Senior Security Engineer, Vulnerability Research

remote
Posted 5 years ago

Website GitLab Inc.

Remote

This position is remote based.

GitLab is building a research team that will focus on improving GitLab’s security detection capabilities, including SAST/DAST and future products. For more information about our security products, please review: https://about.gitlab.com/direction/secure/ and https://about.gitlab.com/direction/defend/

This team will work directly with the GitLab Security, Development, and Product teams to build, tune and improve the efficacy of GitLab’s stand-alone detection products.

The Security Team at GitLab works on securing our product and on internal security. On the product side, this includes the open source version of GitLab, the enterprise editions, and the GitLab.com service. Security Engineers work with peers on cross-functional teams dedicated to areas of the product. They also work together with product managers, developers, and infrastructure teams to solve common goals.

Responsibilities

- Will dedicate all bandwidth to dogfooding and contributing directly to Secure/Defend products.
- Seek and detect vulnerabilities, develop corresponding solutions and help improve the security technology.
- Conduct code review of Ruby and Go backend code. Other languages are a plus.
- Work with static analysis/compilers.
- Write detailed technical reports.
- Assess security product output results and conduct root cause analysis to improve efficacy.
- Responds to internal and external customer inquiries on vulnerabilities and related topics.

Requirements

- At least 2-3 years of direct experience as an Individual Contributor in specialty
- If offered the position, you can start within 1 month’s timeframe
- You have a passion for security and open source
- You are a team player, and enjoy collaborating with cross-functional teams
- You are a great communicator
- You employ a flexible and constructive approach when solving problems
- You share our values, and work in accordance with those values

Compensation

- Please view the compensation range for this role at the bottom of the position description.

Remote-Global

To apply for this job please visit grnh.se.