Senior Product Manager - Software Supply Chain Security: Authentication & Identity

As a Product Manager for Authentication & Identity at GitLab, you'll own the strategic roadmap for both human and machine authentication across our platform. You'll be responsible for driving the product vision that transforms GitLab from a monolithic authentication system to the modern GitLab Adaptive Trust Environment (GATE) - one of the most ambitious authentication architecture redesigns in the enterprise software space.

This role sits at the intersection of enterprise security, developer experience, and massive scale engineering challenges. You'll define the product strategy for authentication systems that serve millions of users on GitLab.com while supporting diverse deployment models from air-gapped environments to multi-cloud enterprise installations. Your decisions will directly impact how GitLab's authentication infrastructure scales to support our Cells architecture and enables true multi-tenant organizations.

You'll work closely with two specialized engineering teams - Human Authentication & Identity and Machine-to-Machine Authentication & Tokens - to deliver a unified authentication experience that balances security, usability, and performance. This includes leading the product strategy for consolidating 10+ token types into a unified system, implementing enterprise-grade identity protocols, and enabling advanced features like Workload Identity Federation.

Your work will be instrumental in reducing GitLab's authentication-related security incidents while enabling new business opportunities through improved enterprise customer onboarding and developer productivity.

Own the end-to-end product strategy for GitLab's authentication and identity systems, covering both human users and machine-to-machine authentication

Define the product roadmap for the GitLab Adaptive Trust Environment (GATE), including Identity and Access Management (IAM) Service, GitLab STS (Secure Token Service), and Auth Proxy components

Drive product decisions that balance security requirements, enterprise customer needs, developer experience, and technical feasibility across diverse deployment models

Collaborate with Security, Engineering, and Customer Success teams to translate complex technical architecture into clear business value propositions

Lead product strategy for enterprise identity protocols (SAML, LDAP, OIDC) that must scale to millions of authentication requests daily

Define requirements for organization-scoped identity features that enable true multi-tenancy within GitLab's Cells architecture

Drive the product vision for session management migration from GitLab Rails to distributed authentication services

Define the product strategy for consolidating GitLab's 10+ token types into a unified, secure token management system

Lead the product roadmap for GitLab STS (Secure Token Service) and advanced token security features like DPoP (Demonstration of Proof-of-Possession)

Drive the vision for Workload Identity Federation, enabling external identity providers to integrate securely with GitLab

Own the product strategy for service accounts, GitLab Runner Identity, and mTLS infrastructure

Partner with Engineering Managers to balance technical debt reduction with new feature development

Collaborate with Customer Success and Sales teams to understand enterprise customer authentication pain points and requirements

Work closely with Security teams to ensure product decisions align with zero-trust principles and threat modeling

5+ years of product management experience, preferably with enterprise software or developer tools

Proven track record of managing complex technical products with multiple stakeholder groups

Experience working with both B2B enterprise customers and developer-focused user bases

Strong analytical skills and experience using data to inform product decisions

Deep understanding of enterprise authentication protocols: SAML, LDAP, OIDC, OAuth

Familiarity with modern authentication patterns: zero-trust, context-aware authentication, token-based security

Knowledge of distributed systems challenges, including performance, scalability, and reliability concerns

Experience with enterprise customer onboarding and identity integration challenges

Understanding of developer workflows and how authentication impacts developer productivity

Knowledge of CI/CD systems and machine-to-machine authentication patterns

Familiarity with multi-tenant software architecture and organization boundary management

Proven ability to translate complex technical concepts into clear business value propositions

Experience managing product roadmaps through major architectural transitions

Strong stakeholder management skills across engineering, security, sales, and customer success teams

Excellent written and verbal communication skills for technical and non-technical audiences

The Authentication & Identity product area spans two specialized engineering teams within GitLab's Software Supply Chain Security stage: Human Authentication & Identity and Machine-to-Machine Authentication & Tokens. This structure was specifically designed to address the complexity of GitLab's authentication challenges while enabling focused expertise in each domain.

You'll work with world-class engineers who are tackling some of the most challenging problems in distributed authentication systems: global authentication consistency, multi-tenant security isolation, zero-downtime migrations of critical infrastructure, and the performance requirements of serving authentication requests at GitLab.com scale.

Your product strategy will directly impact millions of users across GitLab.com, thousands of enterprise customers with complex identity requirements, and countless developers who depend on secure, frictionless authentication in their daily workflows.

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.

Remote-Global

The base salary range for this role’s listed level is currently for residents of listed locations only. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, and alignment with market data. See more information on our benefits and equity . Sales roles are also eligible for incentive pay targeted at up to 100% of the offered base salary.

