GitLab - Senior Infrastructure Security Engineer
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• Strong experience securing cloud infrastructure at scale (AWS/GCP/Azure), including IAM, networking, compute, and storage services • Proficiency in multiple programming languages (Go, Python, Ruby) with ability to build production-quality security tooling • Deep knowledge of container security, Kubernetes hardening, and orchestration platform security best practices • Extensive experience with Infrastructure-as-Code security (Terraform, Ansible, CloudFormation) including policy-as-code and automated compliance • Experience with or strong interest in leveraging AI to automate processes increasing efficiency • Experience leading technical initiatives across multiple teams with demonstrated ability to drive consensus and deliver results • Track record of identifying security risks in complex systems and implementing effective mitigations • Strong written and verbal communication skills, able to explain security trade-offs to both technical and non-technical audiences • Bonus: Experience in high-reliability domains (e.g. finance, healthcare, government, telecom) • Bonus: Familiarity with regulatory and compliance frameworks (e.g. PCI-DSS, FedRAMP, ISO27001, SOC II) • How GitLab will support you • Benefits to support your health, finances, and well-being • Flexible Paid Time Off • Team Member Resource Groups • Equity Compensation & Employee Stock Purchase Plan • Growth and Development Fund • Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application. • Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process. • Country Hiring Guidelines:
Responsibilities
• Lead cross-team infrastructure security initiatives from design through delivery, owning technical outcomes and stakeholder communication • Design and implement security solutions for cloud infrastructure, container platforms, and orchestration systems • Drive security reviews for infrastructure changes, providing guidance and identifying risks before they reach production • Develop secure patterns and reference implementations that enable engineering teams to deliver secure infrastructure quickly • Identify systemic security gaps in cloud, Kubernetes, and infrastructure configurations, then lead remediation efforts across affected systems • Partner with SRE, Infrastructure, and Engineering teams to integrate security into platform services and deployment pipelines • Mentor and partner with engineers supporting their professional development • Contribute to the team's technical roadmap, identifying high-impact security improvements aligned with business objectives • Fulfill the Product Security Division Mission of securing GitLab Infrastructure with our own product (“dogfooding”)
No credit card. Takes 10 seconds.