Manager, Security Incident Response Team

🕒 May 14

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of GitLab

GitLab

1001 - 5000 employees

Founded 2014

🤖 Artificial Intelligence

🏢 Enterprise

☁️ SaaS

💰 Secondary Market on 2020-11

Artificial Intelligence • Enterprise • SaaS

GitLab is the most comprehensive AI-powered DevSecOps platform, offering tools for automated software delivery, security, and compliance throughout the software development lifecycle. It provides solutions across areas such as AI-assisted development, continuous integration/continuous deployment (CI/CD), source code management, and vulnerability management. GitLab aims to simplify and accelerate software delivery by uniting development, security, and operations on a unified platform. It is particularly recognized for its AI code assistants and has been named a leader in the Gartner Magic Quadrant™ for DevOps Platforms, making it a preferred choice for many enterprises.

📋 Description

• Manage day-to-day team operations - establish clear goals, performance expectations, and accountability for direct reports; monitor progress and ensure timely delivery of quality results. • Develop and coach incident responders - provide candid, real-time feedback; advise on career growth; and foster a culture of investigation excellence, prioritizing depth and accuracy of analysis. • Proactively identify and fill talent gaps - participate in hiring decisions with a focus on candidates who will amplify GitLab's values and raise the team's technical bar. • Drive engagement and retention - recognize team member contributions, address engagement risks early, and create an environment of open feedback and psychological safety. • Cascade organizational context - translate division and company-wide strategy into clear, actionable team priorities; keep team members informed in a timely manner. • Implement and mature incident response processes - build and improve runbooks, procedures, and team capabilities that translate functional plans into tactical execution. • Lead incident response - serve as an escalation point and incident commander for high-severity events, including occasional nights and weekends; model the standard for quality investigations. • Enable cross-functional collaboration - coordinate effectively with peer SecOps teams, Legal, Customer Support, and Infrastructure to resolve incidents and close defense gaps through actionable retrospective mitigations. • Align the team on defensive improvements - drive insights from alerts, investigations, and incidents to improve GitLab's security posture and support a "shift left" mindset. • Champion remote-first practices - consistently model and coach team members on GitLab's remote working best practices, async communication norms, and handbook-first culture.

🎯 Requirements

• Proven people management experience - track record of managing and developing a team of security engineers, setting performance expectations, providing coaching, and driving accountability for results. • Incident response leadership - demonstrated experience leading complex incident response operations, including large-scale incident coordination and the full lifecycle from triage to retrospective. • Hands-on technical background - experience conducting security investigations and log analysis using SIEM tools (e.g., Splunk, Elastic); working knowledge of GCP and/or AWS, including cloud forensics. • Customer-facing credibility - comfortable representing GitLab Security during customer escalations and high-visibility cybersecurity discussions. • Proactive hunting and threat intelligence - proficiency in threat hunting based on intelligence, and familiarity with supply chain threats targeting SaaS platforms. • AI and automation mindset - experience using AI/LLMs to improve incident response workflows and automate repetitive processes. • Platform familiarity - experience using GitLab (or a comparable DevSecOps platform) for project tracking; bonus if you have experience responding to threats against a SaaS platform. • Prioritization under pressure - ability to make sound operational decisions quickly, escalate issues cleanly, and guide the team on balancing what is urgent versus what is important. • Due to government requirements, you must be a United States Citizen (defined as any individual who is a citizen of the United States by law, birth, or naturalization) to fill this position.

🏖️ Benefits

• Benefits to support your health, finances, and well-being • Flexible Paid Time Off • Team Member Resource Groups • Equity Compensation & Employee Stock Purchase Plan • Growth and Development Fund • Parental Leave

Apply Now

Similar Jobs

🕒 May 14

TASC (Total Administrative Services Corporation)

501 - 1000

🤝 B2B

📋 Compliance

👥 HR Tech

Senior Security Operations Engineer at Xformative Payment Systems focuses on securing AWS-based cloud infrastructure. Leading security operations while collaborating with the CTO and engineering teams.

🕒 May 13

CI&T

5001 - 10000

🤖 Artificial Intelligence

☁️ SaaS

Senior Identity and Security Operations Engineer designing and managing security platforms. Collaborating with teams to implement Zero Trust and provide expertise on security standards.

🕒 May 7

Edwards Lifesciences

10,000+ employees

⚕️ Healthcare Insurance

🧬 Biotechnology

Technical Lead for Offensive Cyber Security Operations at Edwards Lifesciences. Leading offensive cyber operations to protect innovative medical solutions globally.

🕒 May 4

CentralReach

201 - 500

Senior Security Operations Engineer joining CentralReach to design secure architectures with AI-driven enhancements. Focused on cloud security and automated security capabilities across the organization.

🕒 April 30

Ardent

51 - 200

🤖 Artificial Intelligence

🔒 Cybersecurity

🏛️ Government

Security Operations Center Analyst monitoring alerts and incident response for Ardent's cybersecurity team. Working in a 24x7 SOC environment supporting national security priorities.