Staff Security Infrastructure Engineer, Red Team

Within the Product Security team, our Red Team delivers robust security assurance for Okta's products, services, and infrastructure.  You will be the team's dedicated infrastructure and tooling engineer, the first person in this role for a small team of operators. You will work alongside operators but not report through an operator chain; you'll collaborate as a peer focused on a different discipline.

We seek a Staff Security Infrastructure Engineer to own the engineering backbone that enables our operations. This is not a traditional operator role but a dedicated infrastructure, tooling, and automation engineering position embedded within the Red Team.  You will design, build, maintain, and continuously improve the platforms, infrastructure, and custom tooling that our operators depend on to execute engagements.

Your work directly enables the team to operate at a higher maturity level: faster infrastructure deployment, more resilient and OPSEC-aware architecture, automated workflows, and reliable custom tooling, freeing operators to focus on the mission.  Your role will also extend to cultivating stakeholder collaboration and elevating our company’s security posture through strategic engagement and proactive measures.  As the team matures, this role can evolve toward platform leadership, custom capability development, or a hybrid operator/engineer path.

What You Will Do

• Infrastructure Engineering & Automation:
• Own the full lifecycle of red team infrastructure: design, provisioning, configuration, maintenance, and teardown
• Build and maintain Infrastructure-as-Code (IaC) using Terraform (or equivalent) to automate deployment of C2 servers, redirectors, phishing infrastructure, payload-delivery systems, and supporting services.
• Resource and asset lifecycle management through tracking domains, certificates, cloud accounts, recurring expenses, and infrastructure resources; managing acquisition, rotation, and retirement.
• Tooling Development & Maintenance:
• Develop, maintain, and improve custom tools, scripts, and automation to support red team operations (e.g., payload generation pipelines, log aggregation, C2 profile management, infrastructure health checks), providing on-demand infrastructure/tooling support when issues or gaps arise.
• Collaborate closely with operators during engagement planning to understand infrastructure requirements, OPSEC constraints, and operational timelines.
• Building and maintaining a representative test environment for pre-operation validation of tools and tradecraft against a security stack similar to the target.
• Maintaining the team's source code repository with merge/pull request processes, documentation, and code quality standards.
• Ensuring engagement evidence, infrastructure logs, and operational data are centrally collected and accessible for reporting and after-action reviews.
• Contribute to and maintain metrics that demonstrate infrastructure maturity, operational efficiency, and readiness (e.g., deployment time, rebuild time, infrastructure availability during engagements).
• Security & OPSEC:
• Design infrastructure with OPSEC as a first-class requirement: network segmentation, traffic separation between operations, credential management, and access controls 
• Implement and manage secure access to red team infrastructure
• Create and update operational runbooks, infrastructure documentation, and SOPs for the team.
• Maintain clear records of infrastructure ownership and attribution to support deconfliction processes.

What You Bring

Required

• 8+ years of professional experience in infrastructure engineering, DevOps, platform engineering, or a similar role with significant automation responsibilities
• Strong familiarity with Terraform (or equivalent IaC tooling) for multi-cloud infrastructure provisioning and management
• Experience operating in cloud-native, SaaS, or identity-focused environments
• Strong proficiency with configuration management tools (Ansible, or equivalent)
• Proficiency in at least one systems programming or scripting language (Python, Go, Bash) with disciplined development practices (version control, code review, testing, documentation)
• Solid understanding of Linux systems administration, networking fundamentals (DNS, HTTP/S, TCP/IP, proxying, TLS), and cloud platforms (AWS, GCP, or Azure)
• Understanding of OPSEC principles as they apply to offensive infrastructure — you know why redirector chains, domain categorization, traffic separation, and certificate management matter.

Strongly Preferred

• Experience building and maintaining CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins, or similar)
• Familiarity with containerization and orchestration (Docker, Kubernetes) as applicable to tooling and lab environments
• Familiarity with C2 frameworks (Cobalt Strike, Mythic, Sliver, or similar) from an infrastructure and deployment perspective — you don't need to operate them, but you need to understand what operators need from the infrastructure
• Familiarity with detection evasion concepts as they relate to infrastructure (e.g., traffic shaping, hosting provider reputation, certificate transparency)

Nice to Have

• Working knowledge of Blue Team operations and related technologies
• Experience with security tool development (implant development, payload engineering, evasion tooling) — this role can grow in that direction
• Familiarity with Red Team maturity models and how infrastructure/tooling capabilities map to organizational maturity 

Note: This is not an operator role. You will not be the person running hands-on-keyboard engagements as your primary function. While you may participate in operations to understand requirements or provide support, your core mission is ensuring the team's infrastructure, workflows, tooling, and automation are reliable, repeatable, and mature. You are the engineering foundation the operators build on.

#LI-TM

#LI-Hybrid

(P22302_3403905)

About the Role

We are looking for a Director of Engineering to lead the teams building the core primitives for Workflows and Function Runtime at GitLab. You will own the strategy, architecture, and delivery of scalable, multi-tenant, and cost-efficient distributed systems that become shared infrastructure for many product groups across GitLab.

This is a hands-on leadership role: you’ll work directly with senior and principal engineers on design and technical decisions, while also building and scaling a high-performing, values-aligned engineering organization.

What You’ll Do

• Own the technical vision and roadmap for GitLab’s core Workflow and Function Runtime primitives, in partnership with Product, Architecture, and other platform teams.
• Lead and grow multiple engineering teams responsible for highly available, horizontally scalable, and secure distributed systems used across GitLab.
• Be hands-on with architecture and code: review designs, dive into incidents, and contribute to critical paths where needed.
• Drive operational excellence for these shared services, including SLOs, on-call, incident response, capacity planning, and resilience across regions and tenants.
• Optimize for cost and efficiency at scale, balancing performance, reliability, and unit economics for long-running and bursty workloads.
• Define and mature platform APIs and abstractions that allow product teams to compose workflows, schedule functions, and integrate with the runtime safely and predictably.
• Create a strong engineering culture focused on results, iteration, ownership, and rigorous technical judgment.
• Collaborate across the company (Product Management, Security, Infrastructure, Data, AI/ML, and other stage groups) to ensure the platform primitives meet the needs of diverse workloads.
• Recruit, develop, and retain senior and staff-level engineers and managers; provide clear expectations, feedback, and growth paths.
• Champion GitLab values (results, transparency, efficiency, collaboration, diversity & inclusion) in how the team plans, executes, and communicates.

What You’ll Bring

• Proven experience leading teams building core platform or infrastructure services (e.g., workflow engines, function runtimes, control planes, high-scale microservices, or similar distributed systems).
• Track record as a hands-on engineering leader: you’ve meaningfully contributed to architecture and design, and you are comfortable reading/writing code to unblock or clarify.
• Strong background in scalable, multi-tenant distributed systems, including topics such as service decomposition, data partitioning, fault tolerance, and backpressure.
• Demonstrated success operating mission-critical services in production (SLOs, on-call, incident management, postmortems, capacity management, chaos/DR testing).
• Experience driving cost efficiency in cloud-native environments (profiling, performance tuning, right-sizing, storage and network optimization, and thoughtful use of managed services).
• Familiarity with Kubernetes, modern cloud infrastructure (AWS/GCP/Azure), and event-driven/async architectures; experience with function-as-a-service or serverless runtimes is a plus.
• People leadership experience managing managers and senior/staff engineers, with a record of hiring, coaching, and building inclusive, high-trust teams.
• Ability to work effectively in a fully remote, globally distributed organization, with excellent written and asynchronous communication skills.
• 10+ years of professional software engineering experience, including 4–6+ years in engineering leadership (multi-team or org-level scope).

About the Role

We are looking for a Distinguished Engineer to pioneer and scale autonomous, agentic SDLC capabilities across GitLab. Distinguished Engineers are recognized experts across multiple technology domains and represent the most senior level of technical leadership within and across divisions at the company.

In this role you will deeply immerse in GitLab's product and internal engineering workflows to identify classes of problems that can be wholly or largely addressed by AI agents, validate them through rigorous experimentation in production-adjacent environments, and codify patterns that can be productized for our millions of users. You will act as a bridge between Architecture, Product, Infrastructure, and Data and ML teams, ensuring that agentic capabilities deliver durable value internally first and then scale reliably and securely to our customers.

This role reports to a Director-level engineering leader.

What You'll Do

• Define and continuously refine a company-wide technical vision for autonomous, agentic SDLC that aligns with GitLab's product strategy and Engineering job architecture.
• Identify and prioritize non-linear productivity opportunities across the SDLC, from planning and coding to review, security, compliance, and operations, targeting 10x step changes rather than incremental gains.
• Translate ambiguous problem spaces into concrete, iterable roadmaps in partnership with Product, AI and ML, and Architecture teams.
• Lead hands-on experiments and prototypes to validate where agentic workflows can fully own or materially reshape engineering tasks, including autonomous MR authoring, test creation and triage, security remediation, release readiness, and incident response.
• Design and implement reference architectures for agentic SDLC inside GitLab, including orchestration patterns, safety guardrails, observability, and human-in-the-loop controls.
• Define evaluation frameworks using offline benchmarks and online experiments to measure correctness, latency, safety, cost, and productivity impact of agentic workflows.
• Select and own a small set of high-impact internal use cases as pathfinders and drive them from concept through adoption to measurable productivity gains.
• Work directly with engineering teams to embed agentic workflows into day-to-day development, ensuring they are trusted, observable, and resilient.
• Define and track core productivity metrics such as cycle time, MTTR, and MR throughput, and link agentic interventions to real business outcomes.
• Capture and codify reusable patterns, libraries, and playbooks that other teams can adopt with minimal friction.
• Work with Product Management and Engineering leadership to convert proven internal patterns into product capabilities that can be safely and reliably offered to customers.
• Ensure designs respect multi-tenant, compliance, and data governance requirements across GitLab.com and self-managed customers.
• Serve as a point of escalation for complex technical and architectural decisions related to agentic workflows, AI safety, and large-scale systems integration.
• Mentor Principal and Staff Engineers working on AI and agentic efforts, raising the overall bar for technical execution, experimentation rigor, and cross-team collaboration.
• Write clear, opinionated design documents, architecture narratives, and decision records that help teams make aligned, high-quality decisions independently.
• Represent GitLab in the broader ecosystem at conferences, standards groups, and open source communities on topics such as AI-assisted development, autonomous agents, and productivity measurement.
• Partner with Security and Compliance to define guardrails, review processes, and monitoring for agentic features, ensuring responsible use of AI and protection of customer data.
• Work with Reliability and SRE teams to ensure that agentic services are observable, debuggable, and resilient, and that failure modes degrade gracefully.

What You'll Bring

• 10+ years of software engineering experience, including 4+ years in a Staff, Principal, or equivalent senior technical leadership role.
• Deep expertise in AI and ML systems, including large language models, agentic frameworks, and autonomous workflow design at production scale.
• Proven track record of leading hands-on technical experimentation, including defining evaluation frameworks, running benchmarks, and translating findings into scalable architecture decisions.
• Strong background in scalable, multi-tenant distributed systems, including service decomposition, fault tolerance, observability, and operational resilience.
• Experience designing and implementing human-in-the-loop controls, safety guardrails, and responsible AI practices for production systems.
• Demonstrated ability to drive cross-functional alignment across Engineering, Product, Infrastructure, and Data and ML teams on complex, ambiguous technical challenges.
• Experience mentoring senior engineers and influencing technical direction across multiple teams or divisions without direct authority.
• Ability to work effectively in a fully remote, globally distributed organization with excellent written and asynchronous communication skills.
• Familiarity with GitLab's DevSecOps platform, CI/CD primitives, and the software development lifecycle is a strong plus.

Location: United States or Canada 

As a Contract Sourcer at GitLab, you'll help build strong candidate pipelines for our sales team
in the AMER region in a fully remote, distributed company. You'll focus on finding and engaging
passive talent for sales roles, while partnering closely with recruiters, hiring managers, and
business leaders to understand hiring needs and local market dynamics. This is a highly
outbound role where your research, outreach, and judgment will directly influence hiring
outcomes. You'll also help strengthen sourcing practices by mapping talent markets, building
pipelines, and improving how we identify and connect with great candidates in a values-driven
environment.

What you'll do

● Source and engage passive candidates for sales roles across the AMER region using
LinkedIn, online research, events, and other outbound channels.
● Build representative candidate pipelines with meaningful focus on identifying talent from
a wide range of backgrounds and experiences.
● Partner with recruiters and hiring managers to understand role requirements, business
priorities, and ideal candidate profiles.
● Map talent markets and gather intelligence on competitors, locations, and candidate
pools to inform sourcing strategies.
● Assess candidate alignment for specific roles, teams, and GitLab's values, and share
clear recommendations with recruiting partners.
● Screen and qualify candidates, building and maintaining talent benches across multiple
countries in the AMER region to ensure strong pipeline depth and readiness for evolving
business needs.
● Deliver a strong candidate experience through thoughtful outreach, timely
communication, and professional relationship building.
● Continuously improve sourcing workflows, outreach approaches, and research methods
to increase efficiency and quality.
● Maintain accurate activity and candidate data in applicant tracking and recruiting
systems, and stay open to learning new tools and processes.

What you'll bring

● Relevant experience in recruiting and/or sourcing, including direct experience sourcing
passive candidates in a fully outbound environment.
● Experience sourcing for Account Executive and other sales roles, ideally within the
software industry.
● Strong research skills and the ability to identify, map, and engage talent across
competitive regional and global markets.
● Experience working directly with recruiters and hiring managers to align on hiring needs
and adjust sourcing strategies as priorities change.
● Clear written and verbal communication skills, with the ability to build trust across teams,
candidates, and time zones.
● Strong organization skills and comfort managing multiple searches, deadlines, and
competing priorities.
● Familiarity with applicant tracking systems and recruiting tools. Experience with
Greenhouse or LinkedIn Recruiter is ideal.
● Comfort working remotely in an asynchronous environment, along with willingness to
learn and use tools such as GitLab.

The Talent Acquisition team at GitLab helps the company grow by finding people who can
contribute to our mission and thrive in our all-remote environment. Within that group, sourcing
plays a key role in reaching talent that may not be actively applying, especially in competitive
markets and business-critical functions. You'll work with teammates who care deeply about
candidate experience, thoughtful partnership, and inclusive hiring practices. The team values
clear communication, strong market insight, and steady iteration in how we work. This role is
especially important as GitLab continues to grow go-to-market teams in AMER, where strong
regional knowledge and effective collaboration across time zones can help teams hire with more
focus and confidence.

An overview of this role

GitLab is looking for a Product Design Manager to join the Plan & Analytics stage. As a design leader, you own the delivery of UX commitments, are always looking to improve productivity, and are responsible for the user experience in the product. While you are credible as a designer and know the details of what product designers work on, your time is spent hiring a world-class team and putting them in the best position to succeed.

This is an incredibly exciting time to join the Plan & Analytics stages - Working in GitLab's Plan space sits at the most human and strategic layer of the software development lifecycle — where ideas, priorities, and intentions are formed — making it the perfect frontier to explore how AI can augment not just execution, but thinking itself. As AI accelerates the speed at which code is written and shipped, the Plan space becomes even more critical, because the bottleneck is rapidly shifting from "how fast can we build?" to "how clearly can we define what to build and why?" This creates a rare opportunity to reimagine how teams collaborate, how requirements evolve, and how AI can transform a traditionally manual, document-heavy process into a dynamic, intelligent system that connects strategy directly to delivery.

You'll be working closely with the Product Management and Engineering teams to execute on the product roadmap and priorities.

Some examples of our projects: 

• Work Items
• Saved Views
• Software Factory

What you’ll do  

• Proactively identify large, strategic UX opportunities that span both inside your areas and across the product. Work with other product design managers, staff, and principal product designers to drive cross-product initiatives through awareness and prioritization.
• Identify strategic user research initiatives that span multiple stage groups (and possibly the entire product), and work with other product design/research managers to organize research efforts.
• Be a frequent and active participant in milestones by reviewing UX deliverables (such as research and designs) that your team creates, and provide feedback to ensure high-quality output.
• Communicate the value of UX to cross-functional GitLab team members and work with them to leverage the product development flow. 
• Help the product teams of areas you support to prioritize UX initiatives including Deferred UX, triage and resolution of UX bugs, and overall usability improvements to the product. Lead UX Scorecard initiatives in order to consistently measure the experience of your product areas and show improvements over time.
• Contribute to product direction conversations, with emphasis on leading the experience vision for your product areas.
• Hire, grow and retain a world-class team of Designers.

What you’ll bring 

• Experience managing a group of designers remotely, who work on complex products.
• Deep experience building AI experience for the software development lifecycle.
• Deep experience designing for large-scale enterprise platforms.
• Experience defining/executing on the high-level strategy (the why) and creating design deliverables (the how) based on research.
• Experience driving organizational change with cross-functional stakeholders, including Product Management and Engineering.
• Solid visual awareness with understanding of basic design principles and accessibility.
• You share our values, and work in accordance with those values.
• You possess leadership qualities needed to thrive at Gitlab.
• Ability to use GitLab.

About the team

You will work closely with three designers. You will collaborate with the Group Product Manager, Engineering Director and UX Researcher to improve team communication and maintain excitement about the opportunities ahead. You can learn more about what our teams are working on by visiting our direction page:

• Plan

About the role

We're looking for a Senior UX Researcher who brings rigour and curiosity to both product and marketing research. Someone who's as comfortable running foundational product studies as they are digging into brand perception, buyer mindsets, or how a marketing site actually works for the people using it.

This is strategic, high-visibility work — you'll partner with Product Design, Product Management, Brand, and Marketing to shape what we build and how we tell the world about it.

What makes this role unique:

• Work across both brand and product research, with real influence on each
• Research enterprise developer tools and DevOps workflows — including AI-powered features built for developers
• Fast-paced environment where research directly influences design and business decisions
• Be part of a team of talented, experienced researchers who genuinely invest in each other's growth

What you'll do

• Lead foundational, problem validation, and strategic research projects across your assigned product areas and beyond
• Drive both brand and product research — including buyer persona development, brand perception studies, and digital experience research — that directly informs positioning and messaging
• Be the expert on the users within your area of coverage: their behaviours, pain points, workflows, and goals
• Make connections across research initiatives, surfacing macro insights that no single study could reveal on its own
• Build trusted relationships with Product Design, Product Management, Brand, and Marketing counterparts, guiding them to the right research approach
• Advocate for and socialise actionable insights in a clear and compelling way that increases empathy across the organisation
• Independently drive research prioritisation across stage groups, balancing impact, product direction, and company objectives
• Mentor other researchers and actively shape how the Experience Research team works, through process iteration, documentation, and peer reviews

What you'll bring

• Empathetic, curious and open-minded
• Deep mixed-methods research experience across qualitative and quantitative methods
• A track record in both product research and marketing or brand research
• The ability to guide stakeholders — including senior ones — toward the right approach, even when they arrive with a firm opinion
• Strong instincts for prioritisation across multiple stakeholder groups in a fast-moving environment
• Clear, compelling communication that makes findings land with product, brand, and marketing audiences
• Experience working in a highly iterative, fast-paced environment, with the ability to pivot with sudden changes in direction
• Demonstrated ability to work effectively in a fully remote, globally distributed team — with strong async communication habits
• Self-motivated and self-managing, with strong organisational skills
• Ability to ramp up to a highly technical domain quickly
• Share our values, and work in accordance with those values
• Able to conduct research in a fully remote setting and use GitLab as part of your daily workflow
• Experience working on AI products, particularly for enterprise dev tooling, is a plus
• Experience working on enterprise and/or developer tooling products is a plus

Who you are:

Geotab is looking for an Embedded Developer Intern to join the Video Platform team. We’re primarily an embedded linux team and as an intern, your responsibilities will include making firmware contributions, writing automated HIL/SIL tests, video platform data analytics and working on the end-to-end telematics platform. If you’re someone interested in low-level firmware development and want exposure to video telematics, this is a perfect opportunity. Tech stack includes: C, C++, Rust, Python and GBQ. Geotab is also an AI-forward company – we expect you to be aware of latest developments in the Gen AI space and use the various internal tools available to supplement your everyday work.

