Security Program Manager Worldwide

Company: GitLab

GitLab's DevOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 1,400+ team members and values that guide a culture where people embrace the belief that everyone can contribute.

The Security Program Manager will be responsible for complete overview and driving security initiatives across product, engineering and business enablement. This includes the tracking, monitoring and influencing priority of significant security objectives, goals and plans from all security sub-departments.

It’s an exciting time to join our team.

GitLab's DevOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 1,400+ team members and values that guide a culture where people embrace the belief that everyone can contribute.

The culture here at GitLab is something we’re incredibly proud of. Some of the benefits you’ll be entitled to vary by the region or country you’re in. However, all GitLab team members are fully remote and receive a "no ask, must tell" paid-time-off policy, where we don’t count the number of days you take off annually -- instead, we focus on your results. You can work the hours you choose, enabled by our asynchronous approach to communication. You can also expect stock options and a competitive salary. Our compensation calculator will be shared with selected candidates before any interview.

Diversity, Inclusion, and Belonging (DIB) are fundamental to the success of GitLab. We want to infuse DIB in every way possible and in all that we do. We strive to create a transparent environment where all team members around the world feel that their voices are heard and welcomed. We also aim to be a place where people can show up as their full selves each day and contribute their best. With more than 100,000 organizations using GitLab, our goal is to have a team that is representative of our users.

What you’ll do in this role:

  • Communicate successfully with partners and drive accountability across teams to ensure program objectives are met
  • Gather and examine customer and internal security team needs and opportunities for new information security programs, products and projects
  • Drive organizational needs cross-functionally with product, engineering and finance including tracking and reporting of progress and metrics

As a Staff level Security Program Manager, you will also: 

  • Identify and coordinate the interdependencies among programs, products and other critical initiatives across all security sub-departments within our organization
  • Assist defining business requirements and roadmaps in alignment with the overall information security strategy
  • Define acceptance criteria for solutions, value proposition and milestones for execution; Validate prototypes with partners and iterate solutions as needed to deliver value
  • Track and provide reporting and measurements of program effectiveness and communicate findings to management
  • Develop repeatable, scalable, efficient, and effective processes.

You should apply if you bring:

  • Experience crafting and executing Information Security initiatives, including capturing and redefining requirements into impactful work items
  • Experience driving cross-functional initiatives according to plan and timelines
  • Prioritize effectively and multitask efficiently
  • Proven track record of successful collaboration with internal and external partners
  • Communication, presentation, and documentation skills.

If applying as Staff, you should also bring:

  • Advanced understanding of application, development and infrastructure frameworks
  • Advanced analytical skills for assessing and recommending solutions based on data and research

Also, we know it’s tough, but please try to avoid the ​​confidence gap​.​​ You don’t have to match all the listed requirements exactly to be considered for this role.

Our hiring process for this Application Security Engineer position typically follows four stages. The details of this process and our leveling structure can be found on our job family page.


Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.  

Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.

Vacancy page :