Senior Backend Engineer, Verify: Pipeline Security


2 months ago


An overview of this role

As our new Senior Backend Engineer, you will help us maintain and enhance features in the areas of Secrets Management and Build Artifacts, and research support for new offerings and architectures. You’ll be able to contribute towards increasing the maturity of our features for build artifacts and secrets management.

About the team

The Pipeline Security group is involved with diverse projects and tasks that include visibility into pipeline health, controlling the behavior of jobs and pipelines, and managing sensitive pipeline information for GitLab CI. Pipeline Security engineering regularly interfaces with broader development teams in supporting initiatives to ensure software supply chain security.

As part of the Verify stage, you will work with us to develop a best-in-class CI platform, developing new features, improving system performance, or resolving bugs and technical debt. Thanks to our Transparency value, you can see what we are working on on our Team page. You can even see our one-year vision and listen to some of our meetings.

Some examples of our work:

What you’ll do

  • Develop features and improvements to GitLab CI in a secure, well-tested, and performant way.
  • Work closely with other Engineers and stakeholders on systems design of our features, following our architectural design workflow process.
  • Collaborate with Product Management and other stakeholders within Engineering (Frontend, Product Design, etc.) to maintain a high bar for quality in a fast-paced, iterative environment.
  • Advocate for improvements to product quality, security, and performance.
  • Craft code that meets our internal standards for style, maintainability, and best practices for a high-scale web environment. Maintain and advocate for these standards through code review.
  • Recognize impediments to our efficiency as a team (“technical debt”), propose and implement solutions.
  • Ship small features and improvements with minimal guidance and support from other team members. Collaborate with the team on larger projects.
  • Work with your Engineering Manager and Product Manager to assess technical feasibility and discuss how to iterate on complex problems. This might involve working on proof-of-concept proposals to help guide technical discussions.
  • Take ownership of what we build, focusing on stability and availability.

What you’ll bring

  • Professional experience with Ruby on Rails.
  • Experience working as a Tech Lead.
  • Familiarity with designing secure backend solutions using encryption to manage secrets and tokens. (Experience with integrating or using solutions like HashiCorp Vault is a bonus).
  • Experience working with a platform or complex application (Large scale is a bonus).
  • Familiarity building and deploying software with CI/CD or other internal tooling.
  • Familiarity with distributed, scalable and reliable systems.
  • A user of modern DevOps platforms. (GitLab is a bonus.)
  • Proficiency in the English language, both written and verbal, sufficient for success in a remote and largely asynchronous work environment.
  • Experience working in a highly agile, iterative software development process.
  • Self-motivated and self-managing, with excellent organizational skills.
  • Demonstrated ability to work closely with other parts of the organization.
  • Share our values, and work in accordance with those values.

How GitLab will support you

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.