Home
Recruiter
Sign In

VP, Corporate Security

Remote from
USA
Salary, yearly, USD
297,600 - 360,000
Department
Cybersecurity
Employment type
Full Time,
Job posted
Apply before
26 Jul 2026
Experience level
Director
Views / Applies
30 / 11
About company Share

About GitLab

Iterate faster, innovate together: Our DevOps platform is a single app for unparalleled development velocity.

Actively Hiring
Verified job posting
This job post has been manually reviewed for authenticity and compliance.

AI Summary

GitLab is seeking a VP, Corporate Security to lead its identity engineering, corporate security engineering, and end-user services. This role involves setting vision and strategy for workforce identity, endpoint security, SaaS governance, and internal IT support in an all-remote environment. The ideal candidate will have a strong background in security leadership, with expertise in Okta, macOS security, and secure-by-design systems. This is a highly collaborative, fast-paced position requiring executive-level communication and strategic planning. The role offers a competitive salary and the opportunity to shape security at a leading DevSecOps company.

Role DNA

Job Complexity
Easy Hard
Pace & Pressure
Relaxed Fast-paced
Autonomy Level
Guided Full Ownership
Communication Load
Independent Highly Collaborative
AI Insight This VP role requires strategic vision and leadership across multiple security domains, including identity, endpoint, and end-user services. The complexity of managing security in a globally distributed, all-remote company adds to the challenge, but the role is supported by strong existing teams.

Salary Analysis

Median Highly Competitive
USD328,800
US Market
USD250k – 400k
0 USD440k
AI Insight The offered salary range of $297,600 to $360,000 is competitive and above the market median for VP-level security roles in the US, which typically ranges from $250,000 to $400,000. This compensation reflects the seniority and impact of the position at GitLab.

Key Skills

VP Corporate Security Identity Engineering Endpoint Security SaaS Governance DevSecOps Okta macOS Security Security Operations Remote Workforce Security IT Support

Dear Hiring Committee,

I am thrilled to apply for the VP of Corporate Security role at GitLab. With over 15 years of experience in security leadership, I have a proven track record in identity engineering, endpoint security, and building secure, scalable systems for global organizations. I am particularly drawn to GitLab's all-remote culture and its commitment to leveraging AI for productivity. My expertise in Okta, macOS security, and SaaS governance aligns perfectly with the requirements of this role. I am eager to bring my strategic vision to enhance GitLab's security posture while enabling team member productivity.

How would you approach modernizing identity management in a fast-growing, all-remote company?
I would start by assessing the current state of identity lifecycle, authentication methods, and access controls. Then, I would prioritize automated lifecycle management, phishing-resistant MFA, and fine-grained access controls (RBAC/ABAC). I'd also focus on integrating identity with our cloud governance strategy to ensure auditability and security.
Describe your experience with endpoint security for a distributed workforce, particularly macOS.
I have led endpoint security for organizations with thousands of remote Macs. I deployed unified endpoint management solutions, enforced hardening policies via configuration management, and implemented telemetry for detection. I also worked closely with IT to balance security with user experience, ensuring minimal friction.
How do you ensure that end-user services align with security objectives?
I believe in a 'secure by default' approach where security is embedded in IT processes. By collaborating with end-user services, we can design onboarding/offboarding flows that enforce security policies automatically. Regular training and feedback loops help maintain alignment.
What is your experience with SaaS governance and securing business applications?
I have implemented SaaS security posture management (SSPM) tools to discover and assess cloud applications. I also established policies for SaaS usage, access reviews, and integration security. Governance is key to preventing shadow IT and ensuring compliance.
How do you build a high-performance culture in a globally distributed security team?
I focus on clear goals, regular communication, and empowerment. Using asynchronous collaboration tools, we maintain transparency and accountability. I also prioritize professional development and celebrate wins to keep the team motivated.

GitLab is the intelligent orchestration platform for DevSecOps. GitLab enables organizations to increase developer productivity, improve operational efficiency, reduce security and compliance risk, and accelerate digital transformation. More than 50 million registered users and more than 50% of the Fortune 100* trust GitLab to ship better, more secure software faster.

The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier, with all team members expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact. GitLab is where careers accelerate, innovation flourishes, and every voice is valued. Our high-performance culture is driven by our values and continuous knowledge exchange, enabling our team members to reach their full potential while collaborating with industry leaders to solve complex problems. Co-create the future with us as we build technology that transforms how the world develops software.

*Fortune 500® is a registered trademark of Fortune Media IP Limited, used under license. Claim based on GitLab data. Fortune 100 refers to the top 20% ranked companies in the 2025 Fortune 500 list, published in June 2025. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of GitLab.

An overview of this role

Corporate Security at GitLab leads Identity Engineering, Corporate Security Engineering, and End User Services, bringing together the engineering and service functions that secure workforce identity, internal systems, endpoints, and core business applications. This organization enables GitLab team members to work productively and securely through a 24×5 support model and engineering ownership across identity, device trust, SaaS, platform, and internal security controls.

As VP, Corporate Security, you will lead this organization through its next stage of maturity. You will own strategy, execution, and operational excellence across Corporate Security engineering and services, shaping how GitLab scales secure workforce access, endpoint security, SaaS governance, and internal IT experience in an all-remote environment. You will inherit and develop a multi-disciplinary organization that already includes leadership across identity engineering and corporate security engineering, and you will partner closely with the CISO and peers across Security, IT, Engineering, People, Legal, and Finance.

