Intermediate Software Security Engineer - Trust and Safety
An overview of this role
At GitLab, we are committed to keeping our platform safe, resilient, and trustworthy for millions of users worldwide. As an engineer on the Trust and Safety team, you will build and maintain the tools that protect GitLab.com against abuse, spam, and other malicious activity. You will work at the intersection of software engineering and security, strengthening our product, proactively identifying abuse trends, and designing prevention systems to stay ahead of attackers.
This is an ideal role for a strong software engineer who is passionate about security and eager to grow into security engineering. Formal security engineering experience is not required. We will support you in developing these skills while you make an immediate impact.
Find out more about the Trust and Safety team and responsibilities here:
What you’ll do
Maintain and enhance abuse prevention systems to identify and block evolving abuse patterns such as spam, cryptomining, and terms of service violations
Build and expand capabilities in our in-house abuse platform
Improve and scale agentic AI capabilities in abuse detection and mitigation tools
Collaborate with peers across Security Operations to deliver safety improvements for GitLab.com
Automate processes to close gaps and reduce manual intervention
Create and maintain clear documentation, runbooks, and procedures
What you’ll bring
Strong software development skills with Ruby/Rails
Experience working on distributed applications with large codebases, preferably in cloud-native environments
Curiosity and drive to develop security engineering expertise
Comfort working in an all-remote, results-driven environment
Interest in “thinking like a hacker” and defending against attacks with an “automation first” mindset
Interest in cloud-native development in Google Cloud Platform (GCP) and/or AWS
Interest in handling trust and safety security incidents such as platform spam, platform abuse, and cryptomining
About the team
The Trust and Safety team is a global group dedicated to keeping abusive behaviors off GitLab.com. We rely on automation, predictive analysis powered by LLMs, and behavioral detection to proactively identify and prevent abuse. Our work spans both core abuse prevention platforms and product-facing safety features. We collaborate closely with Security Operations peers including Security Incident Response, Signals Engineering, Threat Intelligence, and the Red Team. Together, we help ensure GitLab remains a secure and trusted platform for all users.
How GitLab will support you
All remote, asynchronous work environment
Home office support
Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.
About the job
Apply for this position
Intermediate Software Security Engineer - Trust and Safety
An overview of this role
At GitLab, we are committed to keeping our platform safe, resilient, and trustworthy for millions of users worldwide. As an engineer on the Trust and Safety team, you will build and maintain the tools that protect GitLab.com against abuse, spam, and other malicious activity. You will work at the intersection of software engineering and security, strengthening our product, proactively identifying abuse trends, and designing prevention systems to stay ahead of attackers.
This is an ideal role for a strong software engineer who is passionate about security and eager to grow into security engineering. Formal security engineering experience is not required. We will support you in developing these skills while you make an immediate impact.
Find out more about the Trust and Safety team and responsibilities here:
What you’ll do
Maintain and enhance abuse prevention systems to identify and block evolving abuse patterns such as spam, cryptomining, and terms of service violations
Build and expand capabilities in our in-house abuse platform
Improve and scale agentic AI capabilities in abuse detection and mitigation tools
Collaborate with peers across Security Operations to deliver safety improvements for GitLab.com
Automate processes to close gaps and reduce manual intervention
Create and maintain clear documentation, runbooks, and procedures
What you’ll bring
Strong software development skills with Ruby/Rails
Experience working on distributed applications with large codebases, preferably in cloud-native environments
Curiosity and drive to develop security engineering expertise
Comfort working in an all-remote, results-driven environment
Interest in “thinking like a hacker” and defending against attacks with an “automation first” mindset
Interest in cloud-native development in Google Cloud Platform (GCP) and/or AWS
Interest in handling trust and safety security incidents such as platform spam, platform abuse, and cryptomining
About the team
The Trust and Safety team is a global group dedicated to keeping abusive behaviors off GitLab.com. We rely on automation, predictive analysis powered by LLMs, and behavioral detection to proactively identify and prevent abuse. Our work spans both core abuse prevention platforms and product-facing safety features. We collaborate closely with Security Operations peers including Security Incident Response, Signals Engineering, Threat Intelligence, and the Red Team. Together, we help ensure GitLab remains a secure and trusted platform for all users.
How GitLab will support you
All remote, asynchronous work environment
Home office support
Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.