Principal Engineer, Software Supply Chain Security

GitlabGitlab·Remote(Remote, Canada; Remote, Israel; Remote, Netherlands; Remote, United Kingdom; Remote, US)
Software Development
Adjust

WFA Digital Insight

As demand for secure software supply chains grows, Gitlab seeks a Principal Engineer to lead its security strategy. With over 50 million registered users, Gitlab is a leader in DevSecOps. Candidates with expertise in SLSA Level 3 compliance and zero trust architecture will stand out in this role, which requires strong technical leadership and collaboration skills. Before applying, consider how your skills align with Gitlab's values and high-performance culture.

Job Description

About the Role

As the Principal Engineer, Software Supply Chain Security, you will own the technical strategy that secures how software is built and delivered on GitLab's DevSecOps platform. You will provide architectural leadership across multiple engineering teams and partner closely with infrastructure and CI/CD teams to harden pipelines, infrastructure, and access layers.

Responsibilities

  • Own the technical strategy for software supply chain security
  • Provide architectural leadership across multiple engineering teams
  • Partner with infrastructure and CI/CD teams to harden pipelines and infrastructure
  • Focus on SLSA Level 3 compliance, secrets management, and CI/CD security hardening

Requirements

  • Expertise in software supply chain security and DevSecOps
  • Strong technical leadership and collaboration skills
  • Experience with SLSA Level 3 compliance and zero trust architecture

How to Stand Out

  • Develop a strong understanding of SLSA Level 3 compliance and its application in software supply chain security
  • Showcase your experience with DevSecOps tools and platforms, such as GitLab
  • Prepare to discuss your approach to zero trust architecture and its implementation in a cloud-based environment
  • Highlight your technical leadership skills and experience mentoring staff engineers and individual contributors
  • Be prepared to provide examples of your collaboration with cross-functional teams, including infrastructure and CI/CD teams

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.