An overview of this role

As a Backend Engineer on the Secret Detection team, you'll help protect sensitive data by building the services, scanning workflows, and remediation paths that prevent leaked secrets from reaching production. Your work will contribute to the full secret management lifecycle, from push protection to pipeline-based scanning, validation, and auditability, so developers can move quickly without taking on avoidable security risk. This is a strong opportunity if you want to work on security features with clear customer impact, improve detection quality, and help teams act when credentials, API keys, or other secrets are exposed.

You'll focus on backend systems that power Secret Detection across GitLab's DevSecOps platform, working closely with product management and engineering peers in an async-first environment. In your first year, you'll contribute to core product capabilities, improve performance and result quality, and help shape technical direction through code reviews, RFCs, and proof of concepts.

Some examples of our projects:

• Prevent secret leaks in source code with GitLab Secret Push Protection
• Verify validity of secret detection findings

What you’ll do

• Guide the design and implementation of backend features for GitLab Secret Detection in Ruby on Rails, GraphQL, and Go, delivering capabilities that improve coverage, reliability, or response time for secret detection workflows.
• Build clean, well-tested, maintainable code that meets GitLab standards for reliability and performance, helping reduce regressions and maintain backend systems at scale.
• Partner with product management and engineering peers to deliver backend capabilities that improve detection, validation, remediation, and audit trail coverage across the secret management lifecycle.
• Improve detection quality by reducing false positives, strengthening secret validation workflows, and enabling faster, more effective remediation paths.
• Contribute to code reviews, RFCs, and proof-of-concept work that guide technical approaches across the Secret Detection category.
• Identify technical debt and operational inefficiencies, then propose and implement practical improvements.
• Diagnose performance and optimization issues in backend systems and implement improvements that increase efficiency, scalability, and service reliability.
• Work effectively in a globally distributed, async-first team while participating in planning, engineering discussions, and pairing when needed.

What you’ll bring

• Experience building backend applications and services using Ruby on Rails, with working knowledge of GraphQL and interest in backend-focused product development.
• Experience designing and delivering secure, maintainable systems that power production web applications at scale.
• Knowledge of security concepts, common vulnerabilities, mitigation techniques, and secure coding practices.
• Background developing or working with security tools or products, especially in areas related to code scanning or secret detection.
• Experience investigating performance issues and improving backend reliability, efficiency, and maintainability.
• Ability to work closely with cross-functional partners, including product, design, and technical writing, to deliver useful product outcomes.
• Communicate clearly in writing and in conversation, especially in remote, async-first environments with distributed teams.
• Bring transferable experience and a willingness to grow into parts of the security or Go stack.

About the team

The Secret Detection team owns GitLab's Secret Detection category, and we build the backend systems and related user workflows that help developers identify and mitigate exposed secrets as code is contributed. We work with the broader security product suite while maintaining focused investment in secret scanning quality, validation, remediation, and developer experience. Our work spans Rails and Go services, and we work primarily asynchronously across time zones as a globally distributed team. Current opportunities include expanding coverage across the secret management lifecycle and improving result quality across the findings our tools detect. For more on how we work, see the Team Handbook page.

An overview of this role

As a Staff Backend Engineer (Python) on the Duo Chat team in AI Engineering, you'll lead the backend architecture that powers GitLab Duo Chat across the GitLab DevSecOps platform. You'll solve hard problems in building reliable, secure, and scalable AI-powered chat workflows so customers can plan, write, review, and secure code faster, with confidence. This is a hands-on technical leadership role where you'll set direction for how we integrate and evolve large language model providers (including Google Vertex AI) across Ruby on Rails and Python services, raise the bar on observability and testing, and guide the team through ambiguous, high-impact technical decisions. Over your first year, you'll be expected to drive key architectural choices, reduce technical debt that slows iteration, and help the team ship durable improvements to response quality, reliability, and maintainability.

