Senior PSIRT Security Engineer, EMEA
GitLab
Senior PSIRT Security Engineer, EMEA
Job Description
About this Role
Join GitLab's elite Product Security Incident Response Team (PSIRT) as a Senior Security Engineer, safeguarding the world's leading AI-powered DevSecOps platform.
Empower everyone to contribute to software that accelerates human progress through our mission-driven, open-core innovation.
Dive into high-stakes vulnerability analysis, collaborating with top engineers to protect customers and drive security excellence.
Thrive in a high-performance culture where AI amplifies your productivity and every voice shapes the future of DevSecOps.
Lead coordinated vulnerability disclosure, turning security challenges into opportunities for continuous improvement and impact.
Unite teams across the SDLC with cutting-edge tools like Duo Enterprise and Duo Agent Platform, redefining software security.
Experience career acceleration amid industry leaders, embracing values of knowledge exchange and inclusive collaboration.
Craft actionable insights from incidents, scaling PSIRT expertise to fortify GitLab's comprehensive platform against threats.
Embrace ambiguity with creative problem-solving, automating workflows to innovate at the intersection of security and development.
Co-create the future in a dynamic environment where your security expertise fuels breakthroughs in AI-enhanced software delivery.
Locations
- EMEA (Remote)
Salary
Salary details available upon request
95,000 - 160,000 USD / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- Ruby programmingintermediate
- Ruby on Railsintermediate
- TypeScriptintermediate
- JavaScriptintermediate
- Go programmingintermediate
- Shell scriptingintermediate
- Vulnerability assessment toolsintermediate
- Code review and analysisintermediate
- PoC exploit developmentintermediate
- Security frameworks (CVE, CWE, CVSS)intermediate
Required Qualifications
- Demonstrated experience managing vulnerability triage, remediation, and disclosure in software security contexts (experience)
- Strong understanding of code security and remediation of various security defects and logic vulnerabilities (experience)
- Programming or scripting experience, particularly Ruby, Ruby on Rails, TypeScript, JavaScript, or Go (experience)
- Ability to read and understand code for fix validation and root cause analysis (experience)
- Comfort with shell scripting to automate tasks or build PoC exploits (experience)
- Experience in Application Penetration Testing or Vulnerability Research (experience)
- Understanding of common security vulnerabilities and frameworks like OWASP Top 10 and STRIDE (experience)
- Knowledge of security standards including CVE, CWE, and CVSS (experience)
- Demonstrated ability to learn new concepts in cloud and web application security (experience)
- Proficiency in English for written and verbal communication (experience)
Preferred Qualifications
- Experience discovering SQLi, XSS, CSRF, SSRF, and authentication flaws (experience)
- Participation in bug bounty programs (experience)
- Expertise in variant hunting and exploitability research (experience)
- History of validating vulnerability fixes independently (experience)
- Skills in automating vulnerability triage processes (experience)
- Ability to support security release preparations (experience)
- Proven stakeholder communication in vulnerability response (experience)
- Talent for creating documentation for diverse audiences (experience)
- Flexible approach to navigating ambiguity (experience)
- Critical and creative thinking in team settings (experience)
Responsibilities
- Reproduce, assess, and document vulnerabilities in GitLab products and services
- Perform variant hunting and contribute to exploitability research
- Consult with product and development teams on vulnerability remediation
- Independently validate vulnerability fixes prior to release
- Support security release preparation activities
- Automate vulnerability triage tasks and mature team processes
- Participate in vulnerability response lifecycle and coordinated disclosure
- Manage stakeholder communication during incidents
- Drive continuous improvement from lessons learned
- Contribute actionable documentation on vulnerability impact and remediation
Benefits
- general: Competitive compensation package
- general: Comprehensive health, dental, and vision insurance
- general: Flexible Paid Time Off policy
- general: Team Member Resource Groups for inclusion and belonging
- general: Equity Compensation and Employee Stock Purchase Plan
- general: Growth and Development Fund for professional advancement
- general: Generous Parental Leave
- general: Home office support and equipment
- general: Mental health and well-being resources
- general: Continuous learning opportunities with industry leaders
Tags & Categories
Answer 10 quick questions to check your fit for Senior PSIRT Security Engineer, EMEA @ GitLab.
