The GitLab DevSecOps platform empowers 100,000+ organizations to deliver software faster and more efficiently. We are one of the world’s largest all-remote companies with 2,000+ team members and values that foster a culture where people embrace the belief that everyone can contribute.
Learn more about Life at GitLab.
An overview of this role
Data is a critical part of how GitLab provides value to organizations across the globe. Whether we’re talking about software versioned through git and the infinitely diverse conversations that customers have through GitLab issues or the data architectures that enable our AI capabilities, the constant is the need to ensure the confidentiality, integrity, and availability (CIA) of the data customers trust us to protect.
In this foundational role, you’ll be responsible for helping set and implement the technical strategy for how GitLab safeguards data within its platform across our three core deployment models : SaaS, Dedicated (single tenant SaaS), and on-prem.
What you’ll do
Design and develop comprehensive authentication and authorization frameworks for critical data stores within our SaaS, Dedicated architectures, and other customer-facing applications (like version.
gitlab.com and customers.gitlab.com).
- Read about our architecture in our docs.
- Help address data infrastructure security challenges for on-premise deployment models.
- Ensure the overarching security of data infrastructure supporting diverse deployment / product architectures, including :
- Relational and non-relational databases
- Object storage (S3, Minio, etc)
- Clickhouse (read more).
- Git repository data (read more)
- Contribute with security improvements and reviews for Gitaly - Built and maintained by GitLab for git repository storage and retrieval at scale (read more)
- Design and develop paved roads for engineering teams for encryption of data in transit and at rest.
- Design and help implement controls to prevent the commingling of different data types, maintaining appropriate data segregation and integrity.
- Define protocols and guardrails for internal engineering and support teams when needing access to customer data, ensuring ethical and secure handling.
- Help lead initiatives for data sanitization to prevent triangulation of individual identities, ensuring privacy and compliance with data protection laws.
- Design, develop, and improve solutions for Data Loss Prevention
- Design, develop, and improve solutions for Backups and Disaster Recovery
- Collaborate across product and engineering teams to continuously improve our data security practices and policies.
What you’ll bring
- Proven experience in data security engineering and a strong background in deploying secure data solutions across different environments (public cloud, on-prem, etc.).
- Senior-level experience in software engineering in at least one primary programming language (Ruby, Python, NodeJS, or GoLang).
- Deep understanding of authn, authz, encryption,data sanitization, data loss prevention and disaster recovery practices
- Hands-on experience with a diverse set of data technologies, including object storage, relational / non-relational databases, key-value stores, message queues, etc.
- Familiarity with regulatory compliance and data protection standards (GDPR, CCPA, FedRAMP, HIPAA, etc.).
- Strong analytical and problem-solving skills, with the ability to reason about complex data security challenges.
- Excellent communication skills, capable of working collaboratively in a fully remote, globally distributed team.
About the team
The GitLab infrastructure security team is a small but growing force within the Product Security department. The team is globally distributed and is responsible for safeguarding the infrastructure that powers the GitLab platform, including cloud security, containers, data, and more.
How GitLab will support you
- Benefits to support your health, finances, and well-being
- All remote, asynchronous work environment
- Flexible Paid Time Off
- Team Member Resource Groups
- Equity
Staff Data Engineer, Platform Infrastructure (IaaC)
As a Data Infrastructure Engineer, you will play a key role in designing, building, and maintaining robust, scalable, and secure data infrastructure used by our data professionals in order to fuel innovation, facilitate informed decision-making, and drive sustainable growth. Knowledge of data storag...
Staff Security Engineer
Everlaw is looking for a Staff Security Engineer. Reporting to the Director, Security Engineering, you will be a leading member of the technical security team at the company. Keeping our users' data safe requires a passion for learning new technologies because we have to be good custodians no matter...
Staff Cloud Security Engineer
As a Staff Cloud Security Engineer, you will be responsible for designing, implementing, and managing security measures to protect our cloud infrastructure and data. The Security Engineering team is responsible for all aspects of technical security. Evaluate, deploy, and manage cloud security toolin...
Staff Software Engineer - Distributed Data Systems
As a software engineer on the Runtime team at Databricks, you will be building the next generation distributed data storage and processing systems that can outperform specialized SQL query engines in relational query performance, yet provide the expressiveness and programming abstractions to support...
Staff Data Engineer, Data Platform
As a Staff Data Engineer on the Data Platform team, you will grow our business by leveraging advanced data engineering techniques to enhance our data architecture and streamline data ingestion processes. Collaborate with data modelers and data analysts to provide them with high-quality, clean, and w...
Sr. Staff Security Engineer
The Product Security Team's mission is to Left-shift SDLC (Security Development Lifecycle) processes for ALL code written in Databricks (for Customer Use or Supporting Customer internally) to reduce the likelihood of introducing new vulnerabilities in production and minimize the count and effect of ...
Staff Product Security Engineer
We are looking for a Security Engineer reporting to the Product Security Engineering Manager to join our team in building a secure and protected platform for Discord's users. Deep-dive into the architectural and technical aspects of new projects, providing expert security guidance and/or writing tec...
Staff, Cloud Security Engineer
Collaborate with other security and engineering teams to provide timely security reviews, threat models, and control implementations for major product ships. Share knowledge and experience in the use of industry-standard cloud security tools, proper security best practices, and soft ski...
Staff Infrastructure Security Engineer
As a staff infrastructure security engineer you’ll be working closely with the infrastructure, corporate security, detection and response and product security teams to build guardrails and paved roads, adopting secure defaults, automating everything and helping define the direction of our infrastruc...
Staff, Software Engineer - Messaging Data Platform
Bachelor's degree in Computer Science, Engineering or a related field, or equivalent training, fellowship, or work experience. On-hands experience with Big Data Processing Tools and Frameworks such as Apache Spark, PySpark, SparkSQL. ...