What you'll do:

You’ll gain an in-depth understanding of Geotab’s vehicle telematics platform and devices. This includes the flagship GO device as well as the expandable suite of devices (“IOXes”). As part of the video platform team, you’ll get an opportunity to work on a suite of embedded linux based video products. Our team primarily works on the firmware side (BSP, kernel, OS, networking etc.). You’ll have an opportunity to contribute to firmware on different SoCs and work on a multitude of video platform features that enable critical video recording and/or use-cases for our customers. As well, you’ll write automated HIL/SIL tests to help validate the firmware. You’ll also help maintain the team’s CI/CD infrastructure so we can effectively build and deploy our firmware. You’ll interact with teams working on the video recording user-space apps and services (including CV use-cases). You’ll also work on analyzing and making sense of the data from the device using GBQ.

The opportunity:

• 4 month work-term beginning September 2026.
• Full-time, paid internship: Monday - Friday, 37.5hrs/week.
• Your first week at Geotab begins with 'GEO Launch' - a one-week Employee Orientation. Click here to learn more!
• Learn more about the Geotab Campus Program here.
• This posting is for an existing vacancy.

How you'll make an impact:

• Develop an in-depth understanding of Geotab telematics devices (including the GO device and IOXes)
• Make video platform firmware contributions in C, C++ or Rust
• Write automated hardware-in-loop and software-in-loop tests on our internal automation framework (Python)
• Contribute to CI/CD infra of the video platform team (Gitlab pipelines etc.)
• Contribute to internal team onboarding wiki/docs
• Write GBQ queries to analyze and make sense of data from the device(s) and visualize them using Superset dashboards

What you'll bring to the role:

An overview of this role

GitLab is seeking a Principal Engineer to set technical direction for our most critical infrastructure platforms. This role operates at organizational scale, owning architecture, solving complex systems problems, and driving initiatives that shape how GitLab grows, performs, and remains reliable.

As a Principal Engineer, you will serve as a technical authority and force multiplier, leading architectural decisions across distributed and cloud-native systems to translate business strategy into durable technical direction. Spanning multiple teams and domains, you will bring clarity to ambiguity, raise engineering standards, and mentor senior talent while remaining accountable for real production outcomes. This is a hands-on, high-impact role for leaders who drive success through influence and shape the foundational platforms that the entire organization depends on.

Organizational Focus Areas

Principal Engineers at GitLab drive strategy across our most critical infrastructure and delivery groups. Role placement across the following tracks is determined by business need and organizational priority.

Group Tenant Scale (GTS)

This track builds GitLab’s next generation, multi-tenant, horizontally scalable, and resilient SaaS platform. You will architect the foundations that enable other engineering teams to build upon this platform and drive convergence among GitLab’s various platforms..

• Core Focus: Lead the design and evolution of projects that enable our distributed, multi-tenant SaaS transformation, including Cells, Organizations, and OrgMover.
• Distributed Architecture: Architect for zero downtime, transparent relocation, and application hardening in a massive distributed environment.
• Strategic Decisions: Guide architecture decisions with availability, reliability, resiliency, performance, and cost in mind.

GitLab Delivery 

The GitLab Delivery track focuses on enhancing the reliability, efficiency, and speed of GitLab’s end-to-end software delivery across all platforms and offerings.

• Core Focus: Lead the platform strategy spanning Developer Experience, CI infrastructure, packaging, and release delivery across SaaS, Self-Managed, and Dedicated.
• Developer Experience: Treat GitLab engineers as customers, building self-service tooling, testing infrastructure, and paved paths that increase velocity while maintaining quality.
• Delivery at Scale: Architect reliable, automated pipelines that streamline how GitLab is packaged, released, and deployed across all platforms and offerings.

What You'll Do

• Own and drive the architectural direction for critical infrastructure platforms that support GitLab at global scale.
• Lead the design and evolution of large platforms and distributed systems that are scalable, resilient, secure, and cost-efficient.
• Serve as the technical authority on complex initiatives, guiding decisions that impact multiple teams and product areas.
• Translate business and product strategy into long-term technical roadmaps and execution plans.
• Drive alignment across engineering, product, and leadership by clearly communicating tradeoffs and recommendations.
• Establish technical standards and architectural patterns that raise quality and consistency across the organization.
• Be accountable for production outcomes, including reliability, performance, and operational excellence.
• Mentor senior engineers and act as a force multiplier through influence rather than direct authority.
• Operate effectively in ambiguous problem spaces where both the problem and the solution need to be defined.

What You'll Bring

• Proven experience designing and evolving large-scale platforms or distributed systems in cloud-native environments.
• Strong proficiency in Golang and/or Ruby, with the ability to contribute to, review, and guide core architectural changes in production codebases.
• Strong architectural judgment, including the ability to balance scalability, reliability, performance, security, and cost.
• Experience owning platform-level technical decisions that impacted multiple teams or an entire engineering domain.
• Solid understanding of Kubernetes-based environments as a production platform, including how they influence system design, deployment models, reliability, and operational complexity.
• Experience being accountable for production systems, not just design recommendations.
• Ability to author and drive long-term technical strategy and multi-month roadmaps.
• Track record of leading through influence and shaping technical direction without direct authority.
• Comfort making high-impact technical decisions, including build vs buy vs partner tradeoffs.
• Strong communication skills, with the ability to explain complex technical concepts to engineers, leadership, and non-technical stakeholders.

About the team

The Principal Engineer role sits within GitLab’s Infrastructure Platforms organization, working across multiple teams to shape how our platform scales and operates. This group is responsible for some of GitLab’s most critical systems, including the multi-tenant SaaS platform, core delivery pipelines, and the underlying infrastructure that powers millions of users. As a Principal Engineer, you’ll define technical direction, guide architectural decisions, and ensure our platforms remain resilient, performant, and modern. The team operates fully remotely and collaborates asynchronously across time zones, grounded in GitLab’s values of transparency, autonomy, and open communication. You’ll help the organization tackle complex distributed systems challenges at scale while mentoring other engineers and building a culture focused on reliability, efficiency, and continuous improvement.

Why should you consider joining Auvik?

• You want to work at a company that is building impactful, relevant technology. Auvik’s network management software helps IT teams by automating time-consuming tasks, streamlining operations, and mitigating risk. It’s more important than ever to be able to remotely monitor and manage network infrastructure, and with Auvik, IT professionals have that essential visibility and control.

• You want to work with a leadership team who are transparent and trustworthy. Our senior leaders have a vision for Auvik. They are experienced, knowledgeable, approachable, and consistently working hard to drive success, both for the company and the team of people who make it happen.

• You want to work with a product customers love. People rave about what we’ve built. Our customers are smart, aspirational, and highly technical. It pays to get the details right.

• You want regular opportunities for learning and growth. With ongoing feedback from leadership, you’ll find that Auvik encourages you to be your very best. Our onboarding process is thorough and informative because we want to make sure you’re prepared to have a great work experience. We also have programs designed to help you take the next steps you want for your career.

• You want the flexibility to manage your work, your way. We’re a fully distributed team and we’re prepared to continue to support working from home (or the space you choose!). We trust you to get the job done where you feel most comfortable and effective.

What’s this role about?

• At Auvik we have several different product teams that you may be selected to interview and if hired get the chance to work with. Your journey will span the entire software development process, from ideation alongside our Product Managers and Designers, to the tangible stages of implementation and deployment. Within our agile scrum framework, we prioritize adaptability, recognizing and harnessing individual strengths to ensure both personal growth and impactful contributions.
• The Network Management product that requires a Full-Stack approach to development from understanding the data being streamed from each device that’s leveraged to develop stunning user experiences for our customers. Some networking experience is always a welcome bonus for working within this product.
• The new SaaS Management product is at the forefront of our evolving cloud monitoring and cyber security systems. This team provides a robust platform for hands-on learning, diving deep into areas of SaaS discovery, monitoring, and reporting. You'll engage with tools and technologies like React, AWS, APIs, and Databases, all the while benefiting from close collaboration with seasoned industry professionals.
• The Endpoint Management teams are redefining what we can do to monitor and support customers' various hardware devices to help them achieve their IT business goals. These teams work in a Full-Stack environment retrieving device information at the packet level to help IT teams manage their companies inventory of devices through an amazing user experience. The product is currently in beta and it’s an exciting time to join.
• The Platform and Shared Services product is designed to be incredibly flexible, scalable, and embrace dynamic data by leveraging various streaming technologies. You'll create services that ingest, manage, configure, store, and transform data we collect from network, cloud, and endpoint devices. You’ll also be solving technical challenges around declarative UI that needs to suit the customers' needs while using generic UI components and consuming generic data.

What will I be doing?

• Attending stand-ups, sprint planning, and other sprint ceremonies to discuss roadblocks and challenges, share demos and updates, and make adjustments to plans with your team
• Collaborating with and learning from other teams and individuals to deliver high quality and scalable solutions with repeatability and reusability in mind
• Participating in company wide events, such as our Step Challenge, Hackathon, Movember, and many more
• Working in an awesome culture and environment known as the Auvik Way

What are we looking for?

• Well rounded computer science fundamentals
• Knowledge of Javascript
• Experience working in a team-based software development environment (SCRUM/Agile)
• Ability to communicate technical concepts to both technical and non-technical audiences
• Excellent teamwork skills and collaborative problem solving abilities by being curious, intentional with your feedback, and open to new challenges
• A growth or learning mindset: Interested in developing new skills and mastering new technologies

Are there bonus points?

• Experience with AWS services such as RDS, EBS, S3, Amplify, etc
• Familiarity with Microsoft Azure and Google Cloud Platform.
• Experience with developer tools, including Gitlab, Datadog, VSCode, pgAdmin.
• Familiarity with terminal/command line operations and shell scripting
• "Experience writing tests for both back-end and front-end code.
• Experience building microservice applications in public clouds like AWS, Azure, GCP
• Programming experience with Go and Java
• Experience working with Apache services such as Kafka, Goka, and Flink, or other stream processing technologies
• Experience working with containerized applications using tools like Docker, Kubernetes,, Bazel, and Helm
• Experience with developer workflow tools such as Jira, Gitlab, and Datadog
• A working knowledge of computer networking

We’re actively hiring for this role and looking to bring someone great onto the team as soon as possible. 

About Auvik

Auvik delivers cloud-based network management software that gives IT teams instant visibility and control over their infrastructure — whether on-site, remote, or dispersed across global networks. Our platform automates network discovery, mapping, monitoring, configuration backups, traffic analysis and alerting, so IT professionals and MSPs can manage complex, multi-site environments with ease.

We’re focused on building a diverse and inclusive workforce. If you’re excited about this role, but do not meet 100% of the qualifications listed above, we encourage you to apply. We are happy to make any accommodations you may need throughout the interview process as well. 

Auvik is an Equal Opportunity Employer and considers applicants for employment without regard to race, colour, religion, sex, orientation, national origin, age, disability, genetics or any other basis forbidden under federal, provincial, or local law.

Hiring Process

At Auvik, our hiring process is designed to be personal, transparent, and human-led. Our Talent Acquisition Partners review all resumes, connect with candidates whose skills and experience aligns with the role, and stay in communication with you throughout your journey. If our interests align, you'll meet with a hiring manager, as well as additional members of the hiring team in follow-up conversations. All of your interviews will take place via Zoom.

Before meeting with a hiring manager, we also ask candidates to complete a 5-minute Predictive Index (PI) assessment. This helps us understand and match your strengths and work preferences with roles that will set you up for success.

We use AI tools to support administrative tasks in the hiring process; such as helping source candidates, drafting communications, and interview summaries, so our team can stay focused and present during conversations. We do not use AI tools to interview, screen or assess candidates; or determine who moves forward in the process. We debrief and consider the full context of every conversation before making hiring decisions. We believe hiring requires judgment that can be augmented but, not replaced by AI.

OUR MISSION

At Redwood, we empower our customers with lights-out automation for their mission-critical business processes.

ABOUT US

Redwood Software is the leading orchestration platform for the autonomous enterprise, driving business transformation at the lowest total cost of ownership. Redwood empowers organizations to intelligently automate and orchestrate mission-critical business and IT processes across complex ERP, hybrid cloud, data and emerging agentic AI systems. Through its SaaS-first automation fabric—with AI embedded across the automation lifecycle—Redwood accelerates the path to autonomous operations. Backed by 30 years of experience and trusted by more than 50% of the Fortune 50, Redwood helps organizations unlock human potential to focus on innovation, growth and what’s next.

CORE VALUES

One Team. One Redwood

Make Your Own Weather

Obsess over Customer Success

Work the Problem

Be Curious

Own the Outcome

Respect Each Other

YOUR IMPACT

At Redwood, you’ll be working on the software that drives many of the world’s biggest companies. Our customers use our software for business critical workflows like month-end accounting processes and managing supply chain logistics. If you’re looking to have a real impact on people’s lives and on the global economy, this is your opportunity!

We are seeking a passionate entry level Full Stack Software Developer with a strong focus on Java to join our growing engineering team. In this role, you will be instrumental in designing, developing, and maintaining robust and scalable full-stack applications that power our automation and SaaS platforms. You will work across the entire software development lifecycle, from concept to deployment, collaborating closely with product managers, designers, and other engineers to deliver high-quality, impactful solutions.

• Build and ship highly performant and scalable full-stack applications using Java, JavaScript, and related modern technologies
• Develop and maintain robust back-end services, ensuring our APIs are efficient and reliable.
• Build responsive, intuitive front-end user interfaces that enhance the customer experience.
• Take ownership of small-medium sized features, collaborating with product management to translate requirements into technical designs
• Participate in all phases of the software development lifecycle from initial whiteboarding to production monitoring.
• Write clean, maintainable, and well-documented code following best practices.
• Implement and maintain automated tests (unit, integration, and end-to-end) to ensure code quality and reliability.
• Participate in troubleshooting of software defects and production issues and take proactive approach to improving system health
• Voice your perspective in technical discussions with architecture regarding topics like scalability, security, and performance.
• Advocate for modern tools and better ways of working to keep our engineering culture elite.
• Work with the larger R&D team to find ways to leverage AI tools for increased productivity and quality.

YOUR EXPERIENCE 

• Bachelor's degree in Computer Science, Software Engineering, or a related field (or equivalent practical experience).
• Proven ability to build with Java 11/17 or Spring Framework through internships or high-quality personal/school projects.
• Proficiency with front-end technologies such as HTML, CSS, JavaScript, TypeScript, and modern JavaScript frameworks (e.g., ReactJS, MobX).
• Experience with RESTful API design and development.
• Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and containerization technologies (e.g., Docker, Kubernetes).
• Experience with unit testing and automation tools such as JUnit and Playwright.
• Practical knowledge of Unix environments, including command-line navigation, shell scripting (e.g., Bash), and basic log analysis for troubleshooting.
• Strong communication and interpersonal skills with a desire to contribute within a fast-paced high-performance team.. 

Preferred Skills and Qualifications:

• Experience with CI/CD pipelines and tools (e.g. Github actions, Jenkins, GitLab CI).
• Experience with relational databases (e.g., SQL, PostgreSQL, MySQL) and ORM frameworks (e.g., Hibernate, JPA). 
• Understanding of agile development methodologies (Scrum, Kanban)
• Familiarity with test-driven development (TDD) or behavior-driven development (BDD).Contributions to open-source projects or a strong GitHub portfolio.
• Familiarity with AI assisted development

Bonus Skills:

• Familiarity with other OS architectures Windows, Mac
• Experience building, maintaining, or integrating with app marketplaces

Pay Transparency: The typical base salary range for this position is 65,500 - 82,500 CAD annually. The range represents base salary only, and does not include company bonus, incentive for sales roles, equity or benefits, as applicable. Final compensation will be determined based on the candidate's skills, experience, and relevant qualifications.

Vacancy Status: Existing vacancy

AI Transparency Disclosure: As part of our commitment to hiring transparency and in compliance with Ontario law, please be advised that we utilize artificial intelligence (AI) tools during our interview process. Specifically, we may use an AI-enabled notetaking assistant to help capture and summarize interview discussions. This tool is used solely to assist our hiring team in summarizing candidate information; all final hiring and selection decisions are made exclusively by individuals on the hiring team.

Why Join Us?

• Competitive compensation package, comprehensive health, dental, and vision benefits.
• Opportunity to work on innovative and impactful products that are transforming industries.
• Career boosting learning opportunities with dedicated learning time and in-person collaboration and mentorship with other engineers.
• Work with a highly skilled, passionate, and diverse team of engineers.
• Opportunities for professional growth and development.
• Collaborative and supportive team environment.

An overview of this role

As a Senior Corporate Security Engineer, you'll help secure the systems GitLab team members rely on every day across a fully remote environment. This role sits within Corporate Security Engineering and focuses on building secure-by-default controls for endpoints and the SaaS platforms that support them, with a strong emphasis on macOS. You'll own meaningful technical decisions around endpoint hardening, automation, and detection, and you'll help turn security requirements into scalable engineering systems that are measurable, auditable, and designed to reduce friction for end users.

This is a strong fit if you're motivated by solving security problems with code. You will work across endpoint management, identity, and security operations to improve how GitLab manages macOS, iOS, Windows, and Linux devices through Infrastructure-as-Code, Terraform, and GitOps workflows. In your first year, you'll be expected to strengthen endpoint security architecture, expand automation, and improve the reliability and auditability of how controls are deployed and maintained.

What you’ll do

• Lead the security architecture of GitLab's endpoint fleet and related infrastructure, with a primary focus on macOS.
• Design and support automation for secure endpoint deployment, configuration, and lifecycle management using code-based workflows.
• Manage endpoint and SaaS security configuration through Terraform, version control, merge requests, continuous integration pipelines, and automated rollouts.
• Define and enforce security baselines across macOS, iOS, Windows, and Linux endpoints.
• Develop patching and software distribution approaches that align with security, compliance, and operational requirements.
• Partner with Information Technology, Security Operations, and Detection and Response teams to improve endpoint telemetry, detections, and response models.
• Drive process improvements that reduce manual work and lower risk by favoring automation, policy-driven controls, and auditable change management.
• Mentor engineers across Corporate Security and Information Technology, and serve as a senior escalation point for complex endpoint security issues.

What you’ll bring

• Experience designing and delivering endpoint, systems, or corporate security solutions in environments that require scalable, durable controls.
• Deep knowledge of endpoint management platforms such as Jamf Pro or FleetDM, especially for architecting and securing macOS environments.
• Strong hands-on ability with Terraform and Infrastructure-as-Code practices, including module design, state management, and pipeline-based deployment.
• Experience working with GitOps workflows where changes are managed through Git repositories, merge requests, code review, and automated pipelines.
•  Strong proficiency in scripting or programming for automation and security tooling, such as bash, Python, PowerShell, or Go.
• Familiarity with cloud identity providers and directories, including platforms such as Okta, Google Workspace, LDAP.
• Ability to communicate clearly, collaborate across distributed teams, and work independently in an all-remote environment.
• Openness to bringing transferable experience from adjacent security, systems, or platform engineering backgrounds, along with a practical and security-focused approach to problem solving.