Some examples of our projects:

• Integrate new generative AI models and providers into GitLab Duo Chat to expand capabilities and improve response quality
• Improve debugging, observability, and test coverage for AI-powered chat workflows to increase reliability at scale

What you'll do

• Define the technical architecture and technical roadmap for the Duo Chat group, aligning backend execution with product direction and engineering priorities
• Solve the highest-scope and most ambiguous backend problems, delivering secure, well-tested, performant solutions with minimal guidance
• Integrate and extend generative AI capabilities in GitLab Duo Chat, including large language models (LLMs) and providers such as Google Vertex AI
• Develop, ship, and maintain backend features across Python and Ruby on Rails services that power Duo Chat experiences across the GitLab platform
• Design, implement, and review GraphQL application programming interface (API) contracts and supporting backend logic to ensure reliability, scalability, and clear frontend integrations
• Improve observability, debugging workflows, and incident readiness by strengthening logging, tracing, and production troubleshooting practices
• Drive code quality and long-term maintainability by setting internal standards, leading code reviews, and identifying and reducing technical debt
• Mentor engineers across the team and participate in Tier 2 on-call rotations, contributing to root cause analysis and follow-up improvements to resiliency and testing (including RSpec)

What you'll bring

• Production experience building and operating backend services in Python, including background jobs, APIs, and data models
• Ability to define and evolve technical architecture by weighing trade-offs, selecting patterns and tools, and setting a clear technical direction for others to follow
• Experience setting and driving a technical roadmap in partnership with product and engineering stakeholders
• Proficiency designing and maintaining REST and/or GraphQL APIs with attention to scalability, maintainability, and backward compatibility
• Hands-on experience integrating large language models into applications, including prompt design and building features powered by generative AI
• Strong SQL skills and experience working with relational databases such as PostgreSQL, including efficient queries and data modeling
• Experience mentoring engineers through code review, architectural guidance, and shared standards, and communicating complex technical decisions in a clear, async-first way
• Comfort contributing in a mature codebase across Python and Ruby on Rails, with openness to learning and applying transferable skills from related technologies or domains

About the team

The Duo Chat team sits within GitLab's AI Engineering organization and is responsible for building and evolving GitLab Duo Chat, the AI-powered chat experience embedded across the GitLab DevSecOps platform. You'll work with a small, cross-functional group of backend, frontend, and AI specialists who collaborate asynchronously across time zones, using GitLab issues, merge requests, and documentation as the primary way of working. The team focuses on integrating and scaling generative AI capabilities (including providers like Google Vertex AI), improving reliability and performance, and strengthening debugging, observability, and testing workflows so customers can safely use AI to plan, write, review, and secure their code across GitLab.

An overview of this role

As a Senior Backend Engineer on the Pipeline Security team, you'll take technical ownership of GitLab's native Secrets Manager, a production system built on OpenBao that helps secure sensitive credentials across GitLab CI/CD pipelines. You'll work at the intersection of backend engineering and infrastructure, shaping architecture in Ruby on Rails and Go, guiding decisions around role-based access control (RBAC), GraphQL APIs, and Kubernetes deployment configuration. In your first year, you'll help move Secrets Manager toward general availability, establish technical patterns the team can build on, and represent the team's point of view in cross-functional discussions. You'll have end-to-end ownership, from design through production operations, with room to identify what should be built next and improve how the team delivers secure, reliable features.

What you'll do

• Build and maintain secure, readable backend code primarily in Ruby on Rails, with some development in Go for targeted components.
• Design backend architecture for complex security features, including secrets access control, pipeline security enforcement, and OpenBao integration.
• Lead the development of role-based access control models, GraphQL APIs, and supporting application patterns for features owned by the team.
• Own features end to end, from technical design and implementation through deployment, validation, and production support.
• Collaborate with Product, security partners, and other engineering teams to document tradeoffs, align on direction, and deliver iteratively in a distributed environment.
• Improve code quality, maintainability, security, and performance through code review, design iteration, and internal standards for a high-scale web environment.
• Build and maintain Helm charts, including configuration, tuning, documentation, and automated testing for Kubernetes-based deployments.
• Validate features in Kubernetes environments, including GitLab Cloud Native and Cloud Native Hybrid deployments, using GitLab testing and performance testing frameworks.

