▷ [Urgent] Associate Security Detection Engineer, Signals Engineering

GitLab is an open-core software company that develops the most comprehensive used by more than 100 000 organizations Our is to enable everyone to contribute to and co-create the software that powers our world When everyone can contribute consumers become contributors significantly accelerating human progress Our platform unites teams and organizations breaking down barriers and redefining what s possible in software development Thanks to products like and customers get AI benefits at every stage of the SDLC The same principles built into our products are reflected in how our team works we embrace AI as a core productivity multiplier with all team members expected to incorporate AI into their daily workflows to drive efficiency innovation and impact GitLab is where careers accelerate innovation flourishes and every voice is valued Our high-performance culture is driven by our and continuous knowledge exchange enabling our team members to reach their full potential while collaborating with industry leaders to solve complex problems as we build technology that transforms how the world develops software An overview of this role You ll join the growing team at GitLab responsible for building and maintaining a best-in-class signal development and detection engineering program If you re passionate about writing threat detections hunting for potentially malicious patterns of behavior and closing detection gaps this team is for you We focus on writing maintaining and testing our library of threat detections with an emphasis on automation LLM-aided efficiencies and behavioral analysis over atomic indicators If MITRE ATT CK The Pyramid of Pain or Summiting the Pyramid Risk Based Alerting and writing SIEM queries excite you we d love to talk Bonus points if you have experience writing SaaS application detections double bonus if that application is GitLab This role is well-suited for someone with SOC detection engineering or incident response experience or someone responsible for maintaining GitLab with an interest in moving into security Find out more about the Signals Engineering team and some of our publications What you ll do Identify MITRE ATT CK and top threat actor detection gaps then write behavioral detections to close them Use SIEM or data lake platforms like Splunk or Elastic to write and troubleshoot threat detections Collaborate with peer GitLab teams to identify and close security observability improvement opportunities Partner with incident response red team and threat intelligence teams to cross-functionally improve GitLab s detection program and coverage Use maintain and build new Detection-as-Code DaC AI and process efficiency automations for the signals engineering program What you ll bring An understanding of the GitLab application bonus points if you re comfortable detecting and hunting for attacks against GitLab or if you ve maintained GitLab yourself SOC incident response or detection engineering experience SIEM or security data lake detection and query experience A proactive approach to detecting potentially malicious patterns and collaborating with incident response to complete incident RCAs and identify new detection opportunities An interest in cloud technologies such as GKE AWS GCP and other cloud native services PaaS and SaaS An interest in learning how AI can be used for detection engineering An interest in learning advanced detection capabilities such as Detection-as-Code signal vs detection development risk-based alerting and behavior analytics About the team is a new team within the Security Division at GitLab focused on detecting suspicious and malicious events across GitLab and our SaaS operating environments The team works closely with peer teams in Security Operations to simulate attack patterns respond to incidents and consume threat intelligence We also collaborate with engineering teams across GitLab to improve security observability capabilities for the GitLab product How GitLab will support you support Please note that we welcome interest from candidates with varying levels of experience many successful candidates do not meet every single requirement Additionally studies have shown that people from are less likely to apply to a job unless they meet every single qualification If you re excited about this role please apply and allow our recruiters to assess your application Country Hiring Guidelines GitLab hires new team members in countries around the world All of our roles are remote however some roles may carry specific location-based eligibility requirements Our Talent Acquisition team can help answer any questions about location after starting the recruiting process Privacy Policy Please review our Your privacy is important to us GitLab is proud to be an equal opportunity workplace and is an affirmative action employer GitLab s policies and practices relating to recruitment employment career development and advancement promotion and retirement are based solely on merit regardless of race color religion ancestry sex including pregnancy lactation sexual orientation gender identity or gender expression national origin age citizenship marital status mental or physical disability genetic information including family medical history discharge status from the military protected veteran status which includes disabled veterans recently separated veterans active duty wartime or campaign badge veterans and Armed Forces service medal veterans or any other basis protected by law GitLab will not tolerate discrimination or harassment based on any of these characteristics See also and If you have a disability or special need that requires please let us know during the