About the team

The Corporate Security Engineering team secures the internal environment GitLab team members use every day, including endpoints, identity systems, SaaS applications, and platforms that store sensitive internal data. It's a small, high-leverage team that treats security work as engineering work: building with code, operating through Git, and using reviewable, testable, and auditable workflows by default. The team partners closely with Information Technology, Security Operations, and Engineering across regions, collaborating asynchronously to build controls that scale across GitLab's all-remote workforce while reducing friction for end users.

About Pantheon

Pantheon WebOps Platform powers the open web, running more than 300,000 sites in the cloud for customers including Google, Princeton, Salesloft and Doctors Without Borders. Every day, thousands of developers and marketers create, iterate, and scale WordPress and Drupal sites to reach billions of people globally. Pantheon’s multitenant, container-based platform enables organizations to manage all of their websites from a single dashboard. Organizations including Clorox and the United Nations drive results through accelerated development and real-time publishing using Pantheon’s collaborative workflows. 

The Role

The Pantheon Developer Experience Team is looking for a Senior Software Engineer, focused on improving the core software that our customers use to deploy code and interact with our platform. In this role, you will enhance Pantheon’s ability to integrate with Github, Gitlab and other external VCS providers, ensuring our platform delivers top-tier performance, stability, and user experience for developers and content creators. You’ll work on building new services and maintaining existing ones that keep Pantheon at the cutting edge of web development. You will work on a wide variety of technologies, including Go, node, Python, Kubernetes and Google Cloud Run.

What You Need to Succeed 

• Passion for continuous learning on a diverse technical stack.
• Desire to build new features and push the capabilities of the product forward.
• Capacity to work carefully and meticulously, to ensure products are reliable and well tested, and deployments are stable.
• Good writing skills, to contribute to technical documentation.
• Ability to work well with cross-functional teams.

What You Bring to the Table

• 5+ years of experience working with complex distributed systems.
• Familiarity with Next.js, Go and Kubernetes.
• Demonstrated capability to work with diverse technical stacks.
• RESTful and Graphql APIs, databases and revision control systems.
• Experience with Drupal and/or WordPress nice to have

What We Offer

We have all the usual perks and benefits but what we can really offer you is a fantastic work environment powered by an amazing team.

• Industry competitive compensation and equity plan
• Paid Time Off (PTO), Paid Sick Leave (PSL) and 11 Paid Company Holidays
• Full medical coverage (Extended health care, dental, vision)
• Top-of-line equipment
• In-office workspace (Vancouver, BC Canada) 
• Monthly allowance for wellness, reading and access to LinkedIn Learning for continued development
• Events and activities both team-based and company wide that inspire, educate and cultivate

Pantheon is an equal opportunity employer and we welcome applications from all backgrounds regardless of race, color, religion, sex, national origin, ancestry, age, marital status, sexual orientation, gender identity, veteran status, disability, or any other classification protected by law. Pantheon complies with federal and local disability laws and makes reasonable accommodations for applicants and employees with disabilities. If you need a reasonable accommodation due to a disability for any part of the interview process, please contact talent@pantheon.io. Pursuant to local and federal regulations, Pantheon will consider qualified applicants with arrest and conviction records for employment.

To review the Employee and Applicant's Privacy Policy, click here.

Visa Sponsorship is not available at this time.

The Canadian base salary range for this position is 115,200- 144,000 CAD per year. Our salary ranges are determined by role, level, and location. At Pantheon, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case.

An overview of this role

As a Senior Product Manager on the Tenant Scale area within Infrastructure Platforms, you’ll help shape how GitLab supports large, complex customers as they grow across departments, projects, and regions. This role focuses on the product choices needed to make tenant data more portable, scalable, and ready for a unified deployment model across GitLab.com, Dedicated, and, over time, Self-Managed. You’ll work on problems that sit at the intersection of product strategy, infrastructure, and customer needs, including how we build a platform to horizontally scale our SaaS architecture, how to enable tenant movement between environments, how isolation and regional requirements are handled, and what needs to be in place to support a more cellular architecture. In your first year, you’ll partner closely with engineering and product peers to define requirements, drive alignment, and help move this work from concept into a deployment model teams can build on.

What you’ll do

• Drive product direction for tenant scale and unified deployment capabilities across GitLab.com, Dedicated, and future deployment models, moving this work from concept into a deployment model teams can build on in your first year.
• Define requirements for our unified deployment platform,, including the capabilities needed before tenants can be hosted in a unified deployment unit.
• Partner closely with engineering counterparts and highly technical teams to turn infrastructure constraints and platform needs into clear product direction.
• Collaborate with product peers across the platforms organization, including teams working on GitLab.com and adjacent infrastructure areas.
• Engage with internal and external customers to understand needs related to isolation, regional deployment, compliance, and operational readiness.
• Facilitate tradeoff discussions around scalability, tenant encapsulation, deployment consistency, and platform unification.
• Translate complex technical concepts into product plans, priorities, and documentation that align distributed teams on delivery milestones for tenant portability and platform unification.
• Support a collaborative team model where product managers share ownership across a common pool of work and step into the areas where they can have the most impact.

What you’ll bring

• Experience managing product work in technical domains such as infrastructure, scalability, platform architecture, software delivery, or cloud services.
• Ability to work effectively with deeply technical engineering teams and build credibility in discussions about system design, deployment models, and platform constraints.
• Knowledge of how SaaS or platform-based systems scale, including concepts such as multitenancy, horizontal scalability, autoscaling, workload isolation, and production readiness.
• Comfort working with customers or internal stakeholders on complex requirements, including operational, compliance, or regional deployment needs.
• Skill in turning ambiguous technical problems into clear product strategy, priorities, and actionable plans.
• Experience collaborating across product, engineering, user experience, and other cross-functional partners in a distributed environment.
• Strength in clear written and verbal communication, especially when explaining complex infrastructure topics to different audiences.
• Openness to candidates who bring transferable experience from engineering, technical support, or adjacent product roles relevant to large-scale platforms.

About the team

The team sits within Infrastructure Platforms and works on foundational platform capabilities. It partners closely with engineering, adjacent product managers, and internal customers across regions, with a strong emphasis on GitLab’s asynchronous working style and long-term platform thinking.

An overview of this role

As the first Engineering Manager embedded the Upstream Studios organization at GitLab, you'll lead a focused team of Engineers responsible for two foundational surfaces: the Pajamas Design System, which powers the coherence of the entire GitLab product, and docs.gitlab.com, the documentation platform serving millions of GitLab users and contributors worldwide. 

This is a rare opportunity to define what engineering leadership looks like inside a design organization. You’ll report to the Chief Design Officer and partner closely with Product Design, Technical Writing, Localization, Marketing, Product Management, and Engineering leaders across GitLab. Critically, the design system is a contribution-based, company-wide platform that engineers across the entire organization depend on and actively participate in. Building those partnerships and making it easier for engineers everywhere to contribute to Pajamas will be central to your success. 

You’ll be a hands-on technical leader and people manager in equal measure: guiding architecture decisions, shaping contribution workflows, and helping a small, high-impact team do some of the most leveraged work at GitLab.

What you'll do

• Lead, mentor,and grow a high-performing team of engineers, working across the Pajamas Design System and the GitLab documentation site.
• Define and build the engineering practice within Upstream Studios–this is a new function and you’ll have real influence over how it takes shape.
• Guide architecture and technical decisions for the design system (components, tokens, patterns) and the docs site (performance, reliability, infrastructure, localization).
• Help others across the organization understand the strategic value of a well-maintained design system and documentation platform.
• Advocates for engineering quality: technical debt, accessibility standards, customer issues, security, and platform reliability.
• Collaborate with Product Design and Technical Writing to translate design and content needs into scalable technical solutions

What you'll bring

• Experience leading infrastructure, platform, or development teams, with a track record of building high-performing, values-aligned teams.
• Deep expertise in design systems–including design tokens, component architecture, accessibility standards, and contribution models.
• Excellent technical background, including professional experience with Git, docs-as-code, Hugo, accessibility and building and maintaining a design system.
• Experience of building and supporting multi-lingual sites and localization workflows at scale.
• Professional experience with JavaScript (Vue.js) and familiarity with Elasticsearch, Ruby/Go, AI tools, and continuous integration and continuous deployment (CI/CD) practices.
• Strong expertise in running and scaling large, consumer-grade platforms, with a focus on reliability, security, performance, and scalability.
• Proficiency in the English language, both written and verbal, sufficient for success in a remote and largely asynchronous work environment.
• Demonstrated capacity to clearly and concisely communicate about complex technical, architectural, and/or organizational problems and propose thorough iterative solutions.
• Experience with performance and optimization problems and a demonstrated ability to both diagnose and prevent these problems
• Comfort working in a highly agile, intensely iterative software development process.
• Passion for open source and developer tools, with a commitment to GitLab's values, inclusive culture, and high-performance expectations.

About the team

Upstream Studios is the full-stack experience organization for GitLab. We imagine it, we design it, we document it, we ship it—partnering across product, engineering, and marketing to deliver a continuous deployment of quality.

We integrate research, design, frontend engineering, documentation, and brand into a unified delivery pipeline, shaping how customers experience GitLab from first impression to final deployment. For more information on how we work, see the Upstream Studios section of the GitLab Handbook.

An overview of this role

As a Backend Engineer on the Secret Detection team, you'll help protect sensitive data by building the services, scanning workflows, and remediation paths that prevent leaked secrets from reaching production. Your work will contribute to the full secret management lifecycle, from push protection to pipeline-based scanning, validation, and auditability, so developers can move quickly without taking on avoidable security risk. This is a strong opportunity if you want to work on security features with clear customer impact, improve detection quality, and help teams act when credentials, API keys, or other secrets are exposed.

You'll focus on backend systems that power Secret Detection across GitLab's DevSecOps platform, working closely with product management and engineering peers in an async-first environment. In your first year, you'll contribute to core product capabilities, improve performance and result quality, and help shape technical direction through code reviews, RFCs, and proof of concepts.

Some examples of our projects:

• Prevent secret leaks in source code with GitLab Secret Push Protection
• Verify validity of secret detection findings

What you’ll do

• Guide the design and implementation of backend features for GitLab Secret Detection in Ruby on Rails, GraphQL, and Go, delivering capabilities that improve coverage, reliability, or response time for secret detection workflows.
• Build clean, well-tested, maintainable code that meets GitLab standards for reliability and performance, helping reduce regressions and maintain backend systems at scale.
• Partner with product management and engineering peers to deliver backend capabilities that improve detection, validation, remediation, and audit trail coverage across the secret management lifecycle.
• Improve detection quality by reducing false positives, strengthening secret validation workflows, and enabling faster, more effective remediation paths.
• Contribute to code reviews, RFCs, and proof-of-concept work that guide technical approaches across the Secret Detection category.
• Identify technical debt and operational inefficiencies, then propose and implement practical improvements.
• Diagnose performance and optimization issues in backend systems and implement improvements that increase efficiency, scalability, and service reliability.
• Work effectively in a globally distributed, async-first team while participating in planning, engineering discussions, and pairing when needed.

What you’ll bring

• Experience building backend applications and services using Ruby on Rails, with working knowledge of GraphQL and interest in backend-focused product development.
• Experience designing and delivering secure, maintainable systems that power production web applications at scale.
• Knowledge of security concepts, common vulnerabilities, mitigation techniques, and secure coding practices.
• Background developing or working with security tools or products, especially in areas related to code scanning or secret detection.
• Experience investigating performance issues and improving backend reliability, efficiency, and maintainability.
• Ability to work closely with cross-functional partners, including product, design, and technical writing, to deliver useful product outcomes.
• Communicate clearly in writing and in conversation, especially in remote, async-first environments with distributed teams.
• Bring transferable experience and a willingness to grow into parts of the security or Go stack.

About the team

The Secret Detection team owns GitLab's Secret Detection category, and we build the backend systems and related user workflows that help developers identify and mitigate exposed secrets as code is contributed. We work with the broader security product suite while maintaining focused investment in secret scanning quality, validation, remediation, and developer experience. Our work spans Rails and Go services, and we work primarily asynchronously across time zones as a globally distributed team. Current opportunities include expanding coverage across the secret management lifecycle and improving result quality across the findings our tools detect. For more on how we work, see the Team Handbook page.

An overview of this role

As a Procurement Analyst, you'll help GitLab teams move purchasing requests forward by owning the end-to-end procurement process for lower value, lower risk vendor engagements. You'll support teams across the business with a focus on Marketing Sponsorships, Field Events, and Corporate Events contracts, serve as a go-to resource for procurement questions, and use data to improve how spend, contracts, and reporting are managed. This role reports to the Manager of Procurement and is a good fit for someone who enjoys combining process ownership, stakeholder support, and analysis in a fast-moving, all-remote environment.

You'll be a key operator in Zip, GitLab's procurement system, and help create a more consistent and efficient experience for internal stakeholders. In your first year, you'll be expected to strengthen day-to-day procurement operations, improve visibility through key performance indicator reporting and spend analysis, and support the business with purchasing needs. This is a fully remote role that requires meaningful overlap with Pacific Time Zone business hours.

What you’ll do

• Own the end-to-end procurement workflow for lower value, lower risk vendor engagements, with a focus on Marketing Sponsorships, Field Events, and Corporate Events contracts.
• Manage procurement intake activities in Zip and keep procurement data current across the enterprise systems used by the business.
• Respond to procurement questions from GitLab team members in Slack and guide stakeholders through procurement processes and policies.
• Support Procurement Category Managers with request for proposal, request for quote, or request for information events, contract renewals, vendor communications, spend review, bid review, and savings review.
• Review spend data to identify consolidation opportunities, assess total cost of ownership, and support more informed purchasing decisions.
• Develop and maintain procurement reporting, key performance indicators, and benchmarking in partnership with procurement and stakeholder teams.
• Collaborate across divisions to provide timely, clear support that helps business teams navigate purchasing needs in a remote, asynchronous environment.

What you’ll bring

• Experience working with a structured procure-to-pay or procurement intake system, including hands-on use of Zip or similar tools.
• Experience in procurement or purchasing operations, with the ability to manage process-driven work accurately and consistently.
• Ability to review spend data and create recurring reports that support business decision-making.
• Ability to define, calculate, and present key performance indicators such as purchase order cycle time, savings versus budget, compliance rate, and spend by category.
• Skill in supporting internal stakeholders with procurement process questions and explaining requirements clearly.
• Strength in organization, time management, and prioritization in a fast-paced environment with changing needs.
• Ability to work with minimal oversight and collaborate cross-functionally in a remote, asynchronous company while maintaining reliable follow-through.
• Education or equivalent experience in a relevant field, or transferable experience that demonstrates similar capability.

About the team

The Procurement team builds efficient, business-friendly procurement programs that help GitLab manage spend thoughtfully while enabling teams across the company. You'd report to the Manager of Procurement and work across regions in an all-remote environment to support process efficiency, spend visibility, strategic category support, and vendor management. The team is focused on balancing fast, practical support for the business with clear processes, strong data quality, and better visibility into contracts, reporting, and purchasing activity.

An overview of this role

As a Senior Backend Engineer (AI) in the Verify stage at GitLab, you'll help shape and scale the core infrastructure behind GitLab CI. You'll play a key role in how we integrate AI into CI/CD workflows, working on features that improve performance, reliability, and usability for people running millions of CI jobs, from small teams to the largest enterprises.

AI is a top priority in the year ahead. In this role, you'll go beyond using AI tools — you’ll design, build, and iterate on AI-assisted and agentic CI experiences. You’ll help define and implement patterns for how we measure success, how we instrument behavior in production, and how we account for large language model limitations in real-world environments. You’ll also help integrate GitLab's Duo Agent Platform into CI workflows at scale, on a foundation that's fast, reliable, secure, and observable.

In this role, you will:

• Collaborate with Engineering, Product, and UX partners to refine priorities: where we can move faster, where we’re missing data, and where there’s whitespace to innovate.
• Contribute to defining what success looks like across our AI agents, ensuring we’re not just shipping, but learning from how features perform in production.
• Keep a close eye on the competitive landscape and emerging AI-native DevOps tools, helping us understand what it takes to keep GitLab CI best-in-class in an increasingly agentic world.

Examples of Agentic CI work we have planned for the upcoming year:

• AI Pipeline Builder, the foundational CI agent that auto-creates pipelines for new projects and serves as the launchpad for onboarding new CI users.
• Automate the Fix a Failing Pipeline flow at scale – from dogfooding on internal GitLab projects through to safe, controlled rollout for customers, solving real infrastructure and scalability challenges.
• Build the instrumentation and observability layer that makes agentic CI trustworthy — trigger volume dashboards, retry rates, cost safeguards — so we can measure what’s working, catch what isn’t, and iterate with confidence.
• Harden the CI pipeline execution infrastructure that these agents depend on: database access patterns, background processing, and job orchestration built to handle the additional load that AI-driven automation introduces at enterprise scale.

What you’ll do:

• Design, build, and operate backend features that make GitLab CI fast, reliable, and easy to use at scale.
• Implement AI-powered and agentic CI capabilities that integrate with GitLab’s Duo Agent Platform.
• Instrument, monitor, and improve CI systems using data, observability, and safe rollout practices.
• Write secure, well-tested Ruby on Rails code in our monolith, improving existing features while reducing technical debt.
• Collaborate cross-functionally with Product, UX, and Infrastructure, mentoring others and raising engineering standards across the Verify stage.

What you’ll bring:

• Strong Ruby on Rails backend experience in a large, production codebase.
• In-depth experience building and operating AI-powered backend features in production.
• A data- and observability-driven approach to diagnosing issues, improving reliability, and validating impact.
• Clear written and verbal communication, with a collaborative, mentoring mindset in a remote, async environment.
• Hands-on experience building, running, and debugging high-traffic production systems, ideally in CI, workflow orchestration, or adjacent infrastructure-heavy domains.Nice to have
• Experience with AI agents or agentic frameworks (for example, LangChain or similar technologies) and building agentic workflows in production environments.
• Strong PostgreSQL skills, including data modeling, query tuning, and scaling large tables through proactive performance investigation and remediation.

An overview of this role

As a Senior Backend Engineer, you'll lead the design and development of a unified, Go-based instrumentation service that consolidates analytics instrumentation across GitLab's engineering organization. You'll architect and own critical backend systems that help the company understand customer usage patterns across GitLab SaaS and Self-Managed deployment environments. That data directly informs strategic product decisions. This role offers the opportunity to build foundational infrastructure that simplifies instrumentation for every team at GitLab, replacing the complexity of multiple language-specific SDKs with a single, unified solution that all teams can rely on.

What you'll do

• Design, build, and maintain a unified Go-based instrumentation service that consolidates instrumentation across the entire company, eliminating the need for multiple language-specific SDKs while maintaining reliability and performance.
• Own the responsibility for handling the sending, transit, and quality of instrumentation data across the system, ensuring data integrity that directly impacts the company's strategic decision-making and usage billing accuracy.
• Train and support product development teams across the company on how to instrument their features using the unified service, providing documentation, guidance, and technical support.
• Manage on-call responsibilities during working hours for systems responsible for usage billing and instrumentation, ensuring system reliability and quick response to critical issues.
• Lead collaboration across research and development teams and the enterprise data organization to understand requirements and deliver solutions that serve multiple stakeholders.
• Make strategic architectural decisions that balance the needs of product teams (who need ease of use) with data consumers (who need reliability and correctness), ensuring the system serves as a foundational service for the company.

