GitLab
GitLab is the DevOps platform.
Remote
Remote

Infrastructure Security Engineer

+ 80 more | Remote
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

The GitLab DevOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 1,600+ team members and values that guide a culture where people embrace the belief that everyone can contribute.

As members of GitLab's Security Operations sub department, the Infrastructure Security engineers own security initiatives related to security of GitLab.com. They are Infrastructure's stable counterparts in the Security department, and as such work with various Infrastructure and Security teams to identify and mitigate security issues, vulnerabilities, and misconfigurations by applying their in-depth knowledge of operating systems, infrastructure, and cloud providers. They work very closely with the Security Incident Response Team and share their findings in a proactive manner. Successful Security Engineers thrive in high-stress environments and can think like both an attacker and defender, engage with and mentor more junior Security Engineers, and can help come up with proactive and preventative security measures to keep GitLab and its user’s data safe in an ever changing threat landscape.

It’s an exciting time to join our team.

GitLab's DevOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 1,400+ team members and values that guide a culture where people embrace the belief that everyone can contribute.

The culture here at GitLab is something we’re incredibly proud of. Some of the benefits you’ll be entitled to vary by the region or country you’re in. However, all GitLab team members are fully remote and receive a "no ask, must tell" paid-time-off policy, where we don’t count the number of days you take off annually -- instead, we focus on your results. You can work the hours you choose, enabled by our asynchronous approach to communication. You can also expect stock options and a competitive salary. Our compensation calculator will be shared with selected candidates before any interview.

Diversity, Inclusion, and Belonging (DIB) are fundamental to the success of GitLab. We want to infuse DIB in every way possible and in all that we do. We strive to create a transparent environment where all team members around the world feel that their voices are heard and welcomed. We also aim to be a place where people can show up as their full selves each day and contribute their best. With more than 100,000 organizations using GitLab, our goal is to have a team that is representative of our users.

What you’ll do in this role:

  • Be a stable counterpart for the Infrastructure department
  • Ownership of efforts related to the securing of GitLab's SaaS infrastructure
  • Ownership of vulnerability management and patching policies
  • Play a key role in the security incident response process
  • Be a stable counterpart for the Infrastructure department
  • Identify and help mitigate security issues, misconfigurations, and vulnerabilities related to GitLab’s cloud, container and Kubernetes infrastructure
  • Implement new, and update existing security measures for the protection of GitLab.com infrastructure
  • Utilize log ingestion platform for security analytics and identification of tactics, techniques and patterns of attackers
  • Contribute to creation of runbooks
  • Contribute to the production and tuning of detection rules

As a Senior level Infrastructure Security Engineer, you will also: 

  • Ownership of vulnerability management and patching policies
  • Develop, evangelize, and monitor the adoption of sound cloud security practices
  • Mentor other members of the Infrastructure Security and Security Incident Response Team
  • Perform root cause analysis (RCA) and incident reviews
  • Develop new, and review/update existing security-related configurations of GitLab’s infrastructure
  • Identify new, and ensure availability of existing GitLab.com data sources and logs that are being used by various GitLab Security teams
  • Ownership and management of preventative security measures and services related to GitLab.com, i.e. WAF, GCP’s Security Command Center

You should apply if you bring:

  • Ability to use GitLab
  • Demonstrated experience in cloud security, systems security, or site-reliability engineering
  • GCP or AWS experience, preferably in a security domain
  • Demonstrated experience with incident response
  • Substantial knowledge of the Linux operating system
  • Demonstrated experience with running systems at scale
  • Proficiency to communicate over a text-based medium (Slack, GitLab Issues, Email) and can succinctly document technical details
  • Share our values, and work in accordance with those values

If applying as Senior, you should also bring:

  • A minimum of 5 years experience working in site-reliability engineering, cloud security, or system engineering
  • A minimum of 2 years experience working with incident response
  • Excellent written and verbal communication skills
  • Capability to build working relationships with key stakeholders
  • Substantial knowledge of the Linux operating system and common OS hardening practices
  • Experience with infrastructure vulnerability scanning, vulnerability management and patching practices
  • Experience with logging systems and log analysis

Also, we know it’s tough, but please try to avoid the ​​confidence gap​.​​ You don’t have to match all the listed requirements exactly to be considered for this role.Our hiring process for this Infrastructure Security Engineer position typically follows four stages. The details of this process and our leveling structure can be found on our job family page

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process.

  • Qualified candidates will be invited to schedule a 30-minute screening call with one of our Global Recruiters.
  • Then, candidates will be invited to schedule a 50-minute interview with the team hiring manager.
  • Candidates will be invited to schedule 2 separate 50-minute interviews with Security Research team member peers.
  • Candidates will then be invited to schedule an interview with VP of Security
  • Successful candidates will subsequently be made an offer via email

Additional details about our process can be found on our hiring page.

