Sr. Manager, Security Operations Engineering

An overview of this role

As a Senior Manager, you will lead engineering teams to deliver cross-organizational collaborative results, leveraging your expertise in automation, log engineering, threat intelligence, trust and safety, red-teaming, purple teaming, detection development and incident response to amplify high quality security program outcomes and enhance security protocols company-wide. You are an expert in incident response and are comfortable using critical thinking skills to resolve time-sensitive, complex incidents. You make good business decisions under pressure. You work across multiple organizations to unblock teams and resolve escalations where the problem and solutions, as well as risk strategy, may not be well defined. You'll champion a security-conscious culture, leading with metrics for data-driven decision making, developing security engineers to become high performers, tackling pressing security challenges with innovative solutions, ensuring the organization stays ahead of potential threats. You are comfortable being on-call, working nights and weekends when necessary, and volunteer when the team needs help. 

Find out more about the Security Operations team and responsibilities here:

• Incident Response

• Trust and Safety

• SIEM Operations

• Red Team

What you’ll do  

• Provide leadership to multiple security operations team shifts that will sometimes require you to be available on nights or weekends.

• Serve as trusted advisor as part of the security division’s leadership team, actively shaping the program direction

• Build and mature Security Operations programs for new and existing service offerings

• Collaborate across teams as a trusted advisor in automation, log engineering, detection development and incident response, driving the success of larger projects

• Actively develop high performing team members to consistently deliver advanced program results, solving systemic problems and delivering on complex projects

• Lead efforts in developing security metrics to think critically, drive decisions and resolve intricate issues

• Evangelize and foster a culture of security awareness across the company, and within the industry through thought leadership

• Drive the team to deliver quality and on time and on budget quarterly Objectives and Key Results (OKRs), as well as critical security projects

• Proactively address high-impact and difficult security challenges, contributing to innovative solutions

• Identify trends and prevent recurring security issues through the contribution of proactive mitigations and adopted product changes

• Implement solutions that address complex and challenging security issues with cross-functional dependencies

• Productively handle ambiguity and make response related decisions, sometimes with incomplete information, driving consistently positive outcomes

• Responsible for overflow Director responsibilities

• See your teams as the product, fulfilling the expectations of security leadership at GitLab

What you’ll bring 

• An exceptional ability to understand communicate complex technical issues and communicate effectively across multiple levels of the organization

• Excellent written and verbal communication skills

• Expert-level leadership in incident detection engineering, response and automation, with a computer science background 

• A metrics-driven analytical mindset to champion cross-functional challenges and projects, with experience using tools such as Tableau

• Experience leading the efficient management of SIEM tools, such as Splunk or Devo

• Current working knowledge of Google Cloud Platform (GCP) and cloud forensics

• Proficiency in proactive hunting based on threat intelligence

• Innovative problem-solving skills on complex security issues within incident detection, response and mitigation

• Eagerness to effectively collaborate with cross-functional teams, actively fostering a culture of security awareness, and supporting the development of security solutions that impact larger projects

• Diplomacy and the ability to influence various audiences with compelling perspectives

• Comfortable working with ambiguity and making difficult decisions, with consistently positive outcomes

• Strong technical leadership skills and analytical skills

About the team

Security Operations is a globally distributed team of engineers split across three core regions; AMER, APAC and EMEA, and is at the forefront of security events that impact both GitLab.com and GitLab. We are both proactive and reactive, leading security investigations, conducting purple teaming exercises, incident response support and response resolution, through to cyber threat analysis and logging, detection, and response engineering. Even though we’re a global team, we work together in a cross-regional manner and have automation and processes to facilitate collaboration when resolving incidents, handovers, and general collaboration for project work as well.

How GitLab will support you

• Benefits to support your health, finances, and well-being

• All remote, asynchronous work environment

• Flexible Paid Time Off

• Team Member Resource Groups

• Equity Compensation & Employee Stock Purchase Plan

• Growth and development budget 

• Parental leave 

• Home office support

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.