GitLab

DevSecOps

Manager,SecurityIncidentResponseTeam(USA)

$150–235k United States Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Manager candidates.

The Brief

“Manager, Security Incident Response Team (USA) at GitLab. Skills: Security Incident Response, People Management, Incident Response Leadership, Technical Background, AI and Automation. Manage day-to-day team operations. Establish clear goals, performance expectations, and accountability”

What You'll Achieve.

Increase developer productivity; Improve operational efficiency; Reduce security and compliance risk; Accelerate digital transformation; Deliver quality results; Improve GitLab's security posture; Support a 'shift left' mindset

Industry & Context.

DevSecOps

Problems you'll solve

Solve complex problems; Make sound operational decisions under pressure; Prioritization under pressure; Ability to make sound operational decisions quickly; Guide the team on balancing what is urgent versus what is important

Eligibility Requirements

Availability during US West Coast business hours, Some after-hours and weekend coverage may be required, United States Citizen

What They're Looking For.

Must Have

Proven people management experience, Incident response leadership, Hands-on technical background, Customer-facing credibility, Proactive hunting and threat intelligence, AI and automation mindset, Platform familiarity, Prioritization under pressure, United States Citizen

Nice to Have

Candidates based on the West Coast are preferred, Experience responding to threats against a SaaS platform

What You'll Do.

Manage day-to-day team operations

Establish clear goals

performance expectations

Monitor progress and ensure timely delivery of quality results

Develop and coach incident responders

real-time advice on career development

Foster a culture of investigation excellence

Prioritize depth and accuracy of analysis

Proactively identify and fill talent gaps

Participate in hiring decisions

Drive engagement and retention

Recognize team member contributions

Address engagement risks early

Create an environment of open feedback and psychological safety

Cascade organizational context

Translate division and company-wide strategy into clear

actionable team goals

Keep team members informed in a timely manner

Implement and mature incident response processes

Build and improve runbooks

and team capabilities

Translate functional plans into tactical execution

Serve as an escalation point and incident commander for high-severity events

Model the standard for quality investigations

Coordinate effectively with peer SecOps teams

Resolve incidents and close defense gaps through actionable retrospective mitigations

Drive insights from alerts

and incidents to improve GitLab's security posture

Support a 'shift left' mindset

Consistently model and coach team members on GitLab's remote working best practices

async communication norms

and handbook-first culture

How You'll Work.

Team & Collaboration

Enable cross-functional collaboration; Coordinate effectively with peer SecOps teams, Legal, Customer Support, and Infrastructure; Collaborate with peer Security Operations teams; Work together in a cross-regional manner; Automation and processes to facilitate collaboration when resolving incidents, handovers, and general collaboration for project work

Communication Scope

Customer-facing credibility; Comfortable representing GitLab Security during customer escalations and high-visibility cybersecurity discussions; Async communication norms

Process & Methodology

Manage day-to-day team operations, Establish clear goals, performance expectations, and accountability, Monitor progress and ensure timely delivery of quality results, Implement and mature incident response processes, Build and improve runbooks, procedures, and team capabilities, Translate functional plans into tactical execution

Full Job Description

GitLab is the intelligent orchestration platform for DevSecOps. GitLab enables organizations to increase developer productivity, improve operational efficiency, reduce security and compliance risk, and accelerate digital transformation. More than 50 million registered users and more than 50% of the Fortune 100* trust GitLab to ship better, more secure software faster. The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier, with all team members expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact. GitLab is where careers accelerate, innovation flourishes, and every voice is valued. Our high-performance culture is driven by our values and continuous knowledge exchange, enabling our team members to reach their full potential while collaborating with industry leaders to solve complex problems. Co-create the future with us as we build technology that transforms how the world develops software. *Fortune 500® is a registered trademark of Fortune Media IP Limited, used under license. Claim based on GitLab data. Fortune 100 refers to the top 20% ranked companies in the 2025 Fortune 500 list, published in June 2025. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of GitLab. An Overview of This Role We’re looking for a manager to lead the GitLab security incident response team (SIRT) in the Americas region. GitLab SIRT manages and investigates cybersecurity incidents across all GitLab operating environments and operates in a tierless SOC model. The team is responsible for threat hunting, alert triage, security investigations, deep-dive DFIR, and large-scale incident response, among other responsibilities. In this role, you will manage the day-to-day work of a team of incident response engineers - setting clear performance expectations, coaching their growth, and holding the team accountable for delivering

Free ATS check

Applying for this Manager, Security Incident Response Team (USA) role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 38 detected · ranked by frequency

Security Incident Response ×6

Threat hunting ×4

Alert triage ×4

Security investigations ×4

DFIR ×4

Incident response ×4

Cloud forensics ×4

Log analysis ×3

Threat intelligence ×3

AI/LLMs for incident response workflows ×3

Automate repetitive processes ×3

People Management ×2

Incident Response Leadership ×2

Technical Background ×2

AI and Automation ×2

SIEM tools ×2

Splunk ×2

Elastic ×2

GCP ×2

AWS ×2

GitLab ×2

DevSecOps

SaaS platforms

Operational decisions

Defensive improvements

Remote-first practices

Async communication norms

Handbook-first culture

Customer escalations

High-visibility cybersecurity discussions

Supply chain threats

BEHAVIOURAL

Coaching growthAccountabilitySound operational decisions under pressureOpen feedbackPsychological safetyCross-functional collaborationTeam member contributionsEngagement risksCareer adviceFoster a culture of investigation excellence

Role Details

Level Manager

Work Mode Remote

Category security-operations

Salary Band 150k-200k

AI-Extracted Insights

Domain Areas

devsecopssaas-platformssupply-chain-threats-targeting-saas-platformscybersecurity-incidentscloud-forensics

How to Apply on Greenhouse

Create a Greenhouse profile before applying — it saves time across multiple applications.
Upload your resume as a PDF; the parser handles it better than Word.
Answer all knockout questions carefully — wrong answers auto-reject before a human sees you.
Enable email notifications to track application status in real time.

ANONYMOUS · UNFILTERED

What do employees actually say about GitLab?

Real rants from real employees. Read before you apply.

Read Company Rants →