What you'll bring

• Proficiency in the Go programming language, with experience building and maintaining production services.
• Strong backend development experience, with the ability to design scalable, reliable systems serving internal and external customers.
• Experience with infrastructure concerns such as system reliability, performance at scale, data quality, and observability.
• Experience designing and building APIs (REST, gRPC, or similar) that other teams integrate with.
• Experience working in collaborative, cross-functional teams with product teams, data consumers, and other internal stakeholders across team boundaries.
• Experience with instrumentation, analytics, data systems, or similar foundational infrastructure is helpful, along with Ruby on Rails experience.

About the team

Our team is part of the Data Engineering organization and operates as a foundational service supporting all research and development teams at GitLab. We're responsible for consolidating and managing the systems that handle instrumentation data sending, transit, and quality across the entire company. Our work directly enables company strategy and decision-making by providing visibility into customer usage patterns across different product offerings and customer types (GitLab SaaS and Self-Managed deployment environments). This work supports usage billing and product decisions. We're building a unified, Go-based instrumentation service that replaces multiple language-specific SDKs, making it easier for teams to instrument their features while we ensure data integrity for billing and analysis. As a distributed team working asynchronously across multiple time zones, we collaborate closely with product and engineering teams across the company and provide training and support to help them instrument their features effectively.

An overview of this role

As a Senior Backend Engineer on the Auth Infrastructure team at GitLab, you’ll build the critical infrastructure layer that powers authentication and authorization for millions of users across GitLab.com, self-managed, Dedicated, and air-gapped environments. You’ll focus on secure, performant, and reliable identity services while helping GitLab move toward a zero-trust architecture and microservices-based future. You’ll work closely with Authentication, Authorization, Platform, and Infrastructure teams to design and implement components like Envoy proxy configuration, token services, bi-directional gRPC tunnels, mTLS, and service mesh architecture, and to add robust observability and debugging for distributed auth systems.

This role gives you the opportunity to solve authentication infrastructure challenges at global scale and directly influence the roadmap for GitLab’s secure and scalable authentication solution. Your work will empower GitLab system administrators to balance security and accessibility, shaping the first impression customers have when they log in, onboard users, and manage core security rules for their instances.

What you’ll do

• Design and implement core components of GitLab's authentication infrastructure layer, including Envoy proxy configuration, token services, and policy decision systems.
• Develop solutions for critical infrastructure challenges such as bi-directional gRPC tunnels, mutual Transport Layer Security (mTLS), and service mesh architecture.
• Build and maintain authentication infrastructure that supports GitLab.com, self-managed, Dedicated, and air-gapped deployment models.
• Optimize the performance and reliability of authentication and authorization decisions at scale across distributed systems.
• Implement and refine monitoring, observability, and debugging capabilities for authentication services to ensure secure and stable operation.
• Collaborate with Authentication, Authorization, Platform, and Infrastructure teams to align infrastructure capabilities with product and architectural requirements.
• Contribute to the team’s technical direction and roadmap for secure, scalable authentication, including standards for style, maintainability, and best practices.
• Represent GitLab and its values through participation in public communication, broader initiatives, and contributions to relevant open source projects.

What you’ll bring

• Strong experience building high-performance backend services in Go, ideally in large-scale, distributed environments.
• Hands-on experience with proxy and edge technologies such as Envoy, Traefik, HAProxy, or nginx, including configuration and operation in production.
• Practical experience with service mesh architectures, mutual TLS (mTLS), zero-trust networking, and secure service-to-service communication patterns (gRPC, REST).
• Working knowledge of database and storage technologies such as RDS, Google Spanner, Postgres or similar, including schema design and performance considerations.
• Understanding of token systems (for example JWT or Macaroons), cryptographic signing, and key management for authentication and authorization workflows.
• Experience with Kubernetes, container orchestration, and cloud-native deployment patterns, including observability, monitoring, and debugging of distributed systems.
• Ability to own projects from concept to production, including proposing designs, driving discussions, and delivering in a highly agile, iterative environment.
• Effective written and verbal communication in English, with a collaborative, solution-oriented mindset and openness to learning from and supporting team members with diverse backgrounds and transferable skills.

About the team

At GitLab, we on the Auth Infrastructure team sit within the Software Supply Chain Security group and focus on building and maintaining the core authentication and authorization infrastructure that underpins all GitLab deployment models. Our mission is to give GitLab system administrators the tools they need to balance security and accessibility, making the first authentication experience smooth while ensuring identity services are secure, flexible, and scalable. You’ll work as part of a small, distributed team that collaborates asynchronously across time zones with Authentication, Authorization, Platform, and Infrastructure teams to support GitLab’s shift toward microservices and zero-trust networking. We are currently focused on solving challenges like high-scale auth performance, secure service-to-service communication, and supporting complex environments including GitLab.com, self-managed, Dedicated, and air-gapped deployments.

An overview of this role

As a Senior Backend Engineer on the Pipeline Security team, you'll take technical ownership of GitLab's native Secrets Manager, a production system built on OpenBao that helps secure sensitive credentials across GitLab CI/CD pipelines. You'll work at the intersection of backend engineering and infrastructure, shaping architecture in Ruby on Rails and Go, guiding decisions around role-based access control (RBAC), GraphQL APIs, and Kubernetes deployment configuration. In your first year, you'll help move Secrets Manager toward general availability, establish technical patterns the team can build on, and represent the team's point of view in cross-functional discussions. You'll have end-to-end ownership, from design through production operations, with room to identify what should be built next and improve how the team delivers secure, reliable features.

What you'll do

• Build and maintain secure, readable backend code primarily in Ruby on Rails, with some development in Go for targeted components.
• Design backend architecture for complex security features, including secrets access control, pipeline security enforcement, and OpenBao integration.
• Lead the development of role-based access control models, GraphQL APIs, and supporting application patterns for features owned by the team.
• Own features end to end, from technical design and implementation through deployment, validation, and production support.
• Collaborate with Product, security partners, and other engineering teams to document tradeoffs, align on direction, and deliver iteratively in a distributed environment.
• Improve code quality, maintainability, security, and performance through code review, design iteration, and internal standards for a high-scale web environment.
• Build and maintain Helm charts, including configuration, tuning, documentation, and automated testing for Kubernetes-based deployments.
• Validate features in Kubernetes environments, including GitLab Cloud Native and Cloud Native Hybrid deployments, using GitLab testing and performance testing frameworks.

What you'll bring

• Experience building and maintaining backend features with a focus on secure design, data handling, and production reliability.
• Ability to write production-quality code in Ruby on Rails, including use of framework security patterns and review for common application risks.
• Working knowledge of CI/CD concepts and the ways pipelines can be misconfigured, abused, or expose sensitive data.
• Familiarity with secrets management approaches and security practices for handling credentials in CI environments; experience with tools such as HashiCorp Vault or similar systems is helpful.
• Comfort collaborating across Product and engineering teams in an asynchronous, distributed environment and communicating technical tradeoffs clearly in writing.
• Ability to review merge requests with a security-first mindset and improve solutions through feedback and iteration.
• Experience debugging production issues, including investigation of security-related behavior and proposing practical fixes.
• Openness to learning adjacent domains and tools, including Go, container security, and software supply chain security; we welcome transferable experience from different technical backgrounds.

About the team

The Pipeline Security team builds features that make GitLab CI pipelines more secure and trustworthy for teams running sensitive workloads. We own key parts of pipeline security within GitLab's CI/CD experience, with our current focus on native secrets management for CI pipelines and Supply-chain Levels for Software Artifacts (SLSA) Level 3 capabilities to strengthen software supply chain security. We work asynchronously across regions and collaborate closely with Product and security partners, using clear design discussions, documented decisions, and iterative delivery across Ruby on Rails and Go.

An overview of this role

As a Senior Backend Engineer, Cells Infrastructure, you'll help us build the foundation that lets GitLab.com scale horizontally through our Cells architecture. You'll work on two core parts of that system: edge routing services that direct traffic across a fleet of independent Cell clusters, and the Topology Service that manages and serves cluster topology information as the source of truth for the rest of the platform. Your work will make routing reliable and low-latency across protocols, and ensure GitLab teams can build Cell-aware features with confidence as we grow.

Some examples of our projects:

• Building and operating routing services in TypeScript that direct requests to the correct Cell using cluster topology data
• Developing and maintaining the systems that store, update, and serve cluster topology information that routing, resource assignment, and Cell lifecycle decisions depend on

What you'll do

• Design and implement edge traffic routing that directs requests to the correct Cell in a way that's transparent to users.
• Build and evolve the Topology Service that serves as the authoritative source of cluster state for routing, resource assignment, and Cell lifecycle decisions.
• Collaborate across the GitLab Rails monolith and supporting services to make features and data models Cell-aware with feature teams across the product.
• Operate and improve the routing and topology systems you build by participating in tier-2 on-call, responding to escalated incidents, and strengthening observability and operational tooling.
• Author Architecture Decision Records (ADRs), operational runbooks, and documentation so other teams can understand, adopt, and extend the Cells platform.
• Review merge requests from GitLab team members and community contributors, maintaining high standards for correctness, performance, and security across the stack.

What you'll bring

• Experience building observable, resilient production services using Golang or Ruby on Rails (TypeScript experience is a plus).
• Background delivering and operating production systems in high-scale environments, including incident response and operational ownership.
• Ability to reason about distributed systems, including consistency models, partitioning strategies, failure modes, and operational tradeoffs.
• Experience building high-throughput networking services (gRPC and protocol buffers knowledge is a plus).
• Familiarity working in large, multi-team codebases and coordinating changes across teams and services, including making features and data models Cell-aware.
• Knowledge of observability practices such as metrics, tracing, and alerting, with an approach focused on building systems you'd be confident operating on-call.
• Strong written communication skills for an async-first, globally distributed team, including documenting decisions (for example, architecture decision records) and runbooks.
• Experience working with relational databases in production, including schema design, migrations, and query performance tuning (PostgreSQL experience is a plus).

About the team

We're the Cells Infrastructure team within the Tenant Scale group in Infrastructure Platforms. We're a globally distributed, all-remote group of Backend Engineers and Site Reliability Engineers working asynchronously across multiple time zones. We own foundational services for GitLab's Cells architecture, including edge routing that directs requests to the right Cell and our topology systems that act as the source of truth for cluster state. Our challenge is making GitLab.com scale horizontally in a way that's reliable, low-latency, and operable, so every request reaches the right cluster and we can keep growing safely. For more on how we work, see Tenant Scale Group Handbook Page.

An overview of this role

As a Senior Business Process Analyst, you will help build the process architecture for GitLab’s People Operations team. This role reports to the hiring manager and is part of how we are bringing structure to a fast-growing function that supports onboarding, offboarding, internal movement, team member questions, and Workday-related operations. You will focus on documenting current state processes, designing future state workflows, and creating a practical roadmap that helps the team scale in a more efficient and sustainable way.

This is a strong fit if you want to shape how a core People function works across teams. You will map end-to-end processes across People Operations and partner teams, identify gaps and handoffs, and help define a clearer service delivery framework as GitLab grows. You’ll work across technical and non-technical groups and help turn complex workflows into designs that are easier to understand, improve, and maintain.

This is an all-remote role working across time zones with stakeholders in People Ops, People Technology, Finance, Legal, IT, and leadership. You’ll operate in GitLab’s handbook-first, async-by-default culture, where the process documentation, KBAs, and SOPs you create are core to how the function works. This role is central to People Operations’ shift toward a more structured, scalable, and data-informed operating model, and the process architecture you build will help create a durable foundation for the team’s future growth.

What You’ll Do  

• Map end-to-end People Operations processes across areas such as onboarding, offboarding, internal movement, team member support, and Workday-related operations.
• Document current state workflows, key points, dependencies, system steps, and manual tasks to create a complete view of how work happens today.
• Design future state processes that improve efficiency, scalability, and service delivery across People Operations.
• Partner with cross-functional teams, including Talent Acquisition, IT, payroll, legal, compliance, and People Operations leads, to understand upstream and downstream handoffs.
• Create process inventories, supporting documentation, and clear artifacts that teams can use to align on how services should work.
• Develop roadmaps that outline the changes, sequence, and partnerships needed to move from current state to future state.
• Support implementation planning by working with operations leads and other partners, while keeping your primary focus on process analysis and design.
• Enable team members with practical tools and approaches for documenting and analyzing simpler processes so the function can build this capability over time.

What You’ll Bring 

• Business process analysis and documentation for complex workflows that include both system-driven and manual steps across HR operations, process improvement, or similar operational environments.
• Process design and documentation with the ability to create current state and future state process designs, including RACI matrices, SLAs, decision trees, and cross-functional handoff documentation, and translate them into clear requirements for tools like ServiceNow and Workday.
• Cross-functional collaboration and communication to work effectively with technical and non-technical teams, ask probing questions, synthesize input, present recommendations in plain language, and align handoffs across partner functions.
• Analytical and data-driven problem solving to review ticket datasets, process steps, system configurations, or spreadsheets, identify patterns and gaps, and use insights to prioritize improvements and support business cases.
• Self-directed execution and prioritization with comfort defining a work plan, managing competing priorities, and building structure in environments with limited precedent.
• Familiarity with HR systems and service delivery tools such as HRIS platforms and case management systems, with the ability to support process design in environments that use tools like Workday and ServiceNow.
• Additional relevant experience in areas such as HR service delivery models, shared services, process improvement methods, knowledge base or self-service program development, SLA and service catalog design, automation and workflow tools, process maturity frameworks, global workforce support, or GitLab workflows.

About the team

The People Operations team supports GitLab team members through key lifecycle moments and day-to-day operational needs. We answer team member questions, manage onboarding and offboarding, support internal movement, and handle data and transaction work in systems such as Workday. This role sits within our broader operations function and will help us create a more consistent and scalable way of working across regions and partner groups. We collaborate asynchronously across the US, EMEA, and APAC, with a strong focus on improving service delivery, clarifying handoffs, and building sustainable processes as GitLab grows.

How GitLab will support you

• Benefits to support your health, finances, and well-being
• Flexible Paid Time Off 
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and Development Fund
• Parental leave 
• Home office support

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.

An overview of this role

As a Senior Compensation Partner, you will help GitLab build and sustain a high-performance culture by aligning compensation programs with our strategy, values, and team member experience. You will partner closely with Talent Acquisition and People Business Partners to support hiring, retention, and career growth through clear compensation guidance, consistent job architecture, and well-run compensation cycles. In this role, you will help the business make fair, compliant, and well-informed pay decisions across a globally distributed organization, while improving how we explain compensation and equity to team members.

What you'll do

• Serve as a senior compensation advisor to People Business Partners, Talent Acquisition, and business leaders within assigned client groups.
• Build trusted relationships with senior leaders and cross-functional partners, influencing pay decisions.
• Lead or contribute to compensation program audits and pay equity analyses.
• Lead or contribute to the administration of compensation programs, including annual compensation reviews, promotion cycles, bonus programs, and sales commission plans.
• Evaluate complex compensation scenarios, including role leveling disputes, out-of-band offers, retention situations, and reorganizations.
• Use Workday reporting and dashboards to monitor program effectiveness, identify anomalies, and support real-time compensation decision-making.
• Maintain and evolve GitLab's global job architecture in collaboration with the Total Rewards team, ensuring it meets business needs.
• Promote a clear understanding of GitLab's compensation philosophy, practices, and administration across the organization.

What you'll bring

• Extensive progressive global compensation experience, including meaningful exposure to global programs in a high-growth or SasS environment.
• Demonstrated ability to partner with and influence senior business leaders and People Business Partners.
• Experience administering and improving complex global compensation programs, including annual reviews, promotion cycles, bonus plans, and sales compensation.
• Strong analytical skills with proficiency in building compensation models, conducting market analyses, and translating data into clear narratives.
• Workday compensation experience, including cycle management, job profile configuration, pay range administration, and reporting.
• Experience supporting global job architecture and job leveling work in partnership with cross-functional teams.
• Strong written and verbal communication skills, including creating training materials and delivering compensation education.
• Ability to support equity plan education in collaboration with Stock Administration, and to work within compliance requirements across multiple countries.
• Interest in GitLab's values and ability to use GitLab; we welcome transferable experience and encourage you to apply even if you don't match every requirement.

About the team

The Total Rewards team designs and runs GitLab's compensation and equity programs so team members are paid fairly and consistently across a globally distributed company. As a Compensation Partner, you'll work closely with teammates across Total Rewards and partner with Talent Acquisition, People Business Partners, and leaders across regions in an async-first way, using clear documentation and data to support decisions. The team also helps maintain GitLab's global job architecture and supports key compensation cycles and committee materials while staying aligned with applicable rules and regulations in the countries where we operate.

An overview of this role

As a Senior Engineering Manager in Delivery Enablement, you'll help shape the platform foundations we use to make software delivery at GitLab more consistent, reliable, and easier to scale. You'll oversee approximately four to five engineering teams through the engineering managers who lead them, with work spanning shared development tooling, developer environments, language SDKs, API lifecycle management, and observability. This role is unique because you'll help define a Kubernetes-first platform vision that supports GitLab.com, GitLab Dedicated, and self-managed deployments, including environments that run on premises. In your first year, you'll create clearer technical direction, strengthen execution across teams, and align work to unified platform standards. You'll report to the Director of Delivery Enablement.

You'll succeed by combining people management with technical depth: engaging in details, making sound calls amid change, and moving teams forward with transparency and accountability. This role is ideal if you have experience in platform engineering, grasp the complexities of operating across both cloud and on-prem environments, and want to work in a space where Kubernetes, Helm, AI-enabled workflows, and developer productivity intersect.

The work spans areas such as:

• Shared development tooling, including project templates and reusable CI pipeline components
• A developer environment that gives engineers a consistent path from local workstations and CI through to GitLab.com, Dedicated, and Self-Managed
• Language SDKs that integrate cleanly with platform tooling so product teams can focus on business logic instead of integration plumbing
• API lifecycle conventions that give teams a common approach to versioning and evolving service interfaces
• Observability tooling that turns raw signals into SLOs and SLIs for production services

What you’ll do

• Lead engineering teams working on developer tooling and platform capabilities that support faster, more consistent software delivery across GitLab, measured through improvements in build times, observability, and delivery consistency.
• Drive a Kubernetes-first platform vision that supports both cloud and self-managed environments, including the tradeoffs needed for on-prem delivery.
• Guide technical and organizational decisions across areas such as developer environments, packaging, local and hosted testing workflows, and integration with broader platform efforts.
• Collaborate closely with engineering leaders, staff engineers, and adjacent teams to ensure DevEx investments connect cleanly with platform architecture and operational needs.
• Coach and develop the engineering managers reporting to you, partnering with them on team health, performance, prioritization, and hiring, including addressing performance concerns and shaping teams for future needs.
• Develop clear direction from high-level strategy, turning broad platform goals into actionable roadmaps with defined milestones and success metrics that teams can execute with ownership.
• Support the adoption of AI-assisted development practices by helping teams use new tools thoughtfully while maintaining engineering quality.
• Improve execution by creating clarity, encouraging strong technical discussion, and helping teams make decisions and keep moving when requirements evolve, with success measured by delivery predictability and cycle time improvements.

What you’ll bring

• Experience managing engineering managers and coaching them on execution, team health, hiring, and performance.
• Experience leading distributed engineering teams through change and ambiguity while building clarity, accountability, and momentum.
• Strong technical grounding in Kubernetes platforms, including familiarity with concepts and interfaces such as Services, container network interface, and API gateways.
• Working knowledge of Helm and containerized delivery models, especially where platform choices affect both developer experience and production outcomes.
• Experience with self-managed, on-prem, or bare metal environments (OpenShift, OpenStack, Proxmox, etc.), and an understanding of how they differ from cloud-first assumptions.
• Ability to evaluate technical tradeoffs and contribute informed judgment on platform architecture and cross-team system integration.
• Hands-on experience with CLI-based AI coding tools, with judgment to help teams adopt them thoughtfully while maintaining engineering standards.
• Relevant background in platform engineering, infrastructure, site reliability engineering, or developer productivity, including designing team structures and organizational approaches.

