AppSec Jobs
← Back to all jobs

GitLab

Senior PSIRT Security Engineer, EMEA

GermanyWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About GitLab

GitLab Inc. is a fully remote technology company that develops the GitLab DevSecOps platform, which originated as an open-source project in 2011. The company was incorporated in 2014 and has since grown to serve millions of users worldwide with tools for software development, collaboration, security, and compliance. GitLab operates as the largest all-remote company, with over 2,100 team members across more than 60 countries. The GitLab platform offers a comprehensive DevSecOps solution that includes core version control, CI/CD pipelines for automated integration and deployment, integrated security and compliance features, and collaboration tools for project management. GitLab provides various deployment options, including self-hosted and SaaS solutions, catering to both individual developers and large organizations. The company emphasizes transparency and open-source principles, aiming to empower everyone to contribute to software development.

Industry

information technology & services

Employees

2,400

928 engineers

Revenue

$759M

Website

Visit →

Security at GitLab

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

GitLab's AppSec philosophy involves ensuring engineers and contributors maintain a secure software development lifecycle, championing security operating principles, and balancing transparency with security in line with GitLab's values.

Security Team

  • Application Security Engineers at GitLab work closely with development teams, product managers, and third-party groups.
  • They perform security-focused code reviews and support the bug bounty program.
  • This position reports to the Security Manager, Application Security.

Key Initiatives

  • GitLab's AppSec initiatives include supporting a bug bounty program (HackerOne process) and integrating SAST directly into the CI/CD pipeline for automatic scans.
  • Security leadership also drives quarterly Security and Company priorities.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.