This blog post is Unfiltered
As part of our vision to deliver the entire DevOps lifecycle in a single application, we’re designing an experience that will allow security professionals to collaborate directly with developers. We need your help to make it the best it can be!
Our newest product stage is Defend, and it’s an exciting time as we continue to define our strategy and roadmap. The Defend UX team’s goal is to provide the best experience in keeping your application safe after your code is in production. This includes all features that help you defend your applications and cloud infrastructure by giving you the ability to identify, catalogue, manage, and remediate threats, vulnerabilities, and risks.
We have a ton of UX research planned to help us learn more about this new category, and we hope you consider adding your voice.
Our users' jobs to be done
From what we know so far, the Defend user is responsible for maintaining the security of their company’s environments and applications. They seem to have a wide variety of job titles, including security analyst and SecOps engineer.
When I make sure my company’s applications aren’t vulnerable to bad actors, I want to monitor the traffic coming to my application and detect the possibility of an attack (SQL injection attempts, XSS attempts, vulnerability scanners, etc) so I can know what parts of the application I need to protect better.
Our recruiting challenge
Perhaps because we’re best known for our origins in source code management, we usually have an abundance of participants who fit our software developer persona when we’re recruiting for studies. Newer personas like our Defend users have been more elusive by comparison — we’ve attempted studies where we couldn’t find a single human to speak with.
This is a real problem for us, as we believe strongly in evidence-based design. We want to build for your actual wants and needs as opposed to our assumptions about them.
How you can help
If any of this sounds like you, please sign up to our research program, GitLab First Look! When you join, you can indicate exactly which product areas and types of research you’re interested in. We’ll send you invitations to participate when you match with studies.
We also have one ongoing research effort that you can help with right now — a survey about secrets management 🤫
Questions? Reach out on twitter.