Staff Infrastructure Security Engineer (APAC, EMEA)

GitLab is the intelligent orchestration platform for DevSecOps, trusted by more than 50 million registered users and over 50% of the Fortune 100. The Infrastructure Security Team is part of the Product Security Department, focusing on securing public cloud infrastructure components for GitLab's SaaS Platforms and Self-Managed offerings.

• Expert knowledge of security for cloud infrastructure (AWS, GCP, Azure), container orchestration (Kubernetes), and related infrastructure and data security topics
• Proficiency in multiple programming languages including Go, Python, and Ruby with experience delivering production-quality security tooling
• Extensive experience with Infrastructure-as-Code security (Terraform, Ansible, CloudFormation), policy-as-code, and automated compliance
• Hands-on experience applying AI to security workflows with insights on meaningful leverage
• Proven track record of leading multi-team technical initiatives from ambiguous problem statements to measurable outcomes
• Strong written and verbal communication skills, able to explain security tradeoffs to technical and non-technical audiences including senior leadership
• Familiarity with security certifications, frameworks, and standards such as FedRAMP, ISO 27001, SOC 2, and PCI-DSS
• Alignment with GitLab's values and working in accordance with them

• Set architectural patterns, reference implementations, and foundational security automation for infrastructure security across GitLab
• Lead infrastructure security initiatives from problem framing through delivery, managing multi-quarter work streams with clear success criteria
• Conduct and lead comprehensive security reviews and threat modeling for complex infrastructure components, identifying systemic risks and driving remediation
• Define the team's approach to AI-assisted security engineering, establishing patterns for leveraging AI
• Serve as an authoritative technical voice for Infrastructure Security, translating architectural tradeoffs into clear decisions for engineering teams and senior leadership
• Partner on technical planning, prioritization, and roadmap development to align technical work with business objectives
• Mentor and develop engineers, raising the technical bar and modeling inclusive collaboration
• Fulfill the Product Security Division Mission of securing GitLab Infrastructure with GitLab's own product ("dogfooding")

GitLab hires new team members globally with remote roles; some roles may have location-based eligibility requirements. GitLab is an equal opportunity workplace and affirmative action employer, with policies based solely on merit and non-discrimination. Accommodations are available during the recruiting process for disabilities or special needs.