About GitLab

GitLab Inc. is a company based on the GitLab open-source project. GitLab is a community project to which over 2,200 people worldwide have contributed. We are an active participant in this community, trying to serve its needs and lead by example. We have one vision: everyone can contribute to all digital content, and our mission is to change all creative work from read-only to read-write so that everyone can contribute.

We value results, transparency, sharing, freedom, efficiency, self-learning, frugality, collaboration, directness, kindness, diversity, inclusion and belonging, boring solutions, and quirkiness. If these values match your personality, work ethic, and personal goals, we encourage you to visit our primer to learn more. Open source is our culture, our way of life, our story, and what makes us truly unique.

Top 10 Reasons to Work for GitLab:

  1. Mission: Everyone can contribute
  2. Results: Fast growth, ambitious vision
  3. Flexible Work Hours: Plan your day so you are there for other people & have time for personal interests
  4. Transparency: Over 2,000 webpages in GitLab handbook, GitLab Unfiltered YouTube channel
  5. Iteration: Empower people to be effective & have an impact, Merge Request rate, We dogfood our own product, Directly responsible individuals
  6. Diversity, Inclusion & Belonging: A focus on gender parity, Team Member Resource Groups, other initiatives
  7. Collaboration: Kindness, saying thanks, intentionally organize informal communication, no ego
  8. Total Rewards: Competitive market rates for compensation, Equity compensation, global benefits (inclusive of office equipment)
  9. Work/Life Harmony: Flexible workday, Friends and Family days
  10. Remote Done Right: One of the world's largest all-remote companies, prolific inventor of remote best practices

See our culture page for more!

Work remotely from anywhere in the world. Curious to see what that looks like? Check out our remote manifesto and guides.

To view the full job description and its compensation calculator, view our handbook. The compensation calculator can be found towards the bottom of the page.

For Colorado residents: The base salary range for this role’s listed level is currently $103,600-$188,700 for Colorado residents only. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, and alignment with market data. See more information on our benefits and equity. Sales roles are also eligible for incentive pay targeted at up to 100% of the offered base salary. Disclosure as required by the Colorado Equal Pay for >Equal Work Act, C.R.S. § 8-5-101 et seq.

Additional details about our process can be found on our hiring page.

Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.  

Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.

See More
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • .NETLanguages
    • C#Languages
    • GolangLanguages
    • JavascriptLanguages
    • PythonLanguages
    • RubyLanguages
    • AWSLanguages
    • Ruby on RailsFrameworks
    • Vue.jsFrameworks
    • Google CloudFrameworks
    • PostgreSQLDatabases
    • SnowflakeDatabases
    • Google AnalyticsAnalytics
    • TableauAnalytics
    • SnowplowAnalytics
    • KinesisAnalytics
    • FigmaDesign
    • GitLabManagement
    • Chorus.AICRM
    • DocuSignCRM
    • LinkedIn SalesNavigatorCRM
    • SalesforceCRM
    • TroopsCRM
    • ClariCRM
    • GainsightCRM
    • ImpartnerCRM
    • MarketoLead Gen
    • ZoomInfoLead Gen
Previous
Next

What are GitLab Perks + Benefits

Culture
Volunteer in local community
Friends outside of work
Team owned deliverables
Diversity
Documented equal pay policy
Highly diverse management team
Unconscious bias training
Diversity manifesto
Mean gender pay gap below 10%
Hiring Practices that Promote Diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Mental Health Benefits
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Return-to-work program post parental leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Company Outings
Some Meals Provided
Happy Hours
Relocation Assistance
Home Office Stipend for Remote Employees
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Cross functional training encouraged
Promote from within
Mentorship program
Continuing Education stipend
Time allotted for learning
Online course subscriptions available

An Insider's view of GitLab

How do you collaborate with other teams in the company?

We typically collaborate with the broader customer success team, sales teams & product teams to ensure that the customer is successful when partnering with us. We heavily rely on slack channels, docs, issues for async collaboration. We also initiate meetings at times when we are looking to resolve certain issues or brainstorm in a short time frame.

Reshmi

Manager, Enterprise Solution Architecture

How does the company support your career growth?

From starting a new role, to being promoted in that role twice now, GitLab has provided me with the resources and support I need to drive my own professional growth. One of the most inspiring things I discovered here is how genuinely team members want to help their colleagues succeed, and all you have to do is put in the work and ask for help.

Chloe

Senior Technical Account Manager

How do you make yourself accessible to the rest of the team?

I created the engineering director shadow program so that anyone at GitLab can shadow me for one week. This allows the shadow to learn the perspective and workload of an engineering director while also enabling them to learn how I make decisions and receive mentoring. It also allows me to get some “reverse mentoring” on my communication.

Wayne

Director, Engineering

What projects are you most excited about?

The most exciting projects I get the opportunity to work on during my day is partnering with large enterprise companies using GitLab to solve their problems and optimize their use of the solution. I greatly enjoy helping them with their DevOps transformation and ensuring that they reap the greatest possible return on their investment in GitLab.

Chenje

Enterprise Technical Account Manager

More Jobs at GitLab