What you'll bring

• Experience building and maintaining backend features with a focus on secure design, data handling, and production reliability.
• Ability to write production-quality code in Ruby on Rails, including use of framework security patterns and review for common application risks.
• Working knowledge of CI/CD concepts and the ways pipelines can be misconfigured, abused, or expose sensitive data.
• Familiarity with secrets management approaches and security practices for handling credentials in CI environments; experience with tools such as HashiCorp Vault or similar systems is helpful.
• Comfort collaborating across Product and engineering teams in an asynchronous, distributed environment and communicating technical tradeoffs clearly in writing.
• Ability to review merge requests with a security-first mindset and improve solutions through feedback and iteration.
• Experience debugging production issues, including investigation of security-related behavior and proposing practical fixes.
• Openness to learning adjacent domains and tools, including Go, container security, and software supply chain security; we welcome transferable experience from different technical backgrounds.

About the team

The Pipeline Security team builds features that make GitLab CI pipelines more secure and trustworthy for teams running sensitive workloads. We own key parts of pipeline security within GitLab's CI/CD experience, with our current focus on native secrets management for CI pipelines and Supply-chain Levels for Software Artifacts (SLSA) Level 3 capabilities to strengthen software supply chain security. We work asynchronously across regions and collaborate closely with Product and security partners, using clear design discussions, documented decisions, and iterative delivery across Ruby on Rails and Go.

About the team: Studio AI

Studio AI is Creative Fabrica's bet on what creative software looks like when AI is the default, not a feature.

We built a single platform where anyone can generate and edit images, video, audio, 3D models, and vector graphics using state-of-the-art generative AI. Our tools serve hundreds of thousands of creators every day, from hobbyist crafters to professional designers and everything in between, all in one place.

We move fast, integrate frontier models into production-ready workflows, and build the infrastructure that gives creators every tool they need to turn any idea into professional-grade media, at scale.

About the role

As a Senior Backend Engineer (Go), you will be the architect of our multimodal generation pipeline. You won't just be building APIs; you’ll be designing the high-concurrency systems that orchestrate "heavy" AI workloads across any media domains. Your goal is to make complex, multi step AI generation feel instantaneous and reliable for a global audience of creators.

What you will do:

• Orchestrate Multimodal Workflows: Design and scale Go-based microservices that manage the lifecycle of AI generations.
• Performance Engineering: Optimize our ConnectRPC services and async processing pipelines (Kafka + SQS) to handle long-running, resource-intensive inference tasks without compromising platform stability.
• Build the Creative Engine: Develop the backend logic for advanced features like multimodal orchestration.
• Data & Infrastructure: Work with AWS to manage massive data throughput and integrate with high-performance storage and compute clusters.
• Collaborate with AI Researchers: Bridge the gap between raw model outputs and a polished "One Person Studio" user experience.

What you will need:

• Advanced Go Engineering: Extensive experience building and scaling Go services in high-traffic, high-volume SaaS environments.
• Distributed Systems Mastery: Proven ability to design microservices that utilize asynchronous processing (Kafka & SQS) and low-latency communication (gRPC/ConnectRPC/GraphQL).
• Cloud Architecture: Deep knowledge of AWS (EKS, S3, Lambda) and experience managing complex compute environments.
• Product Rigor: A background in building professional-grade creative tools or media-heavy applications.
• Software Best Practices: A quality-first mindset regarding code reviews, testing strategies, and observability.

Nice to have:

• Media Processing Experience: Familiarity with handling varied media types (video transcoding, audio synthesis, vector manipulation).
• AI Infrastructure: Experience with model serving at scale or managing GPU-accelerated workloads.
• Entrepreneurial Mindset: Experience in a fast-paced environment where you help define the product vision and iterate quickly.

The Opportunity

Postman is the world’s leading API platform, helping organizations across every industry collaboratively design, build, test, document, share, and manage their APIs.

Our rocket continues to reach new heights, which is why we are looking for an experienced Solutions Engineer to support our rapidly growing enterprise customer base in the Benelux region.

As a Solutions Engineer at Postman, you will partner closely with the Sales, Product, and Customer Success teams to deliver technical expertise throughout the sales cycle. You will be a trusted advisor to our customers, helping them understand how Postman’s platform can streamline their API lifecycle, improve collaboration, and drive innovation. You will play a critical role in shaping customers’ API strategies, influencing product adoption, and ensuring technical success.

If you are passionate about APIs, software development, and solving complex customer challenges, we would love to have you on the team!

