Group Manager, Product - Software Supply Chain Security

An overview of this role

GitLab is an open core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating the rate of human progress. This mission is integral to our culture, influencing how we hire, build products, and lead our industry. We make this possible at GitLab by running our operations on our product and staying aligned with our values. Learn more about Life at GitLab.

An overview of this role

As a Group Manager, Product Management for our Software Supply Chain Security stage, you will lead a team of  high-performing team of Product Managers focused on enhancing software supply chain security. This role will be instrumental in building and implementing innovative solutions to protect the software development lifecycle and the underlying authentication and authorization layers from vulnerabilities and threats. You will shape the vision and strategy for our Supply Chain Security products, working cross-functionally to deliver solutions that protect organizations from increasingly sophisticated supply chain attacks.

In this role, you'll balance strategic leadership with hands-on product management, guiding your team to build features that both secure developer workflows and meet enterprise security requirements. You'll report to the Director of Product for Security and work closely with Engineering, UX, and Security Research teams to ensure GitLab remains a leader in DevSecOps. Your impact will be felt across thousands of organizations that rely on GitLab to secure their software supply chains, making this role critical to both our customers' security posture and GitLab's continued growth in the security market.

Here are some examples of projects you’ll be working on:

• SLSA L3 Support 

• Token Consolidation

• Fine Grained Token Permissions

• Custom Permissions and Roles

• Service to Service Authentication

• Compliance Frameworks

• Secrets Management

What You’ll Do  

• Lead and coach a globally-distributed, sustainable, and high-performing team of Product Managers focused on Supply Chain Security, providing career development and ensuring alignment with GitLab's overall product strategy

• Drive prioritization decisions based on customer feedback, market research, and security trends to deliver maximum value

• Foster a collaborative environment with Engineering, UX, and Security Research to build innovative solutions to complex supply chain security challenges

• Build relationships with key customers to understand their supply chain security challenges and incorporate their feedback into product plans

• Identify emerging software supply chain threats in the industry and via in-house research, and adjust strategy and prioritization in a timely manner

• Stay up-to-date with industry best practices and standards in the area of supply chain security, and grow the skills and capabilities of your teams accordingly

• Measure and communicate the impact of Supply Chain Security features on customer security posture and business outcomes

• Partner closely with cross-functional counterparts in Engineering, UX, and Quality to enable quad planning team collaboration within product groups in your purview 

• Develop and execute process enhancements while strategically influencing leadership decisions across multiple organizational levels to improve operations of your area

What You’ll Bring 

• 5+ years of product management experience, with at least 2 years leading product teams

• Deep understanding of software development lifecycles and modern CI/CD practices

• Experience with security products, particularly in vulnerability management, container security, or software composition analysis

• Experience working on open-source or enterprise-grade Software Supply Chain Security (SSCS) products, as a manager/leader

• Strong technical background with the ability to understand complex security concepts and communicate them clearly to diverse audiences

• Track record of successfully launching products that drive business impact and customer value

• Experience working in a highly-collaborative, cross-functional environment

• Excellent written and verbal communication skills, with the ability to translate complex security concepts into clear product requirements

• Data-driven approach to decision making, with experience using metrics to guide product strategy

• Comfort with remote work and asynchronous communication

• Passion for open source and developer-focused products

About the team

The Software Supply Chain Security team is tasked with building a strong end-to-end software supply chain security story for Gitlab users, with building compliance solutions and improving authentication and authorization as well as pipeline security across the whole Gitlab product.

GitLab’s approach to supply chain security is unique as you have the ability within your own organization as well as through partnerships across all stages of GitLab to influence and improve supply chain security across the whole software lifecycle, from ideation and early prototypes to deployed production system.

In this role, you’ll be leading a team of four product managers that include Intermediate, Senior, and Principal level people. You will report to a Director of Product Management in the Security and Compliance Portfolio. 

How GitLab will support you

• Benefits to support your health, finances, and well-being

• All remote, asynchronous work environment

• Flexible Paid Time Off 

• Team Member Resource Groups

• Equity Compensation & Employee Stock Purchase Plan

• Growth and Development Fund

• Parental leave 

• Home office support