Principal Product Manager, Security & Compliance

## About the Role As a Principal Product Manager in GitLab’s Security and Compliance section, you will be a senior product leader focused on driving growth and value realization across the Security and Compliance portfolio. This portfolio is crucial as it contributes significantly to GitLab Ultimate, the company’s comprehensive solution. You will partner closely with the VP of Product for Security and Compliance and work horizontally with product managers, UX, engineering, and go-to-market teams. The goal is to align independently owned initiatives into coherent customer workflows and clear portfolio priorities.

The role entails operating at a portfolio level, connecting work across teams, identifying gaps and opportunities, and helping ensure that product investments translate into measurable customer and business impact. You will bring deep application security expertise to shape strategy in areas that lack clear ownership. This includes turning internal security capabilities and research into customer-facing products, identifying and validating emerging security use cases, and helping guide new ideas from early exploration to product-market fit.

GitLab is an open-core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. The company’s mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating human progress. The platform unites teams and organizations, breaking down barriers and redefining what's possible in software development.

## What You Will Do - Drive growth and value realization across the Security and Compliance portfolio, focusing on areas that contribute to GitLab Ultimate.

• Partner with the VP of Product for Security and Compliance to align product strategy with business objectives.
• Work closely with product managers, UX, engineering, and go-to-market teams to ensure coherent customer workflows and clear portfolio priorities.
• Bring deep application security expertise to shape strategy in areas lacking clear ownership.
• Turn internal security capabilities and research into customer-facing products.
• Identify and validate emerging security use cases.
• Guide new ideas from early exploration to product-market fit.
• Coach and review PM work on areas that materially impact portfolio outcomes.
• Use AI-native workflows to accelerate discovery, validation, and communication from concept to concrete outcomes.
• Influence initiatives such as turning internal security tools into differentiated customer-facing capabilities within GitLab’s DevSecOps platform.

• Experience in driving growth and value realization across a product portfolio.
• Strong understanding of DevSecOps principles and practices.
• Ability to work horizontally with cross-functional teams, including product managers, UX, engineering, and go-to-market teams.
• Experience in identifying and validating emerging security use cases.
• Strong coaching and mentoring skills, with the ability to elevate product decision quality across the team.
• Experience with AI-native workflows and tools, such as GitLab Duo.
• Ability to operate at a portfolio level, connecting work across teams and identifying gaps and opportunities.
• Strong communication and collaboration skills, with the ability to guide new ideas from concept to product-market fit.

• Knowledge of compliance regulations and standards, such as GDPR, HIPAA, etc.
• Experience working in an open-core software company or a similar environment.
• Familiarity with GitLab’s products and solutions, including GitLab Ultimate.

• Collaborative and dynamic work environment with a team of industry leaders.
• Professional development opportunities, including training and education in the latest technologies and practices.
• Flexible working hours and remote work options, allowing for a healthy work-life balance.
• Competitive compensation package, reflecting the company’s commitment to attracting and retaining top talent.
• Access to cutting-edge tools and technologies, including GitLab Duo and other AI-native workflows.
• Recognition and reward for outstanding performance, including opportunities for career advancement.

- tip: Highlight your experience in application security and compliance, and be prepared to provide specific examples of how you've shaped strategy in these areas.

• tip: Show a deep understanding of DevSecOps principles and practices, and be ready to discuss how you've applied these in previous roles.
• tip: Prepare to talk about your experience working with AI-native workflows and tools, such as GitLab Duo, and how you've used these to drive efficiency and innovation.
• tip: Emphasize your ability to work horizontally with cross-functional teams and to elevate product decision quality across the team.
• tip: Be prepared to discuss your approach to identifying and validating emerging security use cases, and how you've guided new ideas from concept to product-market fit.
• tip: Show enthusiasm for GitLab’s mission and values, and be prepared to discuss how you can contribute to the company’s goal of enabling everyone to contribute to and co-create software.