Gitlab hero border pattern left svg Gitlab hero border pattern right svg

Senior Security Engineer, Vulnerability Research

Department: Security

Apply now
This position is remote based. 

GitLab is building a research team that will focus on improving GitLab’s security detection capabilities, including SAST/DAST and future products. For more information about our security products, please review: and

This team will work directly with the GitLab Security, Development, and Product teams to build, tune and improve the efficacy of GitLab’s stand-alone detection products. 

 The Security Team at GitLab works on securing our product and on internal security. On the product side, this includes the open source version of GitLab, the enterprise editions, and the service. Security Engineers work with peers on cross-functional teams dedicated to areas of the product. They also work together with product managers, developers, and infrastructure teams to solve common goals.


    • Will dedicate all bandwidth to dogfooding and contributing directly to Secure/Defend products.
    • Seek and detect vulnerabilities, develop corresponding solutions and help improve the security technology.
    • Conduct code review of Ruby and Go backend code. Other languages are a plus.
    • Work with static analysis/compilers.
    • Write detailed technical reports.
    • Assess security product output results and conduct root cause analysis to improve efficacy.
    • Responds to internal and external customer inquiries on vulnerabilities and related topics.


    • At least 2-3 years of direct experience as an Individual Contributor in specialty
    • If offered the position, you can start within 1 month's timeframe
    • You have a passion for security and open source
    • You are a team player, and enjoy collaborating with cross-functional teams
    • You are a great communicator
    • You employ a flexible and constructive approach when solving problems
    • You share our values, and work in accordance with those values