VP of Product Security

GitlabGitlab·Remote(Remote, US)
Product
Adjust

WFA Digital Insight

As the demand for product security specialists grew 25% in 2025, Gitlab's VP of Product Security role stands out in the remote job market. With over 50 million registered users, Gitlab's intelligent orchestration platform requires a unique blend of product engineering and security expertise. Candidates should be prepared to showcase their experience in building and shipping secure products at scale, with a focus on AI-powered DevSecOps. Before applying, consider the importance of collaboration with cross-functional teams and the ability to drive security as a native property of the product.

Job Description

About the Role

The VP of Product Security at Gitlab will play a critical role in defining how security is built into the company's AI-powered DevSecOps platform. As a product engineering leadership role, this position requires a deep understanding of the speed at which product teams move and the tradeoffs inherent in shipping features at scale. The successful candidate will have a strong background in building and shipping product at a high-growth AI or SaaS company, with a focus on making security a native property of the product.

The VP of Product Security will lead a global, multi-disciplinary organization and will be responsible for setting the long-term strategy and operating model for Product Security across GitLab.com, GitLab Dedicated, and self-managed offerings. This role will partner closely with senior leaders across Engineering, Product, AI, and Security to shape outcomes such as stronger security architecture, scalable security services, and predictable security processes that support fast product delivery.

Gitlab's high-performance culture is driven by its values and continuous knowledge exchange, enabling team members to reach their full potential while collaborating with industry leaders to solve complex problems. As a leader in the Product Security organization, the VP will be expected to embody these values and drive a culture of security and innovation within the team.

What You Will Do

  • Set the long-term strategy and operating model for Product Security across GitLab.com, GitLab Dedicated, and self-managed offerings
  • Lead a global, multi-disciplinary organization spanning Application Security, Product Security Engineering, Security Architecture and Platforms, Vulnerability Management, Product Security Incident Response (PSIRT), and Infrastructure, Cloud, and Data Security
  • Define security strategy for AI-powered features and agentic platform capabilities, including prompt injection defenses, model and data protections, and governance for AI features
  • Partner with senior leaders across Engineering, Product, AI, and Security to shape outcomes such as stronger security architecture, scalable security services, and predictable security processes
  • Build core security platform capabilities such as authentication and authorization services, secrets management, permission models, and audit instrumentation
  • Develop and implement security policies and procedures to ensure compliance with regulatory requirements
  • Collaborate with the Chief Information Security Officer to drive security initiatives across the company
  • Manage and mentor a team of security professionals to ensure the development of skills and expertise
  • Develop and manage budgets, forecasts, and resource allocation plans for the Product Security organization

What We Are Looking For

  • 10+ years of experience in product security, with a focus on AI-powered DevSecOps
  • 5+ years of experience in a leadership role, with a proven track record of building and managing high-performing teams
  • Strong background in product engineering, with experience in building and shipping secure products at scale
  • Experience with cloud-based security platforms and technologies, such as AWS or Azure
  • Strong understanding of security architecture, threat modeling, and risk management
  • Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams
  • Strong analytical and problem-solving skills, with the ability to drive security initiatives and make data-driven decisions
  • Experience with security compliance and regulatory requirements, such as SOC 2 or ISO 27001

Nice to Have

  • Experience with AI-powered security tools and technologies
  • Knowledge of programming languages, such as Python or Java
  • Experience with containerization and orchestration technologies, such as Docker or Kubernetes
  • Certification in security, such as CISSP or CISM
  • Experience with agile development methodologies, such as Scrum or Kanban

Benefits and Perks

  • Competitive salary and equity package
  • Comprehensive health, dental, and vision insurance
  • Flexible PTO policy and remote work options
  • Professional development opportunities, including training and conference attendance
  • Access to cutting-edge security tools and technologies
  • Collaborative and dynamic work environment with a team of industry leaders

How to Stand Out

  • Develop a strong understanding of AI-powered DevSecOps and its security implications
  • Showcase your experience in building and shipping secure products at scale, with a focus on collaboration with cross-functional teams
  • Be prepared to discuss your approach to security architecture, threat modeling, and risk management
  • Highlight your experience with cloud-based security platforms and technologies, such as AWS or Azure
  • Consider obtaining certification in security, such as CISSP or CISM, to demonstrate your expertise
  • Prepare to discuss your experience with agile development methodologies, such as Scrum or Kanban, and how you have applied them in a security context

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.