GitLab's Vulnerability Research team is a security research and development team, that focuses on improving GitLab’s security detection capabilities, including SAST/DAST and future products. For more information about our security products, please review Secure and Govern stages, as well as documentation.
The Vulnerability Research team works closely with GitLab Security (Security Research, Application Security, et al), Development, and Product teams to build, tune and improve the efficacy of the security products that are integrated into GitLab.
Vulnerability Research Engineers perform research to analyze software vulnerabilities, exploitation methods, track new vectors, discover novel methods and approaches in software security, apply this knowledge to the security products and GitLab itself. To get a better sense of what the team does daily, you can browse some of the past information sharing sessions.
ℹ️ Note: This is not a Security Department position, although Vulnerability Research engineers are highly proficient and experienced in information security. The team works closely with Security.
The Vulnerability Research Engineer is a grade 6.
The Senior Vulnerability Research Engineer is a grade 7.
A Senior Vulnerability Research Engineer may want to pursue the vulnerability research management track at this point. See Engineering Career Development for more details.
The Staff Vulnerability Research Engineer role extends the Senior Vulnerability Research Engineer role. As a recognized security expert in multiple specialty areas, with cross-functional team experience, a Staff Vulnerability Research engineer projects skills and experience across the entire organization, willing and able to challenge assumptions and the status quo in the industry.
The Staff Vulnerability Research Engineer is a grade 8.
For more details on the engineering career ladders, please review the engineering career development handbook page.
Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find their job title on our team page.
As always, the interviews and screening call will be conducted via a video call. See more details about our hiring process on the hiring handbook.
GitLab Inc. is a company based on the GitLab open-source project. GitLab is a community project to which over 2,200 people worldwide have contributed. We are an active participant in this community, trying to serve its needs and lead by example. We have one vision: everyone can contribute to all digital content, and our mission is to change all creative work from read-only to read-write so that everyone can contribute.
We value results, transparency, sharing, freedom, efficiency, self-learning, frugality, collaboration, directness, kindness, diversity, inclusion and belonging, boring solutions, and quirkiness. If these values match your personality, work ethic, and personal goals, we encourage you to visit our primer to learn more. Open source is our culture, our way of life, our story, and what makes us truly unique.
Top 10 Reasons to Work for GitLab:
See our culture page for more!
Work remotely from anywhere in the world. Curious to see what that looks like? Check out our remote manifesto and guides.