About the team

The Delivery Enablement team owns key parts of GitLab's internal developer experience, helping engineers start projects, build business logic, package services consistently, and improve day-to-day workflows. We work asynchronously across regions and partner closely with platform and engineering leadership to connect individual tools and workflows into a broader system. We're focused on an important transition: reducing reliance on older approaches, defining clearer platform standards, and building foundations that better support how GitLab develops and ships software. For more on how our team works, see [Link: Team Handbook Page].

An overview of this role

As a Senior FP&A Analyst on the Corporate FP&A team, you'll help keep GitLab predictable, well-capitalized, and aligned to its strategy by turning complex financial data into clear, actionable insights for leaders across the company. You'll own critical company-wide planning and forecasting processes, drive revenue and cash flow analysis, support quarterly and annual earnings materials, and maintain the operating and long-term financial models that inform decisions at the executive and Board level. Reporting to the Director of Corporate FP&A, you'll develop financial forecasts and capital structure decisions that accurately reflect business drivers and investor expectations in a fast-moving, all-remote environment, while helping shape how the team uses AI and automation to move faster with better visibility.

What You’ll Do  

• Lead revenue forecasting and planning work across core revenue components, including annual recurring revenue, churn, and expansion.
• Develop financial models, reporting, and analysis that support Corporate FP&A deliverables for finance leadership.
• Drive process improvements across close and planning workflows, with a focus on automation, AI-enabled analysis, and faster access to source data.
• Partner closely with finance teams such as accounting and compensation to support shared planning and reporting needs.
• Prepare clear commentary and insights for leadership reviews, including work that informs CFO, board, and audit committee discussions.
• Evaluate current workflows and identify opportunities to replace manual file management with more scalable, automated approaches.
• Use sound business judgment to connect revenue model outputs to broader financial and operational context.
• Communicate progress, risks, assumptions, and open questions clearly in a fast-moving environment with quick turnaround times.

What You’ll Bring 

• Experience in corporate financial planning and analysis with ownership of revenue forecasting, planning, or related financial modeling.
• Knowledge of SaaS revenue concepts, with working understanding of annual recurring revenue, churn, expansion, and how these drivers affect company performance.
• Ability to build and improve models while keeping accuracy, clarity, and business usefulness at the center.
• Experience using automation in finance workflows, along with curiosity about applying AI tools such as Claude, Gemini, or similar technologies to analysis and process improvement.
• Judgment to distinguish between basic task automation and more advanced, scalable approaches that improve how work gets done.
• Communication skills that support direct, transparent updates, thoughtful questions, and effective collaboration across finance partners.
• Comfort working in a high-stakes, fast-paced environment that requires resilience, adaptability, and strong follow-through.
• Openness to applying transferable experience from adjacent backgrounds if you bring strong financial acumen, an automation mindset, and the ability to learn quickly.

About the team

The Corporate FP&A team supports GitLab's finance leadership through planning, forecasting, and analysis that informs company-level decision-making. This team works closely with partners across finance, including accounting and compensation, and its output helps support leadership reviews for the CFO, board, and audit committee. The work is highly collaborative and runs in an asynchronous, globally distributed environment where clear communication and strong ownership matter. The team is currently focused on improving how finance work is done through better automation, stronger revenue modeling, and practical use of AI tools that can reduce manual effort and improve turnaround time.

How GitLab will support you

• Benefits to support your health, finances, and well-being
• Flexible Paid Time Off 
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and Development Fund
• Parental leave 
• Home office support

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.

An overview of this role

As a Senior Manager, Revenue Accounting, you’ll help GitLab scale and strengthen the processes behind revenue recognition and deferred commissions accounting. This is an individual contributor role reporting to the Director of Revenue Accounting, with broad influence across Finance, Product, Deal Desk, Legal, Information Technology, Sales Operations, and Financial Planning and Analysis. You’ll lead process improvements, system automation, and team enablement across quote-to-cash workflows, helping the team improve accuracy, support compliance, and prepare for new products, services, and pricing models.

This role is a strong fit if you enjoy combining technical accounting depth with operational problem-solving. You’ll evaluate the revenue impact of new offerings before launch, improve how systems and teams work together, and help build scalable processes that support timely financial reporting and audit readiness. In your first year, you’ll focus on improving workflows, strengthening adoption of new tools and processes, and helping the revenue accounting function operate with more consistency and efficiency.

What You’ll Do  

• Identify bottlenecks, manual work, and automation opportunities across quote-to-cash, revenue recognition, deferred commissions, and the financial close process.
• Develop standardized policies, procedures, and playbooks that support consistent execution across revenue and deferred commissions accounting.
• Drive adoption of new workflows and tools by partnering with the broader revenue team and helping improvements become part of day-to-day operations.
• Evaluate new products, services, and pricing models for revenue recognition implications under Accounting Standards Codification 606, including areas such as multi-element arrangements, standalone selling price estimation, variable consideration, and contract modifications.
• Collaborate with Product, Deal Desk, Legal, and Financial Planning and Analysis to assess accounting and operational considerations during offering design and go-to-market planning.
• Partner with external auditors to align on technical accounting conclusions and maintain clear documentation for new accounting positions.
• Enhance system integrations, data quality, and reporting across enterprise resource planning, customer relationship management, revenue, and commissions systems.

What You’ll Bring 

• Deep expertise in revenue recognition and deferred commissions accounting in a technology, SaaS, subscription, or consumption-based business environment, including applying Accounting Standards Codification 606 and Accounting Standards Codification 340.
• Experience improving processes and implementing automation across revenue accounting or quote-to-cash workflows, with a focus on scalability, accuracy, and operational efficiency.
• Ability to assess new offerings and pricing models and translate technical accounting guidance into practical recommendations for cross-functional partners.
• Strong cross-functional collaboration skills across Finance, Information Technology, Sales Operations, Legal, Product, and planning teams in a distributed environment.
• Strong analytical and problem-solving skills with a data-informed approach to reconciliation, reporting quality, and process design.
• Ability to document, train, and enable others through clear communication and subject matter expertise.
• Knowledge of Sarbanes-Oxley 404 controls and audit-ready practices related to revenue recognition and deferred commissions accounting.

About the team

The Revenue Accounting team at GitLab is responsible for revenue recognition and deferred commissions accounting, with a focus on accurate reporting, strong controls, and scalable operations that support GitLab’s growth. We work closely with cross-functional partners across the business to improve how quote-to-cash processes, systems, and accounting decisions come together. In GitLab’s all-remote, asynchronous environment, we value clear documentation, cross-regional collaboration, and shared ownership to support new offerings, evolving pricing models, and audit-ready financial processes.

How GitLab will support you

Benefits to support your health, finances, and well-being

Flexible Paid Time Off 

Team Member Resource Groups

Equity Compensation & Employee Stock Purchase Plan

Growth and Development Fund

Parental leave 

Home office support

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.

An overview of this role

You will engineer security improvements to the GitLab product as well as building and maintaining the tools we use to detect and prevent abuse on our SaaS platforms. A strong software engineering background with experience in large Ruby/Rails codebases is required. As an engineer on the Trust and Safety team, you will predictively identify abuse patterns and trends and build prevention systems to mitigate abusive users. The Trust and Safety team both maintains core abuse prevention platforms as well as cross functionally builds customer safety mechanisms on GitLab, such as the introduction of Compromised Password Detection for GitLab.com (link). 

This role is an ideal fit for candidates with software engineering backgrounds interested in moving into security engineering. Formal security engineering experience is not a requirement for this role.

Find out more about the Trust and Safety team and responsibilities here:

• Trust and Safety

What you’ll do  

• Maintain core abuse prevention systems and build new abuse detection rules to identify and prevent evolving abuse patterns such as platform abuse, cryptomining, platform spam and abuse of terms of service
• Maintain and build new capabilities in our in-house abuse platform
• Improve and expand agentic AI capabilities in our abuse mitigation tools 
• Collaborate with peers to deliver safety improvements for the GitLab product
• Resolve automation gaps and create efficient, automated processes
• Create and maintain documentation such as runbooks and procedures

What you’ll bring 

• Strong software development skills with experience in Ruby/Rails
• Experience working on distributed applications with large codebases and deployed in cloud environments strongly preferred
• Passion/desire to proactively develop security engineering skills
• Comfortable working in an all remote environment where results and impact matter above hours worked
• Interest in “thinking like a hacker” and defending against attacks with an “automation first” mindset
• Interest in cloud native development (Google Cloud Platform (GCP) and/or AWS)
• Interest in handling trust and safety security incidents (platform abuse, cryptomining, platform spam)

About the team

Trust and Safety is a global team tasked with keeping abusive behaviors off of GitLab.com. The team relies on automations, LLM aided predictive analysis, and user behavior analysis to proactively detect and prevent abuse on the Gitlab platform. The Trust and Safety team closely collaborates with peer teams within Security Operations, including Security Incident Response, Signals Engineering, Threat Intelligence, and the Red Team. 

An overview of this role

As a Staff Engineer on GitLab's Software Composition Analysis team, you'll drive hands-on implementation of security features that help customers understand and manage risks in their software supply chain. Your focus will be on enhancing GitLab's SCA capabilities in dependency scanning and container scanning. You'll work directly on architecture and technical implementation and help the team push forward on three core goals: Gather (introducing data points that help customers understand the urgency of issues, like reachability analysis and supply chain poisoning detection), Integrate (providing other teams with innovative collection techniques for better workflows), and Optimize (solving data correlation at massive scale). You'll contribute hands-on code, help solve novel technical challenges, and establish patterns that improve how the distributed team works together across multiple time zones.

Examples of some future features that you may help build: 
- Dependency scanning for unmanaged C/C++ 
- Dependency Scanning for Yocto environments 
- Vulnerability detection using CPE-based matching against package metadata

What you’ll do

• Implement complex features in dependency scanning and container scanning, shipping improvements that increase scan coverage, improve accuracy, and drive adoption of GitLab's SCA capabilities
• Solve novel technical problems in SCA, establishing reusable patterns that reduce delivery time and improve engineering effectiveness across the team
• Guide architectural and implementation decisions in collaboration with engineering managers, product managers, and peer engineers to improve scalability, reliability, and delivery outcomes across the team's SCA architecture
• Contribute code, design reviews, and technical mentorship that raise quality standards, improve maintainability, and strengthen performance across the codebase
• Collaborate across GitLab's security domain to align SCA work with related efforts in vulnerability management and adjacent product areas, accelerating delivery of shared roadmap goals and improving coordination across related security efforts
• Identify and resolve technical debt, prioritizing changes that improve team velocity, code health, and long-term maintainability across the team's core SCA services
• Translate product needs and customer feedback into technical solutions in partnership with product, UX, and security stakeholders, delivering features that address high-impact customer risks and advance shared roadmap goals

What you’ll bring

• Hands-on experience in Software Composition Analysis and the ability to contribute to complex security features in dependency scanning and container scanning
• Deep hands-on expertise in building and evolving dependency scanning and container scanning analyzers
• Demonstrated ability to design solutions that balance complexity, performance, and maintainability
• Expertise with backend technologies, particularly Go and/or Ruby on Rails, with ability to pick up new technologies quickly
• Familiarity with cloud providers like GCP, CloudFlare, or AWS
• Ability to evaluate technical tradeoffs in SCA and security tooling, with proven success delivering maintainable solutions that help customers manage software supply chain risk
• Ability to work effectively in distributed, async-first teams across multiple time zones
• Experience explaining complex technical and security concepts to engineers and stakeholders

About the team

The Software Composition Analysis team is part of GitLab's Sec Engineering group, and we focus on building capabilities that help customers identify and manage risks in their software supply chain. We work across areas including dependency scanning, container scanning, and license scanning, and we work closely with product, UX, security, and adjacent engineering teams to close important feature gaps in GitLab's platform. Our team members are distributed across regions including Europe and North America, so we rely on clear documentation, asynchronous communication, and thoughtful coordination across time zones. This opportunity is centered on helping us deliver complex security features while balancing hands-on technical progress with strong team execution.

As a Staff Backend Engineer in the Developer Experience group, you’ll work cross-functionally to help us identify and improve the engineering experience across GitLab’s internal engineering teams. We’re at a pivotal time in transforming our testing approach and development experience to enable engineers to deliver high-quality code efficiently and with confidence. 

Developer Experience currently has six, globally distributed teams of Backend Engineers and Software Engineers in Test. This role will work across the entire group to help us identify and remove the biggest points of friction that affect development at GitLab. Expect to split your time between hands-on coding in Ruby and Go, designing scalable solutions and helping every team deliver.  You’ll be instrumental in shaping our engineering culture across GitLab.  

This is a highly visible role with strong company-wide support. You’ll be instrumental in shifting our culture and practices toward a cohesive Developer Experience Platform strategy—backed by buy-in and appetite for change.

Some examples of our projects

• Identifying and removing the source of flakiness in our tests pipelines
• Introducing comprehensive test coverage reporting to guide our decisions about what and when to test
• Standardizing logging libraries and documentation to make it easy for all features and components to provide consistent logs
• Providing stable, configurable development environments 

What You’ll Do

• Drive Technical Excellence Across Teams: Provide hands-on engineering contributions and technical leadership across six Developer Experience teams, jumping in to unblock critical work or accelerate high-impact initiatives
• Champion Engineering Needs: Partner with engineering teams across GitLab to identify pain points, gather feedback, and translate day-to-day frustrations into actionable improvements for the Developer Experience roadmap
• Transform Testing at Scale: Help us modernize our testing to support GitLab's growth—ensuring engineers have fast, reliable tools that catch issues early without slowing them down
• Optimize CI/CD Pipelines: Reduce merge and CI friction by building workflows that deliver fast, actionable feedback—helping engineers iterate confidently and ship faster
• Break Down Systemic Bottlenecks: Collaborate with Platform, Product, and Infrastructure teams to identify and eliminate the architectural and process friction that slows down development
• Shape Engineering Culture: Foster a culture of continuous learning, inclusion, and improvement—where great developer experience is a shared value across the organization

What You’ll Bring

• Deep experience with developer tooling, DevEx strategies, and testing frameworks at scale
• Experience leading platform or transformation initiatives across multiple teams
• Proven ability to influence without authority and collaborate across functions
• Familiarity with DevOps workflows and CI/CD pipelines
• Strong written and verbal communication skills in a remote-first environment
• A product mindset with a passion for empowering developers
• Alignment with GitLab values, especially collaboration, iteration, and transparency

An overview of this role

You'll join GitLab's Software Supply Chain Security stage as the Staff Engineer, Secrets Management, providing technical leadership for GitLab's strategic investment in integrated secrets management. You'll set the technical direction for GitLab Secrets Manager, our OpenBao-powered solution that helps customers securely store, distribute, and manage the lifecycle of secrets used across CI/CD pipelines. This role sits at the intersection of the GitLab platform and the OpenBao open source project: you'll drive architecture decisions for multi-tenant secrets management at scale, guide integration into GitLab, and contribute upstream so we can deliver capabilities customers can trust.

In your first year, your success will look like a clear, scalable architecture for GitLab Secrets Manager, reliable performance that meets GitLab.com needs in partnership with Infrastructure teams, and strong cross-team alignment across Pipeline Security, Authentication, and Platform. You'll also represent GitLab in OpenBao's governance and technical discussions, helping ensure our product direction and upstream contributions reinforce each other.

How we interview

Our process includes technical interviews and stakeholder conversations focused on how you partner across functions and drive alignment.

You should expect questions about how you collaborate with cross-functional partners and communicate tradeoffs in ambiguous, high-impact work.

What you'll do

• Lead the technical strategy for GitLab Secrets Manager, setting architecture direction for secure, multi-tenant secrets management at scale.
• Own the integration between GitLab and OpenBao, including namespaces, authentication mechanisms, and policy management.
• Collaborate with Pipeline Security, Authentication, and Platform teams to propose, review, and deliver cross-team secrets management improvements.
• Partner with GitLab.com Infrastructure teams to ensure secrets management meets reliability, performance, and operational requirements.
• Represent GitLab in the OpenBao open source project by contributing features upstream, participating in technical steering discussions, and maintaining strong technical credibility.
• Mentor and advise engineers on secrets management, cryptographic systems, and secure architecture patterns, raising the quality and consistency of designs and implementations.
• Interface with engineering managers and senior leadership to scope initiatives, clarify tradeoffs, and unblock delivery across teams.
• Engage with customers and external stakeholders to understand real-world needs and communicate GitLab's secrets management capabilities and roadmap direction.

What you'll bring

• Experience designing and operating secrets management systems (for example, HashiCorp Vault, OpenBao, or cloud-native offerings), including secure storage, access control, and audit logging.
• Ability to lead architecture decisions for resilient, multi-tenant services that handle secrets operations at scale, including high availability and cluster management patterns.
• Working knowledge of cryptographic and key management concepts, such as encryption in transit and at rest, key derivation, and hardware security module (HSM) or PKCS#11 integrations.
• Experience implementing authentication and authorization integrations, such as JSON Web Token (JWT) or OpenID Connect (OIDC), mutual Transport Layer Security (mTLS), and certificate-based authentication.
• Proficiency building product integrations in Go (within the OpenBao or Vault ecosystem) and Ruby on Rails for GitLab platform integration.
• Experience contributing to open source projects and working effectively with distributed governance, balancing upstream needs with product requirements.
• Demonstrated ability to operate with high autonomy, drive strategy, and serve as a trusted partner to senior leaders (including constructively challenging assumptions and tradeoffs).
• Strong communication and collaboration skills to influence across teams and levels, including mentoring engineers and working in a fully remote, asynchronous environment.

About the team

The Secrets Management team sits within the Pipeline Security group in GitLab's Software Supply Chain Security stage. We own GitLab Secrets Manager, an OpenBao-powered capability that helps teams securely store, distribute, and manage the lifecycle of secrets used across continuous integration and continuous delivery (CI/CD) pipelines. The team works closely with Authentication, Authorization, Compliance, and Platform counterparts to deliver secure defaults, reliable operations for GitLab.com, and product-grade integration between GitLab and OpenBao (including namespaces, authentication, and policy management). Our core challenge is building multi-tenant secrets management at scale while balancing upstream open source collaboration with the needs of GitLab customers.

An overview of this role

As a Staff Backend Engineer (Python) on the Duo Chat team in AI Engineering, you'll lead the backend architecture that powers GitLab Duo Chat across the GitLab DevSecOps platform. You'll solve hard problems in building reliable, secure, and scalable AI-powered chat workflows so customers can plan, write, review, and secure code faster, with confidence. This is a hands-on technical leadership role where you'll set direction for how we integrate and evolve large language model providers (including Google Vertex AI) across Ruby on Rails and Python services, raise the bar on observability and testing, and guide the team through ambiguous, high-impact technical decisions. Over your first year, you'll be expected to drive key architectural choices, reduce technical debt that slows iteration, and help the team ship durable improvements to response quality, reliability, and maintainability.

