Key skills
Ruby on RailsDistributed applicationsCloud environmentsSecurity engineeringGoogle Cloud PlatformAWSAbuse detectionTrust and safety security incidentsAutomation mindsetRubyAIAgenticRailsGCPGoogle CloudGitLab
About this role
GitLab is the intelligent orchestration platform for DevSecOps, enabling organizations to enhance productivity and security. The Software Security Engineer will be responsible for engineering security improvements, building tools to detect abuse, and maintaining core prevention systems within the Trust and Safety team.
Responsibilities:
- Maintain core abuse prevention systems and build new abuse detection rules to identify and prevent evolving abuse patterns such as platform abuse, cryptomining, platform spam and abuse of terms of service
- Maintain and build new capabilities in our in-house abuse platform
- Improve and expand agentic AI capabilities in our abuse mitigation tools
- Collaborate with peers to deliver safety improvements for the GitLab product
- Resolve automation gaps and create efficient, automated processes
- Create and maintain documentation such as runbooks and procedures
Requirements:
- Strong software development skills with experience in Ruby/Rails
- Experience working on distributed applications with large codebases and deployed in cloud environments strongly preferred
- Passion/desire to proactively develop security engineering skills
- Comfortable working in an all remote environment where results and impact matter above hours worked
- Interest in 'thinking like a hacker' and defending against attacks with an 'automation first' mindset
- Interest in cloud native development (Google Cloud Platform (GCP) and/or AWS)
- Interest in handling trust and safety security incidents (platform abuse, cryptomining, platform spam)