GitLab is an open core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating the rate of human progress. This mission is integral to our culture, influencing how we hire, build products, and lead our industry. We make this possible at GitLab by running our operations on our product and staying aligned with our values. Learn more about Life at GitLab.
As a Group Manager, Product Management for our Software Supply Chain Security stage, you will lead a team of high-performing team of Product Managers focused on enhancing software supply chain security. This role will be instrumental in building and implementing innovative solutions to protect the software development lifecycle and the underlying authentication and authorization layers from vulnerabilities and threats. You will shape the vision and strategy for our Supply Chain Security products, working cross-functionally to deliver solutions that protect organizations from increasingly sophisticated supply chain attacks.
In this role, you'll balance strategic leadership with hands-on product management, guiding your team to build features that both secure developer workflows and meet enterprise security requirements. You'll report to the Director of Product for Security and work closely with Engineering, UX, and Security Research teams to ensure GitLab remains a leader in DevSecOps. Your impact will be felt across thousands of organizations that rely on GitLab to secure their software supply chains, making this role critical to both our customers' security posture and GitLab's continued growth in the security market.
Here are some examples of projects you’ll be working on:
- SLSA L3 Support
- Token Consolidation
- Fine Grained Token Permissions
- Custom Permissions and Roles
- Service to Service Authentication
- Compliance Frameworks
- Secrets Management
What You’ll Do
- Lead and coach a globally-distributed, sustainable, and high-performing team of Product Managers focused on Supply Chain Security, providing career development and ensuring alignment with GitLab's overall product strategy
- Drive prioritization decisions based on customer feedback, market research, and security trends to deliver maximum value
- Foster a collaborative environment with Engineering, UX, and Security Research to build innovative solutions to complex supply chain security challenges
- Build relationships with key customers to understand their supply chain security challenges and incorporate their feedback into product plans
- Identify emerging software supply chain threats in the industry and via in-house research, and adjust strategy and prioritization in a timely manner
- Stay up-to-date with industry best practices and standards in the area of supply chain security, and grow the skills and capabilities of your teams accordingly
- Measure and communicate the impact of Supply Chain Security features on customer security posture and business outcomes
- Partner closely with cross-functional counterparts in Engineering, UX, and Quality to enable quad planning team collaboration within product groups in your purview
- Develop and execute process enhancements while strategically influencing leadership decisions across multiple organizational levels to improve operations of your area
What You’ll Bring
- 5+ years of product management experience, with at least 2 years leading product teams
- Deep understanding of software development lifecycles and modern CI/CD practices
- Experience with security products, particularly in vulnerability management, container security, or software composition analysis
- Experience working on open-source or enterprise-grade Software Supply Chain Security (SSCS) products, as a manager/leader
- Strong technical background with the ability to understand complex security concepts and communicate them clearly to diverse audiences
- Track record of successfully launching products that drive business impact and customer value
- Experience working in a highly-collaborative, cross-functional environment
- Excellent written and verbal communication skills, with the ability to translate complex security concepts into clear product requirements
- Data-driven approach to decision making, with experience using metrics to guide product strategy
- Comfort with remote work and asynchronous communication
- Passion for open source and developer-focused products
About the team
The Software Supply Chain Security team is tasked with building a strong end-to-end software supply chain security story for Gitlab users, with building compliance solutions and improving authentication and authorization as well as pipeline security across the whole Gitlab product.
GitLab’s approach to supply chain security is unique as you have the ability within your own organization as well as through partnerships across all stages of GitLab to influence and improve supply chain security across the whole software lifecycle, from ideation and early prototypes to deployed production system.
In this role, you’ll be leading a team of four product managers that include Intermediate, Senior, and Principal level people. You will report to a Director of Product Management in the Security and Compliance Portfolio.
How GitLab will support you
- Benefits to support your health, finances, and well-being
- All remote, asynchronous work environment
- Flexible Paid Time Off
- Team Member Resource Groups
- Equity Compensation & Employee Stock Purchase Plan
- Growth and Development Fund
- Parental leave
- Home office support
Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process.
Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us.
GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.
