LazyApply Logo

LazyApply

How It WorksPricingReviewsAI Cover Letter
GitLab
GitLab

1001-5000 employees

WebsiteLinkedIn
Software Development
DevOps
Cloud Computing
Information Technology
About GitLab

GitLab is a comprehensive DevOps platform delivered as a single application, enabling organizations to manage the entire software development lifecycle from planning and source code management to CI/CD, monitoring, and security. Founded in 2014, GitLab's mission is to make it possible for everyone to contribute to software development by providing a collaborative, open-source platform that supports remote work and transparency. The company offers a cloud-based and self-managed solution that integrates with various tools to streamline development workflows, improve productivity, and accelerate software delivery. GitLab is publicly traded on NASDAQ under the symbol GTLB and serves a global customer base ranging from startups to large enterprises.

2 months ago

Principal Infrastructure Security Engineer

Full-time
Senior
Cloud Security Engineer
Report problem

📋

Description
  • GitLab is an open-core software company developing an AI-powered DevSecOps Platform used by over 100,000 organizations.
  • The role involves working within the Infrastructure Security Team to develop multi-year security strategies for cloud infrastructure, design security automation, conduct security reviews, and influence security standards across engineering teams.
  • The engineer will serve as a technical authority, mentor staff, and help secure GitLab's infrastructure, supporting the company's mission to build secure, resilient SaaS and self-managed platforms.
  • The role emphasizes leadership in security for cloud providers (AWS, GCP, Azure), container orchestration (Kubernetes), and large distributed SaaS systems, with a focus on security frameworks like FedRAMP, ISO 27001, SOC 2, and PCI-DSS.

🎯

Requirements
  • Expert-level knowledge of security for cloud infrastructure (AWS/GCP/Azure), container orchestration (Kubernetes), and related infrastructure and data security topics
  • Ability to translate complex security concepts into clear, actionable recommendations
  • Principal-level technical leadership: ability to set strategy, influence across organizations, and mentor senior engineers
  • Extensive experience designing, developing, and operating large distributed systems in a SaaS context
  • Track record of leading projects with ambiguous requirements that delivered measurable business impact
  • History of driving technical strategy that influenced organization-wide security posture
  • Understanding of security certifications, frameworks, and standards like FedRAMP, ISO 27001, SOC 2, PCI-DSS

🏖️

Benefits
  • Benefits to support your health, finances, and well-being
  • Flexible Paid Time Off
  • Team Member Resource Groups
  • Equity Compensation & Employee Stock Purchase Plan
  • Growth and Development Fund
  • Parental leave
  • Home office support