Key skills
Software developmentRuby on RailsDistributed applicationsCloud environmentsSecurity engineeringCloud native developmentGoogle Cloud PlatformAWSTrustsafety security incidentsAbuse detectionAutomationRubyAIAgenticRailsGCPGoogle CloudGitLabSaaS
About this role
GitLab is the intelligent orchestration platform for DevSecOps, enabling organizations to increase developer productivity and improve operational efficiency. The Software Security Engineer will engineer security improvements to the GitLab product and build tools to detect and prevent abuse on their SaaS platforms.
Responsibilities:
- Maintain core abuse prevention systems and build new abuse detection rules to identify and prevent evolving abuse patterns such as platform abuse, cryptomining, platform spam and abuse of terms of service
- Maintain and build new capabilities in our in-house abuse platform
- Improve and expand agentic AI capabilities in our abuse mitigation tools
- Collaborate with peers to deliver safety improvements for the GitLab product
- Resolve automation gaps and create efficient, automated processes
- Create and maintain documentation such as runbooks and procedures
Requirements:
- Strong software development skills with experience in Ruby/Rails
- Comfortable working in an all remote environment where results and impact matter above hours worked
- Interest in 'thinking like a hacker' and defending against attacks with an 'automation first' mindset
- Experience working on distributed applications with large codebases and deployed in cloud environments strongly preferred
- Passion/desire to proactivity develop security engineering skills
- Interest in cloud native development (Google Cloud Platform (GCP) and/or AWS)
- Interest in handling trust and safety security incidents (platform abuse, cryptomining, platform spam)