Some examples of our projects:

• Integrate new generative AI models and providers into GitLab Duo Chat to expand capabilities and improve response quality
• Improve debugging, observability, and test coverage for AI-powered chat workflows to increase reliability at scale

What you'll do

• Define the technical architecture and technical roadmap for the Duo Chat group, aligning backend execution with product direction and engineering priorities
• Solve the highest-scope and most ambiguous backend problems, delivering secure, well-tested, performant solutions with minimal guidance
• Integrate and extend generative AI capabilities in GitLab Duo Chat, including large language models (LLMs) and providers such as Google Vertex AI
• Develop, ship, and maintain backend features across Python and Ruby on Rails services that power Duo Chat experiences across the GitLab platform
• Design, implement, and review GraphQL application programming interface (API) contracts and supporting backend logic to ensure reliability, scalability, and clear frontend integrations
• Improve observability, debugging workflows, and incident readiness by strengthening logging, tracing, and production troubleshooting practices
• Drive code quality and long-term maintainability by setting internal standards, leading code reviews, and identifying and reducing technical debt
• Mentor engineers across the team and participate in Tier 2 on-call rotations, contributing to root cause analysis and follow-up improvements to resiliency and testing (including RSpec)

What you'll bring

• Production experience building and operating backend services in Python, including background jobs, APIs, and data models
• Ability to define and evolve technical architecture by weighing trade-offs, selecting patterns and tools, and setting a clear technical direction for others to follow
• Experience setting and driving a technical roadmap in partnership with product and engineering stakeholders
• Proficiency designing and maintaining REST and/or GraphQL APIs with attention to scalability, maintainability, and backward compatibility
• Hands-on experience integrating large language models into applications, including prompt design and building features powered by generative AI
• Strong SQL skills and experience working with relational databases such as PostgreSQL, including efficient queries and data modeling
• Experience mentoring engineers through code review, architectural guidance, and shared standards, and communicating complex technical decisions in a clear, async-first way
• Comfort contributing in a mature codebase across Python and Ruby on Rails, with openness to learning and applying transferable skills from related technologies or domains

About the team

The Duo Chat team sits within GitLab's AI Engineering organization and is responsible for building and evolving GitLab Duo Chat, the AI-powered chat experience embedded across the GitLab DevSecOps platform. You'll work with a small, cross-functional group of backend, frontend, and AI specialists who collaborate asynchronously across time zones, using GitLab issues, merge requests, and documentation as the primary way of working. The team focuses on integrating and scaling generative AI capabilities (including providers like Google Vertex AI), improving reliability and performance, and strengthening debugging, observability, and testing workflows so customers can safely use AI to plan, write, review, and secure their code across GitLab.

About the Role

As a Staff Product Designer, you’ll lead design for cross-cutting platform experiences–the foundational elements that touch every workflow regardless of stage. This role requires deep collaboration; every decision ripples across the product. You’ll partner closely with Product Management, Engineering, and designers cross stages to translate ambiguity into clear direction, define solutions, and ship work that meaningfully improves the experience for developers and DevSecOps teams.

This role will be project based, starting with Knowledge Graph, and solving persistent problems that span organizational boundaries and require a holistic view of the product. Along the way, you’ll share knowledge, contribute to our Pajamas Design System, and mentor other designers. Staff designers are key culture carriers who model collaboration, iterative ways of working while pushing the bar on craft.

What You’ll Do

• Lead design on platform experience – Drive the end-to-end design process for cross-cutting features and workflows that impact users across the product. Define both tactical deliverables that solve immediate user problems and strategic outputs that connect to longer-term platform vision.
• Partner cross-functionally – Coordinate across multiple groups to align on platform-level experiences. Work closely with Product Managers and Engineering Managers to shape priorities, scope MVCs, and ensure design intent is maintained through development.
• Elevate craft and quality – Demonstrate excellence in interaction design, visual design, and systems thinking. Raise the quality bar through thoughtful feedback in design reviews and by modeling high standards in your own work.
• Contribute to the design system – Actively contribute to Pajamas by identifying reusable patterns, proposing new components, and ensuring your group’s work extends and adheres to system standards.
• Mentor and support others – Coach Product Designers and Senior Product Designers through pairing, design critiques, and knowledge sharing. Help onboard new team members and contribute to a collective team culture.
• Ground work in research – Conduct usability studies, competitor evaluations, and formative research. Collaborate with UX Research on problem validation and incorporate insights to fulfill user and business needs.

What You’ll Bring

• Demonstrated ability to lead design on complex, ambiguous projects that require significant cross-functional collaboration
• Strong portfolio showing end-to-end product design work, from problem framing through shipped solutions
• Experience mentoring designers and elevating team craft
• Proficiency with Figma and prototyping tools
• Excellent communication skills–ability to present work, articulate rationale, and facilitate alignment
• Experience collaborating closely with Product Management and Engineering
• Systems thinking and experience contributing to or working with design systems
• Familiarity with developer tools, DevSecOps, or technical B2B products is a plus
• Experience working in remote, distributed teams

An overview of this role

As an Intermediate Backend Engineer on the GitLab Knowledge Graph team, you'll help build and operate a graph data service that supports GitLab Duo agents, analytics, and architecture-level features across GitLab.com, Dedicated, and Self-Managed deployments. You’ll join a small, Rust-first team that values clear ownership, thoughtful system design, and rigorous thinking about data and reliability.

The Knowledge Graph service is a Rust backend that builds a property graph from GitLab’s software development lifecycle (SDLC) and code data. It uses ClickHouse, NATS JetStream, and the Data Insights Platform. It exposes secure graph queries and MCP tools used by AI agents and product features. In this role, you’ll deliver features and improvements in well-scoped areas, learn the broader architecture, and contribute to reliability, observability, and operational readiness.

In your first year, you’ll take clear ownership of specific components or features (for example, parts of the SDLC indexing pipeline or query paths). You’ll help reduce single points of failure with better tests and runbooks, and you’ll help the team ship analytical services that are easier to maintain and evolve over time.

What you’ll do

• Implement and iterate on backend features in the Rust-based Knowledge Graph service, including changes to the query engine, SDLC and code indexing flows, and API endpoints (including MCP endpoints) under guidance from senior and staff engineers.
• Help maintain integrations between Knowledge Graph and the rest of the GitLab platform, working in areas that touch GitLab Rails, the Data Insights Platform (Siphon, NATS, ClickHouse), and GitLab Duo Agent Platform.
• Contribute to system design discussions by proposing options, raising questions, and documenting decisions, with a focus on reliability, scalability, and maintainability for analytical graph workloads.
• Improve the operational maturity of the service by adding or enhancing metrics, logging, runbooks, alerts, and small readiness tasks, and by participating in on-call rotation as appropriate for your level and experience.
• Collaborate asynchronously with product, data, infrastructure, security, and AI counterparts to clarify requirements, align on scope, and ship features safely for customers and sustainably for the team.
• Use AI-assisted development workflows responsibly (for example, using Knowledge Graph-backed agents and internal Duo tooling), and share what works with the team while keeping a strong focus on code quality and correctness.
• Participate in code reviews, knowledge-sharing sessions, and pairing to both learn from others and help maintain consistent standards across the codebase.
• Contribute across the stack when needed, including occasional Ruby work for Rails integration and authorization paths, or small frontend changes related to Knowledge Graph features (for example, Software Architecture Map UI plumbing).

What you’ll bring

• Professional experience building and maintaining backend systems in production, with an understanding of reliability, maintainability, and how to support services over time (incident responses, and follow-ups, etc).
• Proficiency in at least one modern backend language and strong interest in Rust, with either prior Rust experience or clear evidence you can ramp quickly and deliver in a Rust-first, performance-sensitive codebase.
• Some exposure to distributed data or analytics systems (for example, OLAP databases, Kafka- or NATS-style messaging, or change data capture (CDC) pipelines), or strong motivation to develop those skills in this role.
• Interest in graph data modeling and query patterns (property graphs, multi-step (n-hop) traversals, aggregations), and willingness to learn the tools and concepts used in Knowledge Graph over time.
• Practical experience (or strong interest) using AI tools in day-to-day development, along with a thoughtful approach to validating outputs and integrating AI into your workflow.
• A language-agnostic mindset and evidence that you can pick up new languages and frameworks as needed (for example, Ruby, Go, or TypeScript/Vue where the work touches adjacent systems).
• Solid fundamentals in system design for your level, including the ability to reason about trade-offs, ask good questions, and align your implementation work with documented architectural decisions.
• Comfort working in a low-process, high-ownership environment where you take responsibility for your work, communicate progress clearly, and help refine problem statements with your teammates.
• Strong written communication and comfort collaborating asynchronously across time zones in an all-remote team.

About the team

We sit within the Data Engineering organization. We're a small group of senior engineers and we work closely with partners across AI (Duo Agent Platform), analytics, infrastructure and delivery, and security because our work spans many parts of the platform.

We collaborate asynchronously and optimize for strong ownership rather than a feature factory model. We each build a meaningful understanding of the system and help evolve it over time. A key challenge for us right now is scaling sustainably. That includes hardening multi-tenant behavior, maturing observability and readiness, and keeping the system healthy and maintainable as usage grows and team members take time off. At the same time, we're bringing Knowledge Graph to general availability (GA).

An overview of this role

Commercial Named Account Executives are the primary point of contact between prospective and existing customers of GitLab within the top end of the mid-market, which currently works with companies that employ between 250 to 3,999 employees. These GitLab team members manage the spectrum of project sizes, ranging from small fast growing teams in smaller agile organizations to complex enterprise projects advising on the journey with GitLab to achieve specific business outcomes.

Commercial Named AEs work closely in tandem with the business development team and sales management to manage a broad book of business spread over a large opportunity value range and focus on exceeding client expectations.

What you'll do

• Meet or exceed quota while fostering strong customer relationships
• Articulate the value of GitLab to our Commercial prospects and customers in Canada 
• Take ownership of and act as the CEO for the book of business in your territory:
• Document the buying criteria & process, next steps & owners
• Build a strong pipeline through a healthy cadence of prospecting activity
• Prospect and close new business to expand your territory
• Ensure adoption of our solutions and do your best to avoid churn and contraction
• Work and collaborate with our Partner ecosystem to drive new business and value for our customers
• Create an accurate forecast for each quarter against your plan/budget
• Drive attendance to our events, which you will be part of to further network with current and prospective customers
• Contribute to root cause analyses on wins/losses.
• Communicate lessons learned to the team, including account managers, the marketing team, and the technical team.
• Contribute to documenting improvements in our sales handbook
• Collaborate with cross-functional teams, such as Customer Success, Renewals, Sales Development, etc. to provide account leadership, ensuring a good outcome for our customers in the pre- and post-sales process
• Be the voice of the customer by contributing product ideas to our public issue tracker
• Master MEDPICC and Command of the Message on all opportunities

What you'll bring

• A true desire to see customers benefit from the investment they make with GitLab
• Demonstrated progressive experience with SaaS sales through pitching on value to development team (preferably devops)
• Interest in GitLab, and open source software
• Ability to leverage established relationships and proven sales techniques for success
• Effective communicator, strong interpersonal skills
• Motivated, driven and results oriented
• Excellent negotiation, presentation and closing skills
• Preferred experience with Git, Software Development Tools, Application Lifecycle Management
• You share our values, and work in accordance with those values.
• Ability to travel regularly to meet with customers in person and comply with the company’s travel policy

#LI-SK1

An overview of this role

We're seeking an exceptional Engineering Lead to drive the evolution of GitLab's Security Risk Management (SRM) stage into a world-class platform for vulnerability analysis and remediation at enterprise scale. This is a rare opportunity to architect and build distributed systems that will fundamentally change how large organizations approach application security and developer security workflows.

As the SRM Stage Lead, you'll be responsible for transforming our engineering culture toward high-performance distributed systems while delivering an exceptional user experience for both Application Security professionals and Developers. You'll own the technical strategy for processing, analyzing, and remediating vulnerabilities across massive codebases and complex enterprise environments.

What You’ll Do  

Technical Leadership & Architecture

• Design distributed systems architecture capable of processing vulnerability data from thousands of repositories, millions of commits, and complex dependency graphs in real-time
• Drive storage system decisions for multi-petabyte security datasets, balancing query performance, cost efficiency, and data retention requirements across time-series, graph, and document storage paradigms
• Architect scalable analysis pipelines that can ingest vulnerability feeds, correlate findings across multiple security tools, and provide actionable intelligence to both security teams and individual developers
• Lead the technical evolution from monolithic security scanning to microservices-based, event-driven vulnerability management systems

Engineering Culture Transformation

• Champion high-performance systems thinking throughout the team, establishing patterns for horizontal scaling, efficient resource utilization, and fault-tolerant distributed computing
• Establish technical standards for system observability, chaos engineering, and performance optimization in security-critical systems
• Mentor and develop senior engineers in distributed systems design, database optimization, and large-scale system architecture
• Drive architectural decision records (ADRs) for major technical decisions, particularly around data storage, processing frameworks, and system boundaries

Product & User Experience Excellence

• Own the end-to-end user journey (in partnership with PM) for both AppSec professionals managing enterprise-wide risk and developers receiving actionable security feedback in their workflow
• Design APIs and interfaces that abstract complexity while providing the power and flexibility that security professionals demand
• Collaborate with Product Management, UX and Product Design to translate complex technical capabilities into intuitive user experiences
• Establish feedback loops with large enterprise customers to ensure our technical solutions scale with their organizational complexity

Strategic Technical Execution

• Evaluate and integrate cutting-edge technologies in areas such as graph databases, stream processing, machine learning inference at scale, and distributed caching, in collaboration with GitLab’s Infrastructure, Data and AI teams
• Own the technical roadmap for vulnerability correlation, risk scoring, and automated remediation workflows
• Drive partnerships with other GitLab stages to ensure seamless integration across the DevSecOps platform
• Lead incident response for availability and performance issues in customer-facing security systems

What You’ll Bring 

Technical Expertise

• 10+ years of software engineering experience with 5+ years leading distributed systems at scale (>100M daily operations)
• Deep expertise in designing and operating high-throughput, low-latency distributed systems with complex data models
• Proven experience with polyglot persistence strategies, including relational databases (PostgreSQL, Cloud Spanner), time-series databases, graph databases, and distributed key-value stores
• Strong background in stream processing frameworks (Apache Kafka, Apache Flink, or similar) and event-driven architectures
• Hands-on experience with container orchestration (Kubernetes) and cloud-native observability stacks
• Security domain knowledge with understanding of vulnerability assessment, static analysis, dependency scanning, or application security testing

Leadership & Communication

• Proven track record of leading and growing high-performing engineering teams (40+ engineers)
• Experience transforming engineering culture and establishing technical excellence standards in fast-growing organizations
• Strong technical communication skills with ability to present complex architectural decisions to executive stakeholders
• Collaborative leadership style with experience working across multiple engineering teams and product stakeholders

Problem-Solving & Innovation

• Systems thinking approach to complex technical problems with demonstrated ability to make appropriate trade-offs between performance, scalability, and maintainability
• Experience with A/B testing frameworks and data-driven decision making in technical contexts
• Track record of successfully delivering large-scale technical migrations or architectural transformations
• Startup or high-growth company experience with ability to balance technical debt with rapid feature delivery

About the team

Security Risk Management sits at the heart of modern DevSecOps. The systems you build will directly impact how Fortune 500 companies protect their applications and how millions of developers integrate security into their daily workflow. You'll have the opportunity to define the future of application security tooling while working with some of the most challenging distributed systems problems in the industry.

The Technical Challenge

You'll be solving some of the most interesting distributed systems problems in the security space:

• Scale: Processing vulnerability data for organizations with 100,000+ repositories and millions of developers
• Performance: Sub-second query response times for complex security analytics across massive datasets
• Reliability: 99.95%+ uptime SLAs for security-critical workflows that can't afford downtime
• Complexity: Correlating findings across 20+ different security tools while maintaining data lineage and audit trails
• User Experience: Making complex security data accessible to both security experts and developers with varying security expertise

An overview of this role

We are seeking a Director, Product Security Architecture to lead our Security Architecture function within the Security Platforms & Architecture (SPA) sub-department and to serve as a strategic security partner to key product and engineering leadership groups across GitLab.

In this role, you will manage and grow a team of Product Security Architects and our closely-aligned risk and metrics engineer who are each dedicated to major product areas of Security, AI, and Core DevOps. Your team will focus on turning product security risks, requirements, and insights into clear architectural guidance, “paved roads,” and multi-quarter risk reduction programs that align with how Product and Engineering actually plan and deliver.

You will operate in an environment where feature delivery and platform capabilities are accelerating, architectures and technologies are evolving, and teams are continually balancing ambitious product goals with a strong security posture. In this context, you will help Product Security:

• Maximize risk reduction by identifying strategic opportunities that fit naturally into existing R&D work 
• Ensure that material product security risks and tradeoffs are surfaced, acknowledged, and decided at the right leadership levels
• Lead SPA/AppSec scaling strategies that increase coverage and support non-linear developer gains, with a clear focus on enabling developer velocity with minimal friction

While many strong candidates will come from a deep product security background, this role is also an excellent fit for experienced software or architecture leaders who have consistently delivered secure, resilient systems in complex R&D environments and are excited to lead security outcomes in close partnership with engineering.

What you’ll do

• Lead, develop, and mentor a team of Product Security Architects and closely-aligned specialists who are dedicated to major product functional areas (e.g., Sec Section, AI, Core DevOps)
• Own and continuously evolve the Product Security Architecture strategy and partnership model, shifting architects from embedded consultants to accelerators of secure architecture delivery, and serve as a strategic partner to Product and Engineering Directors/VPs 
• Oversee and mature the Product Security Risk Register, ensuring systemic product security risks are clearly articulated, prioritized with Product and Engineering, and paired with multi-quarter risk reduction plans that reduce long-term product security debt.
• Operate Product Security Architecture in a risk-aligned, business-enabling way that focuses Security Architects on the highest-impact, hardest-to-change architectural decisions, helping teams make clear, informed tradeoffs without slowing delivery.
• Define and drive security visions, standards, “paved roads,” and secure-by-default platform behaviors and configurations that enable product teams to make sound security decisions with minimal overhead, including evolving existing behaviors over time to strengthen the baseline security posture.
• Lead the Product Security AI strategy for scaling, including adoption of AI-assisted and platform-level investments that expand security review coverage, reduce toil, and support non-linear developer gains while enabling developer velocity.
• Partner with Application Security, Infrastructure Security, Security Research, Security Operations, Security Risk, and Security Compliance on end-to-end risk reduction, including security-related controls, quality standards, and integration of research and operational learnings into architectures.
• Define and track meaningful architecture-related metrics and Key Risk Indicators, and represent Product Security in cross-functional forums, clearly articulating risk, tradeoffs, and recommended paths forward.

What you’ll bring

• Significant experience (typically 10+ years) leading software, architecture, or application security initiatives in high-velocity R&D organizations, with a strong grounding in building and evolving complex software systems
• Strong application security and secure design literacy, whether from direct AppSec roles or from owning secure delivery of large-scale systems, including familiarity with common vulnerability classes, modern software architectures, and practical mitigation patterns
• Deep understanding of systemic product security risks in large-scale platforms, with expertise in at least some of: CI/CD and pipeline security, software supply chain security, identity and access management (AuthN/Z), AI/ML security, or multi-tenant SaaS architectures
• Proven ability to operate effectively in constrained environments: balancing business goals and risk reduction, focusing attention on the highest-impact, hardest-to-reverse decisions, and framing options in terms of risk, cost, and customer impact rather than absolutes.
• Demonstrated success building trust with Product and Engineering Directors/VPs, influencing multi-quarter roadmaps, and co-owning outcomes rather than acting solely as a gate.
• Experience designing and rolling out scalable security patterns—standards, “paved roads,” and secure-by-default configurations—that reduce risk while minimizing additional toil for product and engineering teams.
• Experience collaborating with Compliance, Audit, and Security Operations on the definition, implementation, and demonstration of security controls and security-related quality standards, and translating technical designs into clear language for auditors, engineers, and senior leaders.
• Experience supporting organizations through significant technology and architectural change (e.g., adoption of new languages and frameworks, or evolution from monoliths toward microservices or domain-oriented architectures) while maintaining or improving security posture.
• Ability to operate at multiple altitudes—from executive-level strategy and stakeholder alignment down to detailed technical design discussions when necessary—with excellent written and verbal communication in an all-remote, asynchronous environment.
• Comfort with AI-augmented workflows and enthusiasm for leveraging tools like GitLab Duo to scale the Product Security Architecture function, along with strong alignment to GitLab’s values and a track record of thriving in a highly collaborative, remote-first culture.
• Nice to have: Experience with security requirements and frameworks relevant to GitLab’s customers (e.g., FedRAMP, ISO 27001, SOC 2, PCI-DSS); and prior experience in organizations undergoing significant scaling, reorganization, or operating model transformation

About the team

Product Security Architects are part of our Security Platforms & Architecture team, which protects GitLab’s platform and products by identifying, prioritizing, and mitigating security risks across the entire product lifecycle. Composed of Security Architecture, Application Security, and Security Research, we combine strategic security architecture with operational application security to enable GitLab to be the most secure software factory platform on the market.

