Principal Product Security Architect

Job Description

GitLab is seeking a Principal Product Security Architect to join their Security Platforms & Architecture Team. This role is responsible for identifying, assessing, and reducing systemic risks associated with the GitLab product and architecture. The Principal Product Security Architect will lead the development and execution of the security strategy, roadmap, and standards to address complex security challenges across the GitLab ecosystem, with a key focus on software supply chain security.What this role involves:

• Leading the development and execution of the security strategy and roadmap.
• Developing expert-level knowledge of GitLab’s platform architecture.
• Creating remediation plans for key security risks.
• Leading the security architecture and design work for strategic initiatives.
• Conducting security architecture reviews.
• Driving continuous improvement of security architecture practices.
• Developing and communicating security standards.
• Cultivating strong relationships across Product and Engineering.
• Anticipating emerging security challenges and proposing proactive architectural solutions.
• Providing expert guidance and mentorship to security engineers.
• Providing guidance and support to GitLab Dedicated for US Government teams.

What candidate should bring:

• Proven experience analyzing and reducing software supply chain security risk.
• Demonstrated ability to translate complex security concepts into clear, actionable recommendations.
• Proven track record of driving complex security initiatives through cross-functional collaboration and influence.
• Strong background in application security and product security.
• Deep expertise in risk assessment, secure system design, and threat modeling.
• Extensive experience securing modern application architectures.
• Strong understanding of DevSecOps practices and secure software delivery.

What GitLab offers:

• All remote, asynchronous work environment.
• Flexible Paid Time Off.
• Equity Compensation & Employee Stock Purchase Plan.
• Growth and Development Fund.
• Parental leave.
• Home office support.