What You’ll Do

Account Strategy

• Lead technical discovery sessions to uncover customer challenges, understand pain points, and determine where Postman can provide the most value.
• Build and nurture strong relationships with technical leaders and decision-makers. Provide guidance on best practices for leveraging Postman effectively throughout the entire API lifecycle.
• Collaborate with customers to set clear success criteria, design and deliver tailored proofs of concept, and bring those goals to life through engaging demos, workshops, and hands-on sessions that highlight Postman’s strengths.
• Work closely with Sales, Product, and Customer Success teams to ensure alignment across plans and execution, driving outcomes that support customer goals.

Customer and Industry Insights

• Maintain a deep understanding of Postman’s capabilities, the API ecosystem, and industry trends (e.g., AI in API design, DevOps, and API security).
• Collect and share customer insights with Product and Engineering teams to influence roadmap decisions and enhance overall customer experience.

Marketing and Evangelism

• Represent Postman at industry events, conferences, and webinars. Create and share technical content (blogs, demos, tutorials) that highlight real-world use cases and best practices, showcasing Postman’s impact in the world of APIs and beyond.

About You

We recognize that every candidate brings a unique set of experiences and strengths. The following requirements are meant as a guideline. If you believe you can make an impact in this role, we encourage you to apply even if your background does not match every qualification listed below.

• 2+ years of experience in technical consulting, pre-sales engineering, or related roles.
• 5+ years of experience in software engineering.
• Expertise in one or more of the following:
• REST and GraphQL APIs
• API lifecycle management tools (e.g., Postman, Swagger/OpenAPI, Kong, Apigee)
• CI/CD and automation
• Cloud platforms (AWS, Azure, GCP)
• Modern software development practices
• Excellent communication skills in English, with comfort in customer-facing presentations. Communication skills in Dutch are a plus.
• Ability to travel up to 25% across the EMEA region, with occasional global travel for company events.

About the Team

The ClickPipes Platform plays a critical role in driving the growth of our company and ensuring the success of our clients by seamlessly onboarding and integrating data from diverse data sources into ClickHouse. Working at a petabyte scale and in high-velocity environments, this role offers an exceptional opportunity to solve challenging technical problems, operate with significant autonomy, and make a measurable impact.

Working on ClickPipes offers the opportunity to operate with a high degree of ownership and autonomy, tackle ambiguous problems, and deliver features that are used by some of the most data-intensive companies in the world.

You can find some of the teams recent work highlighted in our blog:

• Flexible Scaling and Monitoring in ClickPipes
• MySQL CDC Connector for ClickPipes
• The Evolution of ClickPipes

As a Senior Full-Stack Engineer, you’ll design and build complex, data-heavy user interfaces and own customer-facing workflows end-to-end. While this role has a strong frontend focus, engineers are expected to work comfortably across the whole stack, collaborating on backend services, APIs, and system integrations as needed. We’re looking for T-shaped engineers who bring deep frontend expertise while remaining pragmatic and effective beyond UI tasks.

What will you do?

• Build scalable UI systems that handle large datasets, async operations, and real-time state changes
• Own features end-to-end, from initial design through production launch and long-term maintenance
• Collaborate closely with product, design, and other engineering teams to deliver new features
• Partner on API design and system contracts
• Participate in an on-call rotation to support ClickPipes in production, helping diagnose incidents, and mitigate issues
• Take ownership of production quality, including monitoring, debugging, performance tuning, and reliability improvements

What you will bring:

• 5+ years of experience building and shipping production full-stack applications
• In-depth knowledge of web fundamentals (HTML/CSS, JavaScript, DOM, HTTP)
• Solid experience in designing and building applications with React and TypeScript
• Experience writing and maintaining automated tests (unit, integration, and E2E) as part of a CI/CD workflow
• Practical knowledge of backend systems, REST and/or GraphQL APIs, and service-oriented architecture
• Great communication skills and the ability to work effectively in a distributed, async-friendly team

Nice to have:

• Familiarity with Go, Node, or other server-side languages
• Familiarity with cloud infrastructure concepts and infrastructure-as-code tools such as Terraform
• Experience working on data-intensive products or platforms at scale

Why Join Us:

• Opportunity to work with cutting-edge technology at the intersection of data engineering and cloud-native infrastructure.
• Be part of a high-visibility team integral to the company’s success.
• Operate with autonomy, ownership, and the ability to drive meaningful impact in a rapidly evolving space.