Key skills
RubyRuby on RailsDistributed applicationsCloud environmentsGoogle Cloud PlatformAWSSecurity engineeringAbuse detectionCompromised password detectionAutomation mindsetProactive security interestAIAgenticRailsGCPGoogle CloudGitLabSaaS
About this role
GitLab is the intelligent orchestration platform for DevSecOps, trusted by over 50 million users. The Software Security Engineer will engineer security improvements and maintain tools to detect and prevent abuse on GitLab's SaaS platforms, focusing on building prevention systems and enhancing safety mechanisms.
Responsibilities:
- Maintain core abuse prevention systems and build new abuse detection rules to identify and prevent evolving abuse patterns such as platform abuse, cryptomining, platform spam and abuse of terms of service
- Maintain and build new capabilities in our in-house abuse platform
- Improve and expand agentic AI capabilities in our abuse mitigation tools
- Collaborate with peers to deliver safety improvements for the GitLab product
- Resolve automation gaps and create efficient, automated processes
- Create and maintain documentation such as runbooks and procedures
Requirements:
- Strong software development skills with experience in Ruby/Rails
- Comfortable working in an all remote environment where results and impact matter above hours worked
- Interest in 'thinking like a hacker' and defending against attacks with an 'automation first' mindset
- Experience working on distributed applications with large codebases and deployed in cloud environments strongly preferred
- Passion/desire to proactively develop security engineering skills
- Interest in cloud native development (Google Cloud Platform (GCP) and/or AWS)
- Interest in handling trust and safety security incidents (platform abuse, cryptomining, platform spam)