Job Description

Position Overview

As a Backend Engineer in Security Insights at GitLab, you will be instrumental in developing vulnerability management features. These features are critical for software engineers, application security engineers, and CISOs, aiming to simplify risk understanding and mitigation of software exploits. You will work on systems designed for scalability to serve customers of all sizes, enabling them to achieve their goals efficiently. You will join a full-stack team, collaborating with product managers, designers, and frontend engineers to tackle challenges within the Security Insights domain.

GitLab Company Information

GitLab is an open-core software company that develops the most comprehensive AI-powered DevSecOps Platform, utilized by over 100,000 organizations. Our mission is to empower everyone to contribute to and co-create the software that powers our world, accelerating human progress. This mission is deeply embedded in our culture, influencing our hiring practices, product development, and industry leadership. We operate our business on our product and adhere to our values. Learn more about Life at GitLab.

Our products, such as Duo Enterprise and Duo Workflow, provide customers with AI benefits across the entire SDLC. We embrace AI as a core productivity multiplier, encouraging and expecting all team members to integrate AI into their daily workflows to enhance efficiency, innovation, and impact globally.

Responsibilities

• Develop vulnerability management features and improvements for the GitLab product in a secure, well-tested, and performant manner.
• Collaborate with Product Management and other Engineering stakeholders to maintain a high standard of quality.
• Advocate for enhancements in product quality, security, and performance.
• Write code that adheres to internal standards for style, maintainability, and best practices for a high-scale web environment.
• Conduct code reviews according to our Code Review Guidelines and ensure timely responses to community contributions.
• Identify and propose solutions for team inefficiencies, such as technical debt.
• Confidently deliver features and improvements with minimal supervision, while collaborating with the team on larger projects.
• Participate in on-call rotations to assist with troubleshooting product operations, security operations, and urgent engineering issues.

Requirements

• Significant professional experience with Ruby on Rails.
• Strong experience with relational databases, preferably PostgreSQL.
• Demonstrated ability to clearly and concisely communicate complex technical, architectural, or organizational problems and propose iterative solutions.
• Experience with performance and optimization challenges, with a proven ability to diagnose and prevent these issues.
• Comfort working within a highly agile and iterative software development process.
• Effective communication skills, including achieving consensus with peers, providing clear status updates, and maintaining a positive, solution-oriented mindset.
• Experience managing projects from conception to production, including proposal, discussion, and execution.
• Self-motivated and self-managing with strong organizational skills.

About the Team

Security Insights is part of the Security Risk Management DevSecOps stage and is specifically responsible for the Vulnerability Management category. Vulnerability management is the process of identifying, prioritizing, and tracking vulnerabilities in assets and applications, aiming to help security professionals efficiently and effectively deter threats.

Employment Type:

• [Employment Type Not Specified]

Location Type:

• [Location Type Not Specified]

Salary:

• [Salary Not Specified]