Senior Backend Engineer – RoR/Go, SSCS: Pipeline Security

🔥 5 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

GitLab

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 2014

🤖 Artificial Intelligence

🏢 Enterprise

☁️ SaaS

💰 Secondary Market on 2020-11

Artificial Intelligence • Enterprise • SaaS

GitLab is the most comprehensive AI-powered DevSecOps platform, offering tools for automated software delivery, security, and compliance throughout the software development lifecycle. It provides solutions across areas such as AI-assisted development, continuous integration/continuous deployment (CI/CD), source code management, and vulnerability management. GitLab aims to simplify and accelerate software delivery by uniting development, security, and operations on a unified platform. It is particularly recognized for its AI code assistants and has been named a leader in the Gartner Magic Quadrant™ for DevOps Platforms, making it a preferred choice for many enterprises.

📋 Description

• Build and maintain secure, readable backend code primarily in Ruby on Rails, with some development in Go for targeted components. • Design backend architecture for complex security features, including secrets access control, pipeline security enforcement, and OpenBao integration. • Lead the development of role-based access control models, GraphQL APIs, and supporting application patterns for features owned by the team. • Own features end to end, from technical design and implementation through deployment, validation, and production support. • Collaborate with Product, security partners, and other engineering teams to document tradeoffs, align on direction, and deliver iteratively in a distributed environment. • Improve code quality, maintainability, security, and performance through code review, design iteration, and internal standards for a high-scale web environment. • Build and maintain Helm charts, including configuration, tuning, documentation, and automated testing for Kubernetes-based deployments. • Validate features in Kubernetes environments, including GitLab Cloud Native and Cloud Native Hybrid deployments, using GitLab testing and performance testing frameworks.

🎯 Requirements

• Experience building and maintaining backend features with a focus on secure design, data handling, and production reliability. • Ability to write production-quality code in Ruby on Rails, including use of framework security patterns and review for common application risks. • Working knowledge of CI/CD concepts and the ways pipelines can be misconfigured, abused, or expose sensitive data. • Familiarity with secrets management approaches and security practices for handling credentials in CI environments; experience with tools such as HashiCorp Vault or similar systems is helpful. • Comfort collaborating across Product and engineering teams in an asynchronous, distributed environment and communicating technical tradeoffs clearly in writing. • Ability to review merge requests with a security-first mindset and improve solutions through feedback and iteration. • Experience debugging production issues, including investigation of security-related behavior and proposing practical fixes. • Openness to learning adjacent domains and tools, including Go, container security, and software supply chain security; we welcome transferable experience from different technical backgrounds.

🏖️ Benefits

• Benefits to support your health, finances, and well-being • Flexible Paid Time Off • Team Member Resource Groups • Equity Compensation & Employee Stock Purchase Plan • Growth and Development Fund • Parental Leave