[Hiring] Senior Backend Engineer, Software Supply Chain Security: Pipeline Security @GitLab
Apr 07, 2025 - GitLab is hiring a remote Senior Backend Engineer, Software Supply Chain Security: Pipeline Security. 💸 Salary: $117,600 - $252,000 usd. 📍Location: Northern America, Americas, Latin America (LATAM), Europe, EMEA, USA, UK, Canada, Germany, France, India, Asia, Africa, Brazil, APAC, Australia.
Role Description
As a Senior Backend Engineer on the Pipeline Security team, you'll be at the forefront of making CI pipelines more secure and trustworthy for GitLab users worldwide. You'll work on critical security features that directly impact how thousands of organizations handle sensitive information in their development workflows. Our team is currently focused on two major initiatives:
- Developing GitLab's native secrets management system for CI pipelines
- Implementing SLSA L3 compliance features to enhance software supply chain security
Working with both Ruby on Rails and Golang, you'll help shape the security architecture of GitLab's CI/CD infrastructure. This role offers a unique opportunity to combine deep backend development expertise with security engineering, directly contributing to making GitLab's pipelines more secure for everyone.
What You’ll Do
- Design and implement security-focused features for GitLab's CI/CD pipeline infrastructure, with a focus on secrets management and SLSA compliance
- Contribute to the development of GitLab's native secrets management system for CI pipelines, ensuring secure handling of sensitive information
- Review code contributions with a security-first mindset, ensuring all new features meet our high security standards
- Write secure, maintainable code primarily in Ruby on Rails, with occasional work in Golang for specific components
- Apply security best practices and participate in code reviews with a security-focused mindset
- Work closely with security experts and other engineering teams to ensure best practices in secure software development
- Write and maintain technical documentation for security features, focusing on both implementation details and security considerations
- Debug and resolve complex security-related issues in production environments
- Participate in design discussions and technical reviews with a focus on security implications
Qualifications
- 5+ years of backend development experience
- Strong proficiency in Ruby on Rails and its security features
- Deep understanding of CI/CD concepts and pipeline security
- Experience with secrets management and security best practices (Experience with HashiCorp Vault or similar secrets management systems preferred)
- Strong knowledge of web application security principles
- Experience with Git and GitLab/GitHub workflows
- Strong communication skills and ability to explain complex security concepts
- Experience with Golang development preferred
- Experience with container security and Docker preferred
- Familiarity with SLSA framework and software supply chain security preferred
About the team
The Pipeline Security team is responsible for making CI pipelines more secure and trustworthy for users. We're currently focused on two major initiatives that will significantly improve GitLab's security posture:
- Developing a native secrets management system
- Implementing SLSA L3 compliance features
Our work directly impacts the security of thousands of organizations' software supply chains.
Benefits
- All remote, asynchronous work environment
- Flexible Paid Time Off
- Team Member Resource Groups
- Equity Compensation & Employee Stock Purchase Plan
- Growth and Development Fund
- Parental leave
- Home office support
Similar Remote Jobs
More jobs at GitLab
-
Project Management $180,000 - $210,000 usd Americas, Europe, Asia +2 moreApr 14, 2025
-
Sales / Business unspecified JapanApr 13, 2025
More Software Development jobs
-
Software Development competitive salary based on global industry standards. IndiaApr 14, 2025
-
Software Development unspecified IndiaApr 14, 2025
More jobs in Northern America
-
All others up to $40 usd per hour Northern America, Americas, Latin America (LATAM) +13 moreApr 14, 2025
-
Software Development unspecified Northern America, EuropeApr 14, 2025
-
Software Development €46,000 - €61,500 eur Northern America, Europe, APACApr 14, 2025
Kickstart Your Job Search
Unlock 54,464 additional remote jobs, advanced search & email notifications
Too many emails? Declutter your inbox with Meco
Your home for reading newsletters
| 📍 | Be aware of the location restriction for this remote position: Northern America, Americas, Latin America (LATAM), Europe, EMEA, USA, UK, Canada, Germany, France, India, Asia, Africa, Brazil, APAC, Australia |
| ‼ | Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more. |
|
Salary
💸
$117,600 - $252,000 usd
|
Remote
Location
Northern America, Americas, Latin America (LATAM), Europe, EMEA, USA, UK, Canada, Germany, France, India, Asia, Africa, Brazil, APAC, Australia
|
|
Job Type
unspecified
|
Posted
Apr 07, 2025
|
| 📍 | Be aware of the location restriction for this remote position: Northern America, Americas, Latin America (LATAM), Europe, EMEA, USA, UK, Canada, Germany, France, India, Asia, Africa, Brazil, APAC, Australia |
| ‼ | Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more. |
