GitLab is an open-core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating human progress. Our platform unites teams and organizations, breaking down barriers and redefining what’s possible in software development. Thanks to products like Duo Enterprise and Duo Agent Platform, customers get AI benefits at every stage of the SDLC.Β
The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier, with all team members expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact. GitLab is where careers accelerate, innovation flourishes, and every voice is valued. Our high-performance culture is driven by our values and continuous knowledge exchange, enabling our team members to reach their full potential while collaborating with industry leaders to solve complex problems. Co-create the future with us as we build technology that transforms how the world develops software.
An overview of this role
Security is at the heart of GitLab Ultimate, and itβs a key part of our customersβ journey to produce more secure software.
As the Senior Product Manager for Composition Analysis & Dynamic Analysis, you’ll focus on container and dependency scanning capabilities that our customers use to secure their applications. While SCA is the focus, youβll also manage our DAST and API Security product areas. This role combines innovative security technology and iterative product development at the scale of GitLabβs global customer base.
You’ll drive high-visibility initiatives like Static Reachability Analysis, detection of malicious software, license compliance, and auto-remediation for vulnerable dependencies. As part of the GitLab platform, youβll deliver results that security teams trust while serving the practical needs of developers who interact with your product every day.
You’ll work independently to shape product strategy while collaborating with experts across GitLab. Youβll work most closely with the Composition Analysis engineering team; the Dynamic Analysis engineering team; our innovative Vulnerability Research team; and the rest of the Sec PM team, which manages all of GitLabβs security scanning, risk management, and governance features. Your decisions will directly impact GitLab Ultimate customers and help define the future of DevSecOps.
Here are some examples of our recent releases:
What youβll do
- Work directly with customers and account teams to understand what our customers need.
- Be the primary voice of SCA and DAST users and buyers in our Product team.
- Combine metrics, customer stories, research, and your own knowledge to identify and prioritize the highest-impact work.
- Craft requirements for new features.
- Discover opportunities to improve existing capabilitiesβincluding in related product areas where youβll collaborate with other product teamsβand deliver them to users.
- Clearly articulate GitLabβs current and future capabilities for SCA and dynamic analysis, including dependency scanning, container scanning, license scanning, API security, and related areas.
- Represent GitLab in contexts like customer meetings, industry conferences, webinars, and our public issue tracker.
- Collaborate with Product Marketing and Field Enablement to equip our Field teams with knowledge and messaging about your product area.
- As aΒ Senior Product Manager, youβll work closely with your counterparts, but youβll be responsible for initiating, shaping, and driving projects independently.
What youβll bring
- Proven experience with Application Security products, ideally including hands-on work developing or managing SCA products
- Deep understanding of Application Security personas, including developers, security engineers, and security leadership
- Multiple years of product management experience, preferably with enterprise software or security tools used by development teams
- Track record of successfully managing complex technical products and driving them from concept to market
- Experience working with large enterprise B2B customers and understanding their security, compliance, and operational needs
- Strong analytical skills with ability to synthesize customer stories, usage data, and market research into actionable product decisions
- Excellent written and verbal communication skills, including ability to explain complex security concepts to both technical and non-technical audiences
- Creative problem-solving mindset with ability to iterate on complex security challenges and balance detailed execution with strategic thinking
- Enough familiarity with code that you can understand SCA, DAST, or API Security findings, discuss detection tradeoff decisions with engineers and researchers, and create simple demonstrations
Bonus qualifications
- Experience building AI-powered features, especially for security use cases
- Hands-on experience in an application security, security assessment, or similar role
How GitLab will support you
Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you’re excited about this role, please apply and allow our recruiters to assess your application.
The base salary range for this roleβs listed level is currently for residents of listed locations only. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, and alignment with market data. See more information on our benefits and equity. Sales roles are also eligible for incentive pay targeted at up to 100% of the offered base salary.
California/Colorado/Hawaii/New Jersey/New York/Washington/DC/Illinois/Minnesota pay range$127,700β$230,600 USD
Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.
Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.
GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLabβs policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See alsoΒ GitLabβs EEO PolicyΒ andΒ EEO is the Law. If you have a disability or special need that requiresΒ accommodation, please let us know during theΒ recruiting process.