California/Colorado/Hawaii/New Jersey/New York/Washington/DC/Illinois/Minnesota pay range

As a Product Manager for Authentication & Identity at GitLab, you'll own the strategic roadmap for both human and machine authentication across our platform. You'll be responsible for driving the product vision that transforms GitLab from a monolithic authentication system to the modern GitLab Adaptive Trust Environment (GATE) - one of the most ambitious authentication architecture redesigns in the enterprise software space.

This role sits at the intersection of enterprise security, developer experience, and massive scale engineering challenges. You'll define the product strategy for authentication systems that serve millions of users on GitLab.com while supporting diverse deployment models from air-gapped environments to multi-cloud enterprise installations. Your decisions will directly impact how GitLab's authentication infrastructure scales to support our Cells architecture and enables true multi-tenant organizations.

You'll work closely with two specialized engineering teams - Human Authentication & Identity and Machine-to-Machine Authentication & Tokens - to deliver a unified authentication experience that balances security, usability, and performance. This includes leading the product strategy for consolidating 10+ token types into a unified system, implementing enterprise-grade identity protocols, and enabling advanced features like Workload Identity Federation.

Your work will be instrumental in reducing GitLab's authentication-related security incidents while enabling new business opportunities through improved enterprise customer onboarding and developer productivity.

Own the end-to-end product strategy for GitLab's authentication and identity systems, covering both human users and machine-to-machine authentication

Define the product roadmap for the GitLab Adaptive Trust Environment (GATE), including Identity and Access Management (IAM) Service, GitLab STS (Secure Token Service), and Auth Proxy components

Drive product decisions that balance security requirements, enterprise customer needs, developer experience, and technical feasibility across diverse deployment models

Collaborate with Security, Engineering, and Customer Success teams to translate complex technical architecture into clear business value propositions

Lead product strategy for enterprise identity protocols (SAML, LDAP, OIDC) that must scale to millions of authentication requests daily

Define requirements for organization-scoped identity features that enable true multi-tenancy within GitLab's Cells architecture

Drive the product vision for session management migration from GitLab Rails to distributed authentication services

Define the product strategy for consolidating GitLab's 10+ token types into a unified, secure token management system

Lead the product roadmap for GitLab STS (Secure Token Service) and advanced token security features like DPoP (Demonstration of Proof-of-Possession)

Drive the vision for Workload Identity Federation, enabling external identity providers to integrate securely with GitLab

Own the product strategy for service accounts, GitLab Runner Identity, and mTLS infrastructure

Partner with Engineering Managers to balance technical debt reduction with new feature development

Collaborate with Customer Success and Sales teams to understand enterprise customer authentication pain points and requirements

Work closely with Security teams to ensure product decisions align with zero-trust principles and threat modeling

5+ years of product management experience, preferably with enterprise software or developer tools

Proven track record of managing complex technical products with multiple stakeholder groups

Experience working with both B2B enterprise customers and developer-focused user bases

Strong analytical skills and experience using data to inform product decisions

Deep understanding of enterprise authentication protocols: SAML, LDAP, OIDC, OAuth

Familiarity with modern authentication patterns: zero-trust, context-aware authentication, token-based security

Knowledge of distributed systems challenges, including performance, scalability, and reliability concerns

Experience with enterprise customer onboarding and identity integration challenges

Understanding of developer workflows and how authentication impacts developer productivity

Knowledge of CI/CD systems and machine-to-machine authentication patterns

Familiarity with multi-tenant software architecture and organization boundary management

Proven ability to translate complex technical concepts into clear business value propositions

Experience managing product roadmaps through major architectural transitions

Strong stakeholder management skills across engineering, security, sales, and customer success teams

Excellent written and verbal communication skills for technical and non-technical audiences

The Authentication & Identity product area spans two specialized engineering teams within GitLab's Software Supply Chain Security stage: Human Authentication & Identity and Machine-to-Machine Authentication & Tokens. This structure was specifically designed to address the complexity of GitLab's authentication challenges while enabling focused expertise in each domain.

You'll work with world-class engineers who are tackling some of the most challenging problems in distributed authentication systems: global authentication consistency, multi-tenant security isolation, zero-downtime migrations of critical infrastructure, and the performance requirements of serving authentication requests at GitLab.com scale.

Your product strategy will directly impact millions of users across GitLab.com, thousands of enterprise customers with complex identity requirements, and countless developers who depend on secure, frictionless authentication in their daily workflows.

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.

Remote-Global

The base salary range for this role’s listed level is currently for residents of listed locations only. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, and alignment with market data. See more information on our benefits and equity . Sales roles are also eligible for incentive pay targeted at up to 100% of the offered base salary.

California/Colorado/Hawaii/New Jersey/New York/Washington/DC/Illinois/Minnesota pay range