Related Books and Jobs
Senior PSIRT Security Engineer, EMEA
GitLab
Senior PSIRT Security Engineer, EMEA
Job Description
About this Role
Join GitLab's elite Product Security Incident Response Team (PSIRT) as a Senior Security Engineer, safeguarding the world's leading AI-powered DevSecOps platform.
Empower everyone to contribute to software that accelerates human progress through our mission-driven, open-core innovation.
Dive into high-stakes vulnerability analysis, collaborating with top engineers to protect customers and drive security excellence.
Thrive in a high-performance culture where AI amplifies your productivity and every voice shapes the future of DevSecOps.
Lead coordinated vulnerability disclosure, turning security challenges into opportunities for continuous improvement and impact.
Unite teams across the SDLC with cutting-edge tools like Duo Enterprise and Duo Agent Platform, redefining software security.
Experience career acceleration amid industry leaders, embracing values of knowledge exchange and inclusive collaboration.
Craft actionable insights from incidents, scaling PSIRT expertise to fortify GitLab's comprehensive platform against threats.
Embrace ambiguity with creative problem-solving, automating workflows to innovate at the intersection of security and development.
Co-create the future in a dynamic environment where your security expertise fuels breakthroughs in AI-enhanced software delivery.
Locations
- EMEA (Remote)
Salary
Salary details available upon request
95,000 - 160,000 USD / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- Ruby programmingintermediate
- Ruby on Railsintermediate
- TypeScriptintermediate
- JavaScriptintermediate
- Go programmingintermediate
- Shell scriptingintermediate
- Vulnerability assessment toolsintermediate
- Code review and analysisintermediate
- PoC exploit developmentintermediate
- Security frameworks (CVE, CWE, CVSS)intermediate
Required Qualifications
- Demonstrated experience managing vulnerability triage, remediation, and disclosure in software security contexts (experience)
- Strong understanding of code security and remediation of various security defects and logic vulnerabilities (experience)
- Programming or scripting experience, particularly Ruby, Ruby on Rails, TypeScript, JavaScript, or Go (experience)
- Ability to read and understand code for fix validation and root cause analysis (experience)
- Comfort with shell scripting to automate tasks or build PoC exploits (experience)
- Experience in Application Penetration Testing or Vulnerability Research (experience)
- Understanding of common security vulnerabilities and frameworks like OWASP Top 10 and STRIDE (experience)
- Knowledge of security standards including CVE, CWE, and CVSS (experience)
- Demonstrated ability to learn new concepts in cloud and web application security (experience)
- Proficiency in English for written and verbal communication (experience)
Preferred Qualifications
- Experience discovering SQLi, XSS, CSRF, SSRF, and authentication flaws (experience)
- Participation in bug bounty programs (experience)
- Expertise in variant hunting and exploitability research (experience)
- History of validating vulnerability fixes independently (experience)
- Skills in automating vulnerability triage processes (experience)
- Ability to support security release preparations (experience)
- Proven stakeholder communication in vulnerability response (experience)
- Talent for creating documentation for diverse audiences (experience)
- Flexible approach to navigating ambiguity (experience)
- Critical and creative thinking in team settings (experience)
Responsibilities
- Reproduce, assess, and document vulnerabilities in GitLab products and services
- Perform variant hunting and contribute to exploitability research
- Consult with product and development teams on vulnerability remediation
- Independently validate vulnerability fixes prior to release
- Support security release preparation activities
- Automate vulnerability triage tasks and mature team processes
- Participate in vulnerability response lifecycle and coordinated disclosure
- Manage stakeholder communication during incidents
- Drive continuous improvement from lessons learned
- Contribute actionable documentation on vulnerability impact and remediation
Benefits
- general: Competitive compensation package
- general: Comprehensive health, dental, and vision insurance
- general: Flexible Paid Time Off policy
- general: Team Member Resource Groups for inclusion and belonging
- general: Equity Compensation and Employee Stock Purchase Plan
- general: Growth and Development Fund for professional advancement
- general: Generous Parental Leave
- general: Home office support and equipment
- general: Mental health and well-being resources
- general: Continuous learning opportunities with industry leaders
Tags & Categories
Answer 10 quick questions to check your fit for Senior PSIRT Security Engineer, EMEA @ GitLab.
Related Books and Jobs