This role is right for someone who can connect security posture, team member experience, and business enablement. You should be equally comfortable setting executive direction and drilling into operating questions such as how to modernize identity, reduce authentication friction, mature endpoint and SaaS controls, improve onboarding and offboarding, and build systems that are secure by default and auditable by design.

Some examples of the team’s focus areas:

What you’ll do

  • Set the vision and operating model for Corporate Security across engineering, identity, endpoint and device security, and end-user services, aligning security outcomes with productivity and service quality.
  • Lead a globally distributed, multi-disciplinary organization through clear roadmaps, strong managers, measurable priorities, and high operational standards.
  • Own GitLab’s internal identity and access strategy across Okta, lifecycle automation, RBAC and ABAC, administrative access controls, cloud access governance, and the ongoing evolution of Identity v3.
  • Drive secure-by-default endpoint and device strategy across GitLab’s fleet, with particular strength in macOS, endpoint hardening, configuration management, telemetry, detection partnerships, and engineering-led change control.
  • Oversee end-user services and internal IT support for the company, including access management, hardware support, and support for core applications such as Google Workspace, Slack, and Zoom, while improving helpdesk effectiveness and service experience.
  • Build scalable onboarding, offboarding, and role-change processes that reduce risk, improve auditability, and remove friction for team members and business stakeholders.
  • Partner cross-functionally with Security, IT, Engineering, People, Compliance, Finance, and Legal to translate business and regulatory requirements into pragmatic controls, policies, and workflows.
  • Own vendor, tooling, and budget strategy for the Corporate Security estate, using metrics to improve resilience, team member experience, and risk reduction over time.

What you’ll bring

  • Significant senior leadership experience leading corporate security, enterprise IT, IAM, endpoint security, or adjacent internal platform organizations at scale.
  • Strong command of workforce identity and access concepts, including SSO, SAML, OAuth, lifecycle automation, RBAC and ABAC, administrative access controls, and governance for privileged and non-human identities.
  • Deep understanding of modern endpoint and device security, ideally in a macOS-heavy environment, including MDM or endpoint management, hardening, software distribution, and fleet-level operational rollout strategy.
  • A track record of replacing manual or click-ops processes with automation, GitOps, infrastructure-as-code, and auditable engineering workflows.
  • Experience balancing service operations and engineering investment, with credibility in both helpdesk and internal platform environments.
  • Experience operating in regulated or audit-heavy environments and partnering with compliance stakeholders on durable, evidence-ready controls.
  • Excellent written and verbal communication skills, strong executive judgment, and the ability to lead effectively in an all-remote, asynchronous company.
  • A pragmatic, business-enabling leadership style that raises the security bar while reducing friction for team members and internal customers.

About the team

The Corporate Security organization provides the technology, support, and internal security capabilities GitLab team members rely on to do their work. The team owns internal security-focused engineering and services across access, endpoints, SaaS platforms, and core workforce systems, while also supporting day-to-day team member productivity through end-user services and helpdesk operations.

Within that broader scope, Identity Engineering leads the technical strategy and automation behind IAM, RBAC, and administrative access controls for internal systems, cloud infrastructure, and tech stack applications, including the next-generation Identity v3 program. End-user and endpoint functions support access, hardware, core applications, and fleet security for GitLab’s distributed workforce. Together, these groups are building a more scalable, auditable, and secure foundation for how GitLab operates internally.

The base salary range for this role’s listed level is currently for residents of the United States only. This range is intended to reflect the role’s base salary rate in locations throughout the US. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, alignment with market data, and geographic location. The base salary range does not include any bonuses, equity, or benefits. See more information on our benefits and equity. Sales roles are also eligible for incentive pay targeted at up to 100% of the offered base salary.

United States Salary Range
$297,600—$360,000 USD

How GitLab Supports Full-Time Employees

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you’re excited about this role, please apply and allow our recruiters to assess your application.

Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.

Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.

Apply now >

This job listing has been manually reviewed by the Jobicy Trust & Safety Team for compliance with our posting guidelines, including verification of the company's legitimacy, accuracy of job details, clarity of remote work policy, and absence of misleading or fraudulent content.

How to apply

Did you apply? Let us know, and we’ll help you track your application.

For safety tips, see our guides, and please let us know if you need any assistance.

Log in to save
You're almost done!

Create a free account with us to save a history of all jobs you've shown interest in.

You can also continue as a guest if you prefer.

Share

See a few more

Similar Cybersecurity remote jobs

More Jobs

Job Search Safety Tips

Here are some tips to help you search and apply for jobs safely:
Watch out for suspicious jobs Don't apply for jobs that offer high pay for little work or offer to hire you without an interview. Read more ›
Check the employer's profile Make sure you're applying for a trustworthy job by visiting the employer's profile and learning more about them. Read more ›
Protect your information Don't share personal details like your bank account or government-issued ID on suspicious websites or messengers. Read more ›
Report jobs that feel unsafe If you see a job that seems misleading, inappropriate or discriminatory, report it for going against our policies and we'll review it.

Share this job

Jobicy+ Subscription

Jobicy

617 professionals pay to access exclusive and experimental features on Jobicy

Free

USD $0/month

For people just getting started

  • • Unlimited applies and searches
  • • Access on web and mobile apps
  • • Weekly job alerts and digest
  • • Access to additional tools like Bookmarks, Applications, and more

Plus

USD $8/month

Everything in Free, and:

  • • Ad-free experience
  • • Daily job alerts and digest
  • • Personal career consultant
  • • AI-powered job advice
Go to account ›