An overview of this role

As the Director of Technical Writing, you will help redefine how technical documentation is created, delivered, and experienced across GitLab. This role reports to the Chief Design Officer and leads a team through a period of meaningful change, with a strong focus on AI, process redesign, and tighter partnership with Engineering, Product Management, and UX. You will challenge long-standing assumptions, help engineering teams take greater ownership of source documentation, and explore how documentation can become more useful inside the product experience, including through GitLab Duo.

In your first year, you will assess the current team structure, strengthen skills and capabilities for the next phase of the function, improve collaboration across partner groups, and raise satisfaction with the docs site. This is a strong fit for a leader who can bring creative, practical thinking to a mature function and turn documentation into a more integrated, actionable part of the GitLab platform.

What you’ll do

• Lead the Technical Writing organization through process evaluation and redesign, with a focus on making documentation creation more efficient and better connected to product development.
• Drive the team’s AI readiness by identifying where AI can improve workflows, reduce unnecessary handoffs, and support better documentation outcomes.
• Partner with Engineering to shift documentation earlier in the development process and establish shared ownership of first-draft technical content.
• Collaborate with Product Management and UX to identify ways technical documentation can surface more directly in the product experience.
• Shape the team structure and operating model so it supports current priorities, healthy management scope, and future capability needs.
• Develop the team’s skills and expectations for a new phase of technical writing at GitLab, including adaptability, experimentation, and cross-functional collaboration.
• Improve the end-user experience of the docs site by guiding priorities that make content more useful, accessible, and actionable.
• Own strategic decisions for the function and bring forward multiple practical options when solving complex documentation and workflow challenges while honoring GitLab values.

What you’ll bring

• Experience leading technical writing or documentation teams through organizational, process, or operating model change.
• Fluency with AI in both strategic and practical contexts, including using AI to improve workflows and evaluating where human judgment remains essential.
• Ability to build strong partnerships with Engineering, Product Management, UX, and other functions that influence product and content quality.
• Judgment to balance innovation with practicality, including a thoughtful approach to automation that improves work without treating people as replaceable.
• Creative problem-solving skills and comfort proposing several workable paths forward when facing ambiguity or long-standing constraints.
• Experience developing leaders and teams, including assessing capabilities, setting direction, and supporting change across an established organization.
• Strength in asynchronous collaboration and communication across distributed teams, with the ability to create clarity and momentum across time zones.
• Technical credibility in documentation, developer workflows, docs-as-code environments, and we also welcome candidates with transferable leadership experience from adjacent disciplines.
• Content strategy expertise to shape documentation priorities, information architecture, and how technical content connects to product goals and user needs.

About the team

The Technical Writing team helps GitLab users understand, adopt, and get value from the platform through clear, useful documentation. The team works closely with Engineering, Product Management, and UX to support product changes and improve the overall documentation experience, and it is entering a phase focused on AI readiness, process redesign, and stronger integration with the product itself. This is a distributed team that collaborates asynchronously across regions, with current working patterns shaped by time zone overlap needs and close partnership with other product development functions. The team includes experienced contributors and managers, and this role will help guide how the function evolves from here.

An overview of this role

As the Engineering Manager, Software Supply Chain Security: Pipeline Security, you’ll lead a team that makes GitLab CI pipelines more secure and trustworthy for thousands of organizations. You’ll guide the design and delivery of Software Supply Chain Security features, with a primary focus on CI job artifact security. This includes implementing the SLSA (Supply-chain Levels for Software Artifacts) framework in GitLab CI/CD and integrating related capabilities like SBOM, software composition analysis, and vulnerability management. You’ll treat your team as your product, safeguarding team health, hiring and developing a high-performing group of engineers, and collaborating closely with Product Management and Security to deliver on roadmap commitments. Together, you’ll improve how users protect their software supply chains in their first year and beyond.

Some examples of our projects:

• Developing a native secrets management system for GitLab CI pipelines
• Implementing SLSA Level 3 compliance features for CI job artifacts

What you’ll do

• Lead a team of engineers building Software Supply Chain Security features with a focus on CI job artifact security.
• Guide the design and implementation of SLSA (Supply-chain Levels for Software Artifacts) compliance within GitLab CI/CD pipelines.
• Collaborate with Product Managers to define, prioritize, and deliver the roadmap for supply chain security capabilities.
• Partner with Security team members to ensure new and existing features meet GitLab’s security standards and align with best practices.
• Stay current with software supply chain security standards and tools, including SLSA, SBOM, software composition analysis, and vulnerability management. Translate what you learn into actionable product improvements.
• Educate and advocate for supply chain security best practices across engineering teams to drive adoption of secure patterns in CI pipelines.
• Represent the Pipeline Security team in cross-functional initiatives and, when appropriate, in external industry forums focused on software supply chain security.
• Drive continuous improvement in team health, delivery predictability, and documentation quality for pipeline and supply chain security features.

What you’ll bring

• Experience leading and developing engineering teams, with a focus on building secure, reliable product features.
• Practical knowledge of software supply chain security concepts, tools, and industry standards.
• Understanding of the SLSA (Supply-chain Levels for Software Artifacts) framework and how to apply it in CI/CD pipelines.
• Familiarity with software artifact provenance, attestation, and verification techniques.
• Knowledge of secure software development practices, including container security, software composition analysis, and vulnerability management.
• Experience working with CI/CD systems and their security considerations.
• Ability to collaborate effectively with product management, security, and other cross-functional partners, and to advocate for supply chain security best practices.
• Openness to learning new technologies and approaches, with transferable skills from related security, infrastructure, or software engineering domains.

About the team

Our Pipeline Security team is a globally distributed group of engineers who collaborate asynchronously across time zones. We're focused on building Software Supply Chain Security features into the core GitLab platform, with current priorities including native secrets management for CI pipelines, artifact provenance and verification, and achieving SLSA Level 3 compliance. We partner closely with Product, Security, and other stage groups to design and implement these capabilities. We value clear communication, thorough documentation, and making new features straightforward for users to adopt.

An overview of this role

You'll join the Dedicated team as a Site Reliability Engineer focused on Environment Automation, where your work will help power hundreds of isolated GitLab environments for our customers. In this role, you'll help keep these environments reliable, scalable, secure, and consistent by treating everything as code and contributing to automation across the entire lifecycle, from initial provisioning to day-to-day operations. Instead of operating a single platform, you'll collaborate with senior SREs to solve the unique challenges of managing many tenant environments in parallel, each with its own constraints and integration points.

You'll help define, deploy, and maintain GitLab environments across cloud providers using infrastructure as code, deployment packages, and Kubernetes. You'll contribute to automation that reduces manual work, assist in building tooling that orchestrates upgrades and configuration changes safely at scale, and support an observability stack that lets us understand and improve the health of every environment. Your work will directly impact how customers experience GitLab Dedicated and other managed offerings, enabling them to focus on building software while we ensure their GitLab environments are always production ready.

Some examples of work you'll do:

• Contribute to the design and evolution of infrastructure automation using Terraform, Ansible, and Kubernetes to provision, upgrade, and operate many GitLab environments with minimal manual effort
• Help debug and resolve production issues across Kubernetes clusters, GitLab components, and cloud services, then assist in building automation and safeguards that prevent similar issues from recurring
• Assist in creating and maintaining deployment and orchestration tools, such as Helm Charts, omnibus-gitlab configurations, and multi-tenant workflows, that make it easy for teams to manage GitLab environments at scale

What you'll do

• Contribute to automating operational tasks across many GitLab environments, from initial provisioning and configuration updates to upgrades and routine maintenance, helping reduce manual work and improve reliability at scale under the guidance of senior team members.
• Help build and refine the observability stack for multi-tenant GitLab environments so we monitor the right signals across Kubernetes, cloud services, and GitLab applications, supporting early issue detection and basic capacity tracking.
• Assist in responding to platform alerts and incidents, collaborating with Environment Automation SREs and engineering teams to troubleshoot production issues across multiple tenants and document findings.
• Support planning and implementation of infrastructure changes, capacity expansions, and new service rollouts for Dedicated and other managed GitLab environments, contributing to efforts that improve resource efficiency and environment isolation.
• Develop and maintain scripts, automation tools, and infrastructure-as-code workflows that manage parts of the GitLab environment lifecycle, enabling more repeatable, self-service operations over time.
• Apply and help implement best practices for running GitLab on Kubernetes and cloud platforms, focusing on day-to-day reliability, performance, and security while learning how to keep environments consistent.
• Participate in the on-call rotation for production GitLab environments with appropriate support, helping triage and mitigate incidents across clusters and cloud providers and contributing to post-incident reviews.
• Document operational tasks, runbooks, and lessons learned so they become clear, repeatable processes and can be candidates for future automation, improving shared knowledge and reducing manual toil across the team.

What you'll bring

• Experience working as an SRE or in a similar role operating production infrastructure, with an interest in automating the lifecycle of many environments or tenants in parallel, even if you have not yet done so at large scale.
• Hands-on experience with backend programming languages such as Golang, with the ability to read, understand, and modify infrastructure tools.
• Hands-on experience running Kubernetes-based workloads in production, including basic understanding of deployments, rollouts, and debugging common issues like crash loops, failed health checks, and scheduling problems.
• Familiarity with infrastructure automation and configuration management tools such as Terraform and Ansible, including experience working with modules, variables, and managing state safely for multiple environments.
• Solid understanding of Git-based workflows and infrastructure-as-code practices, with the ability to contribute to reusable modules, templates, and pipelines that make automation safer and more consistent.
• Experience working in distributed systems or cloud-based production environments, ideally in SaaS or managed service settings, with comfort participating in incident response and on-call rotations under guidance from more senior team members.
• A proactive mindset focused on automation and documentation—you look for opportunities to remove manual steps, improve runbooks, and turn repetitive tasks into reliable, self-service tools.
• Comfort working asynchronously across distributed teams and a desire to contribute to GitLab's values of collaboration, transparency, and iteration.

About the team

We are responsible for building, running, and evolving the entire lifecycle of the GitLab environments that power the GitLab Dedicated platform. You'll be part of our team focused on owning the reliability, scalability, performance, and security of automated single-tenant GitLab instances and their supporting services. GitLab Dedicated provides fully managed, isolated environments for customers around the world, which means your work directly impacts how organizations of all sizes run their mission-critical software delivery on GitLab. We operate in a fully distributed, asynchronous environment across multiple regions, collaborating on everything from infrastructure automation and environment lifecycle design to incident response and capacity planning. You'll be solving novel challenges at scale, from orchestrating infrastructure-as-code workflows across hundreds of tenants to designing the automation that keeps those environments consistent, secure, and up to date. We continuously seek to reduce complexity and improve efficiency by leveraging cloud vendor managed products and services where appropriate, ensuring GitLab Dedicated remains a best-in-class managed platform for our customers. For more on how we operate, see the relevant GitLab Dedicated and infrastructure handbook pages.

As the Lead Product Marketing Manager, AI at GitLab, you'll shape how we bring our AI story to market across the software development lifecycle. You'll lead the narrative for GitLab Duo Agent Platform and related AI capabilities, helping customers understand how GitLab supports software teams and their AI agents in one platform. This role sits at the intersection of product, market insight, and revenue strategy, with a strong focus on positioning, messaging, launches, and monetization for AI offerings.

You'll work with significant autonomy while partnering closely with Product Management, Engineering, Sales, Customer Success, and Marketing. You'll bring firsthand experience using AI agents in your own marketing workflows — not just understanding them conceptually, but actively building with them to generate insights, pressure-test positioning, and accelerate your own work. That practitioner's lens is what will make your market narratives credible and your thought leadership distinctive. In your first year, you'll help refine our AI value proposition, strengthen how we speak to platform engineering and technology leaders, and turn market insight into repeatable go-to-market motions that support adoption and growth. You’ll also establish yourself as an emerging external voice on how AI agents are reshaping software teams — informed by your own hands-on use of agents workflows. 

Some examples of our projects:

• Developing and launching go-to-market strategies for GitLab Duo Agent Platform and AI offerings.
• Using AI agents to accelerate competitive analysis, synthesize customer feedback patterns, and generate first-draft positioning hypotheses — then sharing those methods as part of GitLab's thought leadership
• Creating persona-based messaging for organizations moving from individual AI coding tools to team and agent collaboration across the software lifecycle.
• Building thought leadership around intelligent orchestration, unified workflows, and how teams stay in flow with AI agents.
• Supporting launches for new AI capabilities, agentic workflows, and related monetization approaches.

What you'll do

• Collaborate on an end-to-end GTM strategy and execution for GitLab Duo Agent Platform and AI capabilities, emphasizing how intelligent orchestration enables software teams and their AI agents to stay in flow across the complete software lifecycle—addressing the "AI Paradox" where faster coding doesn't translate to faster delivery when the rest of the lifecycle remains fragmented.
• Lead positioning and narrative for GitLab's AI capabilities, articulating how we bring software teams and their AI agents together, eliminate gaps between traditionally-manual software lifecycle stages, and unify DevOps, Security, and AI workflows into a single orchestrated system where teams orchestrate from above while agents execute within. Your ability to articulate this vision will be strengthened by your own experience working alongside agents and understanding their capabilities and limitations firsthand.
• Develop and execute go-to-market strategies for usage-based AI monetization and consumption-based offerings that demonstrate clear customer value.
• Partner with Product Management, Sales, Customer Success, and Engineering to understand how customers are navigating AI modernization journeys, validate market problems around toolchain fragmentation and tool-specific AI agents, and translate them into clear messaging, revenue plays, pricing strategies, and launch priorities.
• Build and continuously refine compelling positioning and messaging for AI capabilities, including persona-specific content for platform engineering leaders, DevOps directors, technology executives, and developer teams.
• Define and execute comprehensive go-to-market plans for new AI capabilities, agents, workflows, and usage-based offerings, ensuring launches are timely, impactful, and tightly aligned with sales, field marketing, partner ecosystem, and digital marketing motions while delivering measurable pipeline and revenue impact.
• Serve as the subject matter expert for AI and intelligent orchestration within Product Marketing, synthesizing analyst feedback, market trends, competitive insights, and customer proof points into differentiated narratives that position GitLab's architectural advantages over AI coding tools and fragmented toolchain approaches.
• Create and maintain high-impact sales enablement materials such as pitches, playbooks, FAQs, objection-handling guides, use case libraries, and pricing and packaging comparison guides that help scale AI-focused sales motions and accelerate deal velocity.
• Build distinctive external thought leadership grounded in your own practice of using AI agents — sharing original insights from hands-on experimentation. You'll speak, write, and brief from a practitioner's perspective that gives GitLab's voice authenticity and specificity in a market full of abstract AI narratives.
• Partner with Product Marketing Managers on AI positioning, usage-based monetization, and go-to-market strategies within your area of expertise.
• Lead complex, cross-functional initiatives involving sales, product, growth, and marketing teams to drive AI adoption and revenue.

What you'll bring

• Strong product marketing experience owning complex, technical B2B SaaS products from discovery through launch, with proven success in usage-based monetization, consumption pricing models, and go-to-market strategies that drive measurable revenue impact in AI or developer tools markets.
• Deep understanding of AI/ML technologies, agentic workflows, LLM orchestration, and the software development lifecycle, with practical exposure to capabilities such as AI coding assistants, agentic automation, multi-agent systems, Model Context Protocol (MCP), and intelligent orchestration concepts.
• Demonstrated AI-first working style: you already use AI agents as core to how you develop positioning, conduct research, analyze competitors, and create content. You should be able to walk us through specific examples of insights you've generated or decisions you've made differently because of your agent-assisted workflow.
• Experience across multiple domains within DevSecOps, enabling you to position AI capabilities across the complete software lifecycle from planning through deployment and operations.
• Proven experience positioning platform solutions with ability to articulate architectural advantages of unified platforms with complete context over fragmented toolchains with tool-specific AI agents.
• Strong understanding of key personas including platform engineering leaders, DevOps directors, AI/ML leaders, and developers, and how they evaluate, purchase, and adopt AI solutions across different organizational AI maturity levels (evaluating AI, using AI coding tools, AI-first organizations).
• Experience working with large B2B enterprise customers navigating AI transformation, translating their challenges with fragmented trust, context, regulations, and budgets into clear positioning, differentiated messaging, and scalable go-to-market strategies.
• Track record of successfully launching new products, usage-based pricing models, or consumption-based offerings, including defining monetization strategy, coordinating partner ecosystem activities, and measuring business impact through pipeline generation, usage metrics, and revenue growth.
• Ability to synthesize qualitative feedback, product usage data, win/loss analysis, and market research into clear, actionable messaging frameworks, pricing recommendations, consumption model optimization, and revenue plays that address both technical and business buyer needs.
• Strong written and verbal communication skills, with ability to explain complex AI concepts (agentic workflows, unified data models, intelligent orchestration, MCP integration) to both technical and non-technical audiences through presentations, content, and enablement materials.
• Familiarity with AI coding tools landscape and ability to position GitLab's team-level orchestration across the complete software lifecycle.
• Strategic thinking about market opportunities in AI for software teams, competitive positioning against both AI coding tools and DevOps platforms, and business model innovation around usage-based pricing that demonstrates clear customer value.
• Proven experience being self-directed and working with minimal supervision, able to coordinate across many teams and lead cross-functional initiatives.
• Data-driven approach, using data to measure results, inform decision-making, and develop strategy.
• Openness to learning, with transferable skills from related areas such as MLOps, platform engineering, or developer experience, and a self-directed approach to staying current on AI industry trends, agentic AI developments, and enterprise AI adoption patterns.

About the team

The Core Platform Product Marketing team leads how we position and grow GitLab's intelligent orchestration capabilities and Duo Agent Platform. You'll join a highly collaborative group of experienced product marketers who share context, support each other's launches, and turn customer and market insights into clearer storytelling around the AI modernization journey. As a Lead Product Marketing Manager, AI, you'll operate as a senior contributor within this team, partnering with other Product Marketing Managers, driving monetization strategy for usage-based AI offerings, and helping to shape how we bring agentic workflows and team-agent collaboration to market. We believe the best AI marketing comes from people who are themselves AI-native practitioners.

You'll work with peers who focus on different parts of the platform (DevOps, Security) to share best practices, coordinate priorities around the three modernization journeys (DevOps, Security, AI), and learn from each other's launches. As a team, we're focused on improving how we support sales and customer-facing teams, measure the impact of AI investments, demonstrate ROI through usage metrics and cost savings, and continuously refine how we collaborate to position GitLab as the intelligent orchestration platform where teams stay in flow with their AI agents and ship software faster.

