The Abuse Investigation Team focuses on scenarios where GitLab hosted resources negatively impact third parties on the Internet. The dynamic nature of GitLab technologies and the complexity of issues result in a potent combination of challenges that require intelligence, flexibility, tenacity, and creativity to be successful.
As a member of the security team at GitLab, you will be working towards raising the bar on security. We will achieve that by working and collaborating with cross-functional teams to provide guidance on security best practices.
The Security Team is responsible for leading and implementing the various initiatives that relate to improving GitLab's security.
GitLab Inc. is a company based on the GitLab open-source project. GitLab is a community project to which over 1,000 people worldwide have contributed. We are an active participant in this community, trying to serve its needs and lead by example. We have one vision: everyone can contribute to all digital content, and our mission is to change all creative work from read-only to read-write so that everyone can contribute.
We value results, transparency, sharing, freedom, efficiency, frugality, collaboration, directness, kindness, diversity, boring solutions, and quirkiness. If these values match your personality, work ethic, and personal goals, we encourage you to visit our primer to learn more. Open source is our culture, our way of life, our story, and what makes us truly unique.
Top 10 reasons to work for GitLab:
Work with helpful, kind, motivated, and talented people.
Work remote so you have no commute and are free to travel and move.
Have flexible work hours so you are there for other people and free to plan the day how you like.
Everyone works remote, but you don't feel remote. We don't have a head office, so you're not in a satellite office.
Work on open source software so you can interact with a large community and can show your work.
Work on a product you use every day: we drink our own wine.
Work on a product used by lots of people that care about what you do.
As a company we contribute more than we take, most of our work is released as the open source GitLab CE.
Focused on results, not on long hours, so that you can have a life and don't burn out.
Open internal processes: know what you're getting in to and be assured we're thoughtful and effective.
Work remotely from anywhere in the world. Curious to see what that looks like? Check out our remote manifesto.
Handle tickets/requests escalated to abuse.
Handle DMCA, phishing, malware, botnet, intrusion attempts, DoS, port scanning, spam, spam website, PII and web-crawling abuse reports to point of mitigation of abuse.
Verify proper classification of incoming abuse reports.
Execute messaging to customers on best practices.
Monitoring email, forums, and other communication channels for abuse, and responding accordingly.
Assist with recruiting activities and administrative work.
Making sure internal knowledge reference pages are updated.
You have a passion for security and open source
You are a team player, and enjoy collaborating with cross-functional teams
You are a great communicator
You employ a flexible and constructive approach when solving problems
You share our values, and work in accordance with those values
Applicants for this position can expect the hiring process to follow the order below. Please keep in mind that applicants can be declined from the position at any stage of the process. To learn more about someone who may be conducting the interview, find her/his job title on our team page.
Qualified applicants receive a short questionnaire from our Recruiting team
Selected candidates will be invited to schedule a 30 minute screening call with our Recruiting team
Next, candidates will be invited to schedule an interview with Security Engineer
Candidates will then be invited to schedule an interview with Director of Security
Candidates will then be invited to schedule an additional interview with VP of Engineering
Finally, candidates may be asked to interview with the CEO
Successful candidates will subsequently be made an offer via email