The Threat Management engineering sub-department contributes to development in the Secure & Defend sections.
We are responsible for defending applications, networks and infrastructure from security intrusions via giving users insights into threats at the vulnerability, network, container, operating system, and application layers. Our sub-department consists of all groups in the Defend Stage and the Threat Insights Group in the Secure Stage.
You can learn more about our approach on the direction pages for Secure and Defend.
Protect our users' applications, services, and infrastructure from the ever-evolving threat landscape.
By the end of FY21:
Launch GitLab developed security technologies and integrate open-source projects to provide security controls for customers.
Employ security controls for our customers at the container, network, host, and application layers.
Provide features to allow customers to manage their security risks effectively and efficiently.
For more details, see the Secure stage and Defend stage.
The following people are permanent members of this sub-department.
| Person | Role |
|---|---|
| Wayne Haber | Director of Engineering, Threat Management |
| Philippe Lafoucrière | Distinguished Backend Engineer, Threat Management, Secure, Defend |
| Lindsay Kerr | Frontend Engineering Manager, Threat Management |
| Thiago Figueiró | Backend Engineering Manager, Threat Management |
| Person | Role |
|---|---|
| Thiago Figueiró | Backend Engineering Manager, Threat Management |
| Jonathan Schafer | Backend Engineer, Threat Management, Threat Insights |
| Mehmet Emin Inac | Backend Engineer, Threat Management, Threat Insights |
| Alan (Maciej) Paruszewski | Backend Engineer, Threat Management, Threat Insights |
| Michał Zając | Backend Engineer, Threat Management, Threat Insights |
| Person | Role |
|---|---|
| Thiago Figueiró | Backend Engineering Manager, Threat Management |
| Arthur Evstifeev | Fullstack Engineer, Threat Management, Container Security |
| Zamir Martins Filho | Fullstack Engineer, Threat Management, Container Security |
| Person | Role |
|---|---|
| Lindsay Kerr | Frontend Engineering Manager, Threat Management |
| Daniel Tian | Senior Frontend Engineer, Threat Management |
| Savas Vedova | Senior Frontend Engineer, Threat Management |
| Alexander Turinske | Frontend Engineer, Threat Management |
The following members of other functional teams are our stable counterparts:
| Person | Role |
|---|---|
| Samuel White | Senior Product Manager, Defend |
| Matt Wilson | Senior Product Manager, Defend |
| Kyle Mann | Senior Product Designer, Secure & Defend |
| Nick Gaskill | Senior Technical Writer, Secure (Composition Analysis, Fuzz Testing, Vulnerability Research), Defend |
| Vincy Wilson | Quality Engineering Manager, Growth & Defend |
| Justin Mandell | Product Design Manager, Configure, Monitor, Secure & Defend |
The Threat Management team makes use of a number of open source projects including:
You can find demos of features, recorded synchronous meetings, release kick-offs, public group sessions, and more in the Threat Management playlist:
You can watch the Threat Management Sub-Department playlist below.
We use the following Workflow Boards to track issue progress throughout a milestone cycle:
It is important to delineate who the EM and PM DRIs are for every functionality, especially where this may not be obvious. It is documented on a dedicated delineation page.
In addition to the Workflow Labels Documentation, the labels below are of particular interest to us:
| Label | Use |
|---|---|
devops::defend |
All issues related to the Defend Stage |
devops::secure |
All issues related to the Secure Stage |
group::threat insights |
Vulnerability Management, UEBA, Responsible Disclosure |
group::container security |
WAF, Container Network Security, Container Behavior Analytics |
Category:Vulnerability Management |
subset of group::threat insights issues related to Vulnerability Management |
Category:UEBA |
subset of group::threat insights issues related to User Entity & Behavior Analytics |
Category:Responsible Disclosure |
subset of group::threat insights issues related to Responsible Disclosure |
Category:WAF |
subset of group::container security issues related to WAF |
Category:Container Network Security |
subset of group::container security issues related to Container Network Security |
Category:Container Behavior Analytics |
subset of group::container security issues related to Container Behavior Analytics |
Because we have a wide range of domains to cover, it requires a lot of different expertises and skills:
| Technology skills | Areas of interest |
|---|---|
| Ruby on Rails | Backend development |
| Go | Backend development |
| Vue, Vuex, GraphQL | Frontend development |
| SQL (PostgreSQL) | Various |
| Docker/Kubernetes | Threat Detection |
| Network Security | Container network security |
| Host Security | Various |
We are constantly iterating on our planning process as a team. To maximize our velocity and meet our deliverables, we follow a refinement process for all issues.
As the product evolves, it is important to maintain accurate and up to date documentation for our users. If it is not documented, customers may not know a feature exists.
To update the documentation, follow this process:
~Documentation label and outline in the description of the issue what documentation is needed.Further information on the documentation process.
@threat management engineering@threat management frontend@threat management backend