GitLab

GitLab is the most comprehensive AI-powered DevSecOps platform.

Remote

View Profile

Jobs//Remote//Cybersecurity + IT//

Application Security Engineer or Senior Application Security Engineer

Sorry, this job was removed at 6:31 p.m. (CST) on Tuesday, August 24, 2021

View 8062 Jobs

Find out who’s hiring remotely Nationwide

See all Remote jobs Nationwide

View 8062 Jobs

Easy Apply

By clicking Apply Now you agree to share your profile information with the hiring company.

This position is remote based.

Security Engineers at GitLab work on securing our product and on internal security. On the product side, this includes the open source version of GitLab, the enterprise editions, and the GitLab.com service. Security Engineers work with peers on cross-functional teams dedicated to areas of the product. They also work together with product managers, developers, and the infrastructure teams to solve common goals.

The Security Application role focuses on working with functional groups across GitLab to assess the security architecture of new products and capabilities. Examples include executing and maintaining a security review program, and working with development teams to define and evangelize security best practices.

The Security Team is responsible for leading and implementing the various initiatives that relate to improving GitLab's security.

Responsibilities

Own vulnerability management and mitigation approaches
Conduct threat modeling tied to security services
Conduct application security reviews
Implement secure architecture design
Provide security training and outreach to internal development teams
Develop security guidance documentation
Assist with recruiting activities and administrative work
Define, implement, and monitor security measures to protect GitLab.com and company assets

Requirements

Familiarity with common security libraries, security controls, and common security flaws that apply to Ruby on Rails applications
Some development experience (Ruby and Ruby on Rails preferred; for GitLab debugging)
Experience with OWASP, static/dynamic analysis, and common exploit tools and methods
Experience with Google Cloud and GCP-related services
Experience with Go and Automation are pluses
Comfortable with using Git
Excellent written and verbal communication skills
Demonstrable teamwork skills and resourcefulness
Passion for open source
Linux experience (e.g. Ubuntu)

Compensation

Please view the compensation range for this role at the bottom of the position description.

Remote-North America

Remote-Global

Remote-APAC

Remote-EMEA

Remote-US

Country Hiring Guidelines

Please visit our Country Hiring Guidelines page to see where we can hire.

Your Privacy

For information about our privacy practices in the recruitment process, please visit our Recruitment Privacy Policy page.

Easy Apply

By clicking Apply Now you agree to share your profile information with the hiring company.

Email For Later

loading ...

Emailed

By clicking Apply Now you agree to share your profile information with the hiring company.

Darva Satcher

Director of Engineering

Listen and Learn

Building an inclusive workplace starts at the top

An inclusive environment helps GitLab retain talent often marginalized in tech. “Learning about Black team members' experiences is the first step toward making them feel included,” Satcher, a member of the Black@GitLab Team Member Resource Group, said. Black employees are invited to monthly meetings with the CEO to offer ideas about what works and what needs improvement in the workplace. Satcher has found leadership’s adaptability personally beneficial. With the company’s support, she has spoken at the Black is Tech conference and mentored three women who have recently received promotions.

Mentors are available to team members if they need additional guidance or support once they know what is expected.

Helen Mason

Mid-Market Area Sales Manager

You Belong

There’s always space to fit in

As an openly gay woman, Mason said she feels extremely accepted at GitLab and is able to do her best work as a result. That sense of belonging is reflected in her membership in multiple TMRGs, including GitLab Women, Black @ GitLab and GitLab Pride, which she co-leads. Recently, Gitlab Pride hosted a talk with a gender fluid executive from an external organization. “I could not imagine that such a talk would even be sanctioned, let alone well-attended and well-received, in other companies. It really showed me how GitLab is driving the DIB conversation.”

Knowing I can be included with people like me and be an ally to others motivates me to go the extra mile.

Eliran Mesika

Senior Director, Corporate Development

Around the World

A focus on GitLab’s global team

Mesika takes a balanced, holistic approach to DEI that benefits GitLab and the team. He knows diverse teams perform better and smarter. “I’m keen to help drive that diversity through my actions and contributions,” Mesika said. One such contribution is the Global Voices TMRG, which Mesika launched and leads. Global Voices brings awareness to GitLab’s globally diverse team and actively improves the daily work life of team members. “I’m very proud of the amazing contributions that emerged from Global Voices to better the practice and work environment of global team members,” Mesika said.

Global representation and equity in how global team members collaborate at GitLab is something I’m passionate about iterating and improving.

What are GitLab Perks + Benefits

GitLab Benefits Overview

We offer benefits to manage your health, wealth, and well-being regardless of location with the flexibility in schedule to be there for life’s important moments.

Culture

Volunteer in local community

OKR operational model

Team based strategic planning

Flexible work schedule

Remote work program

Diversity

Documented equal pay policy

Dedicated diversity and inclusion staff

Highly diverse management team

Mandated unconscious bias training

Diversity manifesto