Senior Manager, Customer Trust & Security Governance

About the Role

As a key member of the security team, the Senior Manager will work closely with various stakeholders, including Sales, Legal, Product, and Procurement, to review and negotiate security-related terms in revenue and vendor agreements. The goal is to build durable processes, improve documentation, and leverage automation and AI to streamline high-value work.

In the first year, the Senior Manager will focus on maturing the security governance program, improving how security is measured and communicated internally, and shaping how Gitlab addresses customer security needs at scale.

What You Will Do

• Lead the customer trust function for contract reviews, security questionnaires, and related customer and vendor security inquiries
• Set direction, priorities, and operating practices to help the team respond effectively while reducing friction in the sales cycle
• Partner with Legal, Sales, Product, and Procurement to review and negotiate security-related terms in revenue and vendor agreements
• Manage escalations for complex security questionnaires, risk assessments, and contract issues, guiding teams toward practical solutions
• Develop and improve security templates, playbooks, fallback positions, and training materials that support faster, more consistent negotiations
• Build and maintain Gitlab's library of security policies and collaborate with security subject matter experts to mature security standards
• Drive the security metrics and reporting program, including preparation and facilitation for quarterly business reviews
• Oversee an engaging security awareness program and use automation and AI tooling to improve workflows

What We Are Looking For

• 8+ years of experience in security governance, compliance, and risk management
• Proven track record of building and managing high-performing teams
• Strong understanding of security standards, regulations, and best practices
• Excellent communication and negotiation skills
• Experience with contract review and negotiation
• Knowledge of DevSecOps and AI-powered security solutions
• Ability to work in a fast-paced, dynamic environment
• Strong analytical and problem-solving skills

Nice to Have

• Experience with automation and AI tooling
• Certification in security governance or a related field
• Knowledge of cloud security and compliance

Benefits and Perks

• Competitive compensation package
• Equity in a growing company
• Flexible PTO policy
• Comprehensive health benefits
• Remote work stipend
• Professional development opportunities
• Access to cutting-edge technology and tools

• Ensure your resume and cover letter highlight your experience in security governance, compliance, and risk management.
• Develop a portfolio that showcases your ability to build and manage high-performing teams and drive security metrics and reporting programs.
• Prepare to discuss how you have leveraged automation and AI tooling to improve security workflows in previous roles.
• Research Gitlab's DevSecOps platform and be ready to discuss how your skills align with the company's security goals.
• Be prepared to negotiate your salary based on industry standards and your experience.
• Look for red flags such as lack of clear communication about the role, unrealistic expectations, or unclear growth opportunities.