-only, asynchronous, multicultural, and distributed environment
Alignment with Manager responsibilities as outlined in Leadership at GitLab
How GitLab will support you
All remote, asynchronous work environment
Home office support
Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.