Manager, Security Incident Response Team (USA)

About the Role

As the manager of this team, you will be responsible for setting clear performance expectations, coaching the growth of your team members, and holding them accountable for delivering quality results. You will also be responsible for implementing program direction, maintaining a culture of high performance, and defending GitLab infrastructure and products.

What You Will Do

• Manage the day-to-day work of a team of incident response engineers
• Set clear performance expectations and coach team members for growth
• Hold the team accountable for delivering quality results
• Implement program direction and maintain a culture of high performance
• Defend GitLab infrastructure and products, including GitLab.com, GitLab Dedicated, and GitLab Dedicated for Government (FedRAMP)
• Develop and maintain relationships with stakeholders, including engineering teams and leadership
• Identify areas for process improvement and implement changes to optimize team workflows
• Collaborate with other teams, such as the Trust and Safety Team and the Red Team, to ensure a comprehensive approach to security
• Stay up-to-date with emerging threats and technologies, and apply this knowledge to improve incident response capabilities

What We Are Looking For

• 5+ years of experience in security incident response, with at least 2 years in a leadership role
• Strong technical background, with experience in areas such as threat hunting, incident response, and security investigations
• Experience with AI and automation technologies, and ability to apply these to optimize team workflows
• Excellent communication and leadership skills, with ability to coach and develop team members
• Experience working in a remote or distributed team environment
• Strong analytical and problem-solving skills, with ability to think critically and make sound operational decisions
• Experience with security frameworks and compliance regulations, such as NIST and HIPAA
• Bachelor's degree in Computer Science, Cybersecurity, or related field

Nice to Have

• Experience with cloud-based security solutions, such as AWS or Azure
• Familiarity with DevOps practices and tools, such as Jenkins or Docker
• Certification in security incident response, such as CISSP or CISM
• Experience with threat intelligence platforms, such as ThreatConnect or Anomali
• Familiarity with machine learning or artificial intelligence technologies

Benefits and Perks

• Competitive salary and benefits package
• Opportunity to work with a talented and experienced team
• Flexible working hours and remote work options
• Professional development opportunities, including training and certification programs
• Access to cutting-edge technologies and tools
• Recognition and reward for outstanding performance
• Comprehensive health insurance and wellness programs
• Generous paid time off and vacation policy
• Retirement savings plan and matching program
• Employee stock options and equity program
• Remote work stipend and home office setup support
• Access to exclusive company events and networking opportunities
• Annual budget for conference attendance and professional development
• Mentorship and coaching programs for career growth and development
• Flexible parental leave and family care policies
• Employee resource groups and diversity initiatives
• Access to mental health resources and employee assistance programs
• On-site fitness classes and wellness programs
• Free meals and snacks
• Commuter benefits and transportation reimbursement
• Employee discounts and perks

• Be prepared to discuss your experience with security incident response and threat hunting, and how you've applied these skills in previous roles.
• Highlight your technical skills, including experience with AI and automation technologies, and how you've used these to optimize team workflows.
• Show examples of your leadership experience, including how you've coached and developed team members, and how you've implemented program direction and maintained a culture of high performance.
• Research GitLab's values and mission, and be prepared to discuss how your skills and experience align with these.
• Be prepared to discuss your experience working in a remote or distributed team environment, and how you've managed and collaborated with team members in these settings.
• Consider including a portfolio or examples of your work, such as incident response plans or threat hunting reports, to demonstrate your skills and experience.
• Be prepared to negotiate salary and benefits, and do research on the market rate for this role to make a strong case for your compensation package.
• Pay attention to red flags, such as a lack of clear expectations or unclear communication, and be prepared to ask questions during the interview process.