An overview of this role

As the Principal Engineer, Software Supply Chain Security, you’ll own the technical strategy that secures how software is built and delivered on GitLab’s DevSecOps platform. You’ll provide architectural leadership across multiple engineering teams. You’ll also partner closely with infrastructure and CI/CD teams to harden our pipelines, infrastructure, and access layers. Your work will shape GitLab’s enterprise security posture in the rapidly growing software supply chain security market. You’ll focus on SLSA Level 3 compliance, secrets management, CI/CD security hardening, and the foundations of GitLab’s global zero trust architecture. You’ll mentor Staff Engineers and individual contributors, and you’ll guide critical technical decisions. You’ll also act as a spokesperson with customers and external stakeholders for GitLab’s secure, mission-critical SaaS that runs millions of pipelines.

Some examples of our projects:

• SLSA Level 3 compliance and provenance attestation across GitLab’s CI/CD platform
• Integrated secrets management and runner security for container-isolated, secure pipelines

What you’ll do

• Lead the end-to-end software supply chain security architecture for GitLab’s CI/CD platform, including SLSA Level 3 implementation and CI infrastructure hardening.
• Drive cross-team technical strategy and decisions across our Software Supply Chain Security (SSCS) stage teams, aligning engineering work to SSCS strategic plans.
• Collaborate with infrastructure and CI/CD teams to design and land long-term initiatives for secure, scalable runner architecture, container isolation, and pipeline security at scale.
• Propose and validate technical implementations that support architectural changes to improve CI/CD scaling and performance on critical paths.
• Teach, mentor, and coach Staff Engineers and individual contributors, raising the bar on supply chain threat modeling, secrets management, artifact signing, and SBOM lifecycle practices.
• Partner with Engineering Managers and senior leadership to define roadmaps, break down complex initiatives, and enable Staff Engineers to lead sub-department-wide efforts.
• Engage with customers and external stakeholders as a technical consultant and spokesperson for GitLab’s software supply chain security capabilities and roadmap.
• Collaborate with product, security, and compliance stakeholders to ensure features meet enterprise security, governance, and regulatory expectations in the software supply chain security market.

What you’ll bring

• Deep expertise in software supply chain security, including threat modeling for supply chain attack vectors, SLSA implementation and attestation systems, and SBOM generation and lifecycle management.
• Strong knowledge of artifact signing and verification using the Sigstore ecosystem, including Cosign, Fulcio, Rekor, and in-toto attestations.
• Experience designing and hardening CI/CD security, such as runner isolation, pipeline security controls, and secrets management in large-scale environments.
• Background in distributed systems and infrastructure, including building resilient CI/CD platforms that process high pipeline volumes and optimizing performance for critical paths.
• Practical experience with container security and Kubernetes security, including admission controllers, policy controllers, workload isolation, and registry hardening.
• Proficiency in Go or Rust in a production environment, combined with expert-level understanding of CI/CD workflows and DevSecOps best practices.
• Experience operating as a Principal or Staff Engineer across multiple development teams, providing architectural leadership and partnering with Engineering Managers and senior leaders.
• Demonstrated capacity to clearly communicate complex problems and solutions.

About the team

Our Software Supply Chain Security stage engineering teams are responsible for authentication and access within GitLab. We also build features that help customers manage vulnerabilities, dependencies, security policies, and compliance frameworks across their organizations. Our group includes four core teams (Authentication, Authorization, Pipeline Security, and Compliance) and more than 40 engineers. We work asynchronously across regions and partner closely with product, security, and infrastructure to deliver secure-by-default features for customers in highly regulated industries.

An overview of this role

As a Principal Product Manager, Security - GTM, you will help GitLab turn product strategy into business impact across our security offerings. This role is designed for a seasoned product manager who can work across Customer Success, Solutions Architecture, Account Executives, Research and Development, Data Analytics, and Finance to understand where growth is working, where it is blocked, and what needs to change. You will help debug the business across areas such as expansions, up-tiers, and new logo motions, then shape solutions that may include product changes, pricing and packaging updates, promotions, or positioning.

This is a principal-level opportunity for someone who has moved beyond feature delivery and wants to help make products successful in the market. In your first year, you will be expected to build a clear view of key business drivers, identify high-value opportunities to improve how our security products perform, and create stronger alignment across product managers working on related problems across the platform.

What you’ll do

• Lead investigations into business performance across growth motions such as expansions, up-tiers, and new logo activity to identify high-impact opportunities and set priorities for the security portfolio.
• Partner with Customer Success, Solutions Architecture, Account Executives, customers, data analytics, and finance to understand business patterns and turn insights into action.
• Drive product management work that improves product-market fit and supports stronger go-to-market execution for GitLab security offerings, with a focus on improving adoption, retention, and growth performance.
• Recommend solutions across multiple levers, including product changes, pricing and packaging, promotions, and marketing or positioning inputs.
• Establish strategy and alignment across product managers on related problems to reduce silos, prevent duplicate efforts, and build momentum toward more cohesive solutions that strengthen business impact.
• Guide discovery on shared customer problems across scanners and adjacent security capabilities in the platform.
• Lead prioritization discussions with Research and Development and other product leaders to shape the roadmap around high-value opportunities that balance customer needs with business outcomes.
• Communicate findings, trade-offs, and recommendations clearly to stakeholders across product, technical, and go-to-market teams.
• Mentor other product managers in GTM problem-solving, market insight, and cross-functional execution to build stronger product leadership across the security organization.

What you’ll bring

• Experience in product management with clear exposure to go-to-market problem solving, including work tied to business performance, customer adoption, or commercial outcomes.
• Knowledge of security markets, including experience in application security, cloud security, or related areas within a security-focused business.
• Ability to work effectively with cross-functional partners across product, engineering, Customer Success, Solutions Architecture, sales, finance, analytics, and marketing.
• Skill in using data to diagnose problems, evaluate opportunities, and support product and business decisions.
• Experience shaping outcomes beyond feature development, including pricing and packaging, promotions, positioning, or other market-facing levers.
• Ability to identify patterns across a portfolio, align overlapping efforts, and guide teams toward more unified solutions.
• Experience in customer-facing work, including gathering field feedback, synthesizing themes, and translating insights into clear product direction.
• Experience in applying transferable product management skills across different company stages or adjacent domains, with demonstrated business-oriented decision-making.

About the team

This team sits at the intersection of product strategy, security domain expertise, and go-to-market execution at GitLab. It works across multiple product managers and partner functions to improve how security capabilities perform in the market, with a focus on understanding business drivers, aligning related product efforts, and solving customer problems more consistently across the platform. The team collaborates asynchronously with stakeholders across regions and functions, especially product, Research and Development, finance, analytics, and field teams, and is focused on helping GitLab make better decisions about where to invest, how to reduce overlap, and how to strengthen outcomes across our security business.

Claude Code Platform Lead

Own the strategy, systems, and training that turn AI-assisted development from an experiment into Coinme's engineering superpower. You will be the central force multiplier for our 35+ engineer organization—building the skills, workflows, and shared infrastructure that enable every team to ship faster and better with Claude Code. This is not a support role. You will directly shape how Coinme engineers build software every day.

What You'll Be Working On (Your Impact):

• Design, build, and maintain a centralized repository of CLAUDE.md project context files across all Coinme repositories, ensuring Claude Code understands our architecture, coding standards, compliance requirements, and domain patterns out of the box
• Create custom Claude Code slash commands, hooks, and workflows tailored to Coinme's stack—including compliance-aware code generation, automated test scaffolding, and review automation for our CQRS/Event Sourcing architecture
• Implement and manage the GitLab CI/CD integration for Claude Code, enabling automated merge request creation from issues, AI-assisted code review in pipelines, and commit attribution across all engineering teams
• Build and deliver structured training programs to close adoption gaps across the engineering org, with a focus on the highest-leverage skills: headless/CI-CD workflows, hooks and commands, and test-driven development with Claude Code
• Monitor engineering adoption metrics via the Claude Enterprise Analytics API, identify engineers and teams that are underutilizing the tool, and design targeted interventions to accelerate their productivity
• Develop and maintain a living playbook of best practices, prompt patterns, and workflow recipes that codify what Coinme's top Claude Code users (power users generating 5,000+ tool accepts) do differently
• Partner with Engineering Leadership to define proficiency benchmarks, run competency assessments, and measure ROI of AI tooling investment across the organization
• Evaluate and integrate emerging Claude Code capabilities—including MCP server integrations, multi-file editing workflows, and agentic coding patterns—as they become available
• Work within and build tooling for our technology stack:
• GitLab (repos, CI/CD pipelines, merge requests)
• Jira / Atlassian (project management, sprint tracking)
• Claude Code CLI and VS Code extension
• Claude Enterprise Analytics API
• Java 17+ / Spring Boot / Reactive Java (understanding, not necessarily writing daily)
• Kubernetes, Helm, Argo platform
• Multi-repo microservice architecture

What We're Looking For:

• 4+ years of experience as a software engineer with hands-on production coding experience
• Deep, daily-driver proficiency with Claude Code and comparable AI coding assistants (Cursor, GitHub Copilot) — you should be a power user, not someone who's "tried it a few times"
• Experience implementing and integrating with agentic harnesses, e.g. Open Claw, Hermes, Eigent, etc.
• Experience building developer tools, internal platforms, CLI utilities, or developer experience infrastructure
• Demonstrated ability to teach technical concepts to engineers at varying skill levels — through documentation, workshops, pairing sessions, or recorded content
• Experience with CI/CD pipeline design and automation (GitLab CI preferred)
• Strong understanding of Git workflows, code review processes, and merge request automation
• Experience working with REST APIs for data integration and dashboard building
• Comfort navigating and understanding large, multi-repo codebases without necessarily being an expert in every language or framework
• Excellent written communication — you'll be writing CLAUDE.md files, training docs, and playbooks that need to be clear enough for both humans and AI to understand
• Self-directed and proactive — this is a one-person function where you set the agenda based on data and engineer feedback

Not Required, But Nice to Have:

• Claude Certified Architect (CCA), Foundations credential from Anthropic
• Familiarity with Java / Spring Boot / CQRS / Event Sourcing patterns (Coinme's primary backend stack)
• Experience building analytics dashboards or working with usage telemetry data
• Background in DevRel, developer advocacy, or engineering enablement
• Experience in fintech, crypto, or regulated industries where compliance-aware code generation adds particular value
• Experience running hackathons, training programs, or engineering culture initiatives

Check out our AI Usage Guidelines to understand how we approach AI tools during the hiring process.

Build security into every deployment, without slowing innovation!

What if security was embedded in every commit, every build, and every release by design? As a DevSecOps Specialist at Coveo, you’ll make that vision real by integrating security seamlessly into our continuous integration and continuous delivery (CI/CD) pipelines and cloud infrastructure.

You’ll transform security from a checkpoint into an accelerator, building automation and self-service tooling that empower developers to ship confidently. If you’re passionate about scaling secure software delivery in the cloud, this is where you’ll have real impact.

As one of our DevSecOps Specialists, you will:

• Design and maintain security automation across CI/CD pipelines, embedding controls and security gates without slowing delivery.
• Build and operate infrastructure-as-code (IaC) pipelines with security built in, managing secrets, identity and access management (IAM) policies, and hardened configurations at scale.
• Integrate and evolve vulnerability management workflows, including static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), and container scanning.
• Automate compliance checks and policy enforcement across Amazon Web Services (AWS) environments to ensure continuous alignment with security standards.
• Design and maintain access management automation to provision, audit, and monitor access to infrastructure and sensitive resources.
• Partner with engineering and platform teams to make security tooling intuitive, scalable, and developer-friendly, reducing friction across the delivery lifecycle.

Here is what will qualify you for the role:

• Strong hands-on experience with CI/CD platforms (GitHub Actions, GitLab CI, Jenkins, or similar) and embedding security controls directly into pipelines.
• Proficiency in Python or other scripting languages to build reliable automation and integrations.
• Practical experience securing and automating cloud environments (AWS preferred), including compute, storage, networking, and Kubernetes.
• Deep understanding of DevSecOps toolchains, including container security, secrets management, infrastructure-as-code scanning, dependency analysis, and vulnerability remediation workflows.

What will make you stand out:

• Advanced experience with Terraform for security-focused infrastructure, including IAM roles, encryption keys, and network controls.
• Hands-on experience with Kubernetes security, including role-based access control (RBAC), network policies, admission controllers, or image signing.
• Experience implementing compliance-as-code frameworks such as Open Policy Agent or AWS Config Rules.
• Relevant certifications such as AWS Security Specialty, Certified Kubernetes Security Specialist (CKS), or similar credentials.

Do you think you can bring this role to life? Send us your application, we want to hear from you!

Join the Coveolife!

We encourage all qualified candidates to apply regardless of, for example, age, gender, disability, gaps in CV, national or ethnic background.

This job description was written by humans, assisted by AI. We may leverage technology in our hiring process to help us see the person behind the resume.

Coveo is committed to providing accessible employment practices. If you require accommodation due to a disability at any point during the recruitment process, please contact HR@Coveo.com to discuss your needs.

Build security into every deployment, without slowing innovation!

What if security was embedded in every commit, every build, and every release by design? As a DevSecOps Specialist at Coveo, you’ll make that vision real by integrating security seamlessly into our continuous integration and continuous delivery (CI/CD) pipelines and cloud infrastructure.

You’ll transform security from a checkpoint into an accelerator, building automation and self-service tooling that empower developers to ship confidently. If you’re passionate about scaling secure software delivery in the cloud, this is where you’ll have real impact.

As one of our DevSecOps Specialists, you will:

• Design and maintain security automation across CI/CD pipelines, embedding controls and security gates without slowing delivery.
• Build and operate infrastructure-as-code (IaC) pipelines with security built in, managing secrets, identity and access management (IAM) policies, and hardened configurations at scale.
• Integrate and evolve vulnerability management workflows, including static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), and container scanning.
• Automate compliance checks and policy enforcement across Amazon Web Services (AWS) environments to ensure continuous alignment with security standards.
• Design and maintain access management automation to provision, audit, and monitor access to infrastructure and sensitive resources.
• Partner with engineering and platform teams to make security tooling intuitive, scalable, and developer-friendly, reducing friction across the delivery lifecycle.

Here is what will qualify you for the role:

• Strong hands-on experience with CI/CD platforms (GitHub Actions, GitLab CI, Jenkins, or similar) and embedding security controls directly into pipelines.
• Proficiency in Python or other scripting languages to build reliable automation and integrations.
• Practical experience securing and automating cloud environments (AWS preferred), including compute, storage, networking, and Kubernetes.
• Deep understanding of DevSecOps toolchains, including container security, secrets management, infrastructure-as-code scanning, dependency analysis, and vulnerability remediation workflows.

What will make you stand out:

• Advanced experience with Terraform for security-focused infrastructure, including IAM roles, encryption keys, and network controls.
• Hands-on experience with Kubernetes security, including role-based access control (RBAC), network policies, admission controllers, or image signing.
• Experience implementing compliance-as-code frameworks such as Open Policy Agent or AWS Config Rules.
• Relevant certifications such as AWS Security Specialty, Certified Kubernetes Security Specialist (CKS), or similar credentials.

Do you think you can bring this role to life? Send us your application, we want to hear from you!

Join the Coveolife!

We encourage all qualified candidates to apply regardless of, for example, age, gender, disability, gaps in CV, national or ethnic background.

This job description was written by humans, assisted by AI. We may leverage technology in our hiring process to help us see the person behind the resume.

Coveo is committed to providing accessible employment practices. If you require accommodation due to a disability at any point during the recruitment process, please contact HR@Coveo.com to discuss your needs.

OUR MISSION

At Redwood, we empower our customers with lights-out automation for their mission-critical business processes.

ABOUT US

Redwood Software is the leader in full stack automation fabric solutions for mission-critical business processes. With the first SaaS-based composable automation platform specifically built for ERP, we believe in the transformative power of automation. Our unparalleled solutions empower you to orchestrate, manage and monitor your workflows across any application, service or server — in the cloud or on premises — with confidence and control. 

Redwood’s global team of automation experts and customer success engineers provide solutions and world-class support designed to give you the freedom and time to imagine and define your future. Our collaborative and dynamic environment fosters creativity, continuous learning, and a passion for building exceptional products. Get out of the weeds and see the forest, with Redwood Software.

CORE VALUES

One Team. One Redwood

Make Your Own Weather

Obsess over Customer Success

Work the Problem

Be Curious

Own the Outcome

Respect Each Other

YOUR IMPACT

We are seeking a highly skilled and passionate Full Stack Software Developer with a strong focus on Java to join our growing engineering team. In this role, you will be instrumental in designing, developing, and maintaining robust and scalable full-stack applications that power our automation and SaaS platforms. You will work across the entire software development lifecycle, from concept to deployment, collaborating closely with product managers, designers, and other engineers to deliver high-quality, impactful solutions.

• Design, develop, and implement highly performant and scalable full-stack applications using Java, Javascript,  and related technologies.
• Build and maintain robust back-end services, APIs, and microservices.
• Develop responsive and intuitive front-end user interfaces.
• Collaborate with product management to understand requirements and translate them into technical specifications.
• Participate in all phases of the software development lifecycle, including planning, design, coding, testing, deployment, maintenance, and assisting support.
• Write clean, maintainable, and well-documented code following best practices.
• Implement and maintain automated tests (unit, integration, and end-to-end) to ensure code quality and reliability.
• Troubleshoot, debug, and resolve software defects and production issues.
• Contribute to architectural discussions and decisions to ensure scalability, security, and performance.
• Stay up to date with emerging technologies and industry trends and advocate for their adoption where appropriate.
• Mentor less experienced developers and contribute to a culture of continuous learning and improvement

YOUR EXPERIENCE 

• Bachelor's degree in Computer Science, Software Engineering, or a related field (or equivalent practical experience).
• Professional experience as a Full Stack Software Developer, with a strong emphasis on Java (Java 11/17).
• Strong proficiency in Java and the Spring Framework (Spring Boot, Spring MVC, Spring Security).
• Experience with relational databases (e.g., SQL, PostgreSQL, MySQL) and ORM frameworks (e.g., Hibernate, JPA). 
• Solid understanding of front-end technologies such as HTML, CSS, JavaScript, TypeScript, and modern JavaScript frameworks (e.g., ReactJS, MobX).
• Experience with RESTful API design and development.
• Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and containerization technologies (e.g., Docker, Kubernetes).
• Excellent problem-solving, analytical, and debugging skills. 
• Unit testing and automation tools such as JUnit and Playwright.
• Strong communication and interpersonal skills, with the ability to collaborate effectively in a team environment. 

Preferred Skills and Qualifications:

• Experience with message queues (e.g., Kafka, RabbitMQ).
• Knowledge of NoSQL databases (e.g., MongoDB, Cassandra).
• Experience with CI/CD pipelines and tools (e.g. Github actions, Jenkins, GitLab CI).
• Understanding of agile development methodologies (Scrum, Kanban)
• Familiarity with test-driven development (TDD) or behavior-driven development (BDD).
• Experience in the automation or SaaS industry.
• Contributions to open-source projects or a strong GitHub portfolio.

Bonus Skills:

•  SAP knowledge: ABAP, HANA
• OS knowledge: Windows, UNIX (Linux), Mac
• Relational databases (eg: H2, Postgres)
• Gradle
• Shell scripting
• Jest
• Tomcat
• AWS
• Experience with AI

Why Join Us?

• Competitive compensation package, comprehensive health, dental, and vision benefits.
• Opportunity to work on innovative and impactful products that are transforming industries.
• Generous paid time off, holidays and flexible work arrangements.
• Work with a highly skilled, passionate, and diverse team of engineers.
• Opportunities for professional growth and development.
• Collaborative and supportive team environment.
• “One Redwood” company culture.