Senior Product Manager, Secret Detection

Remote

GitLab is an open-core software company that develops the most comprehensive AI‑powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co‑create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating human progress. Our platform unites teams and organizations, breaking down barriers and redefining what’s possible in software development. Thanks to products like Duo Enterprise and Duo Agent Platform, customers get AI benefits at every stage of the SDLC.

Security is at the heart of GitLab Ultimate, and Secret Detection is a key part of our customers’ journey to produce more secure software.

As the Senior Product Manager for Secret Detection, you’ll be responsible for the capabilities that protect GitLab customers from leaking secrets. This high‑impact role combines security product development with the scale of GitLab’s global customer base.

You’ll drive high‑visibility initiatives like Secret Push Protection, Validity Checks, and better detection of passwords and other hard‑to‑spot secrets. You’ll ship product offerings that security professionals trust and developers love—providing a layer of protection that’s invisible until it’s needed.

You’ll work independently to shape product strategy while collaborating with experts across GitLab. You’ll work most closely with the Secret Detection engineering team, our innovative Vulnerability Research team, and the rest of the Sec PM team, which manages all of GitLab’s security scanning, risk management, and governance features. Your decisions will directly impact GitLab customers and help define the future of DevSecOps. Because leaked secrets are urgent risks, your portfolio will include real‑time protection features that have just milliseconds to work.

Here are some examples of our recent releases:

• A variety of iterative improvements to performance, accuracy, and user experience.

Day‑to‑day, you’ll:

• Work directly with customers and account teams to understand what our customers need.
• Be the primary voice of Secret Detection users and buyers in our Product team.
• Combine metrics, customer stories, research, and your own knowledge to identify and prioritize the highest‑impact work.
• Craft requirements for new features.
• Discover opportunities to improve existing capabilities—including in related product areas where you’ll collaborate with other product teams—and deliver them to users.
• Clearly articulate GitLab’s current and future capabilities for Secret Detection and related areas.
• Represent GitLab in contexts like customer meetings, industry conferences, webinars, and our public issue tracker.
• Collaborate with Product Marketing and Field Enablement to equip our Field teams with knowledge and messaging about your product area.

As a Senior Product Manager, you’ll work closely with your counterparts, but you’ll be responsible for initiating, shaping, and driving projects independently.

• Proven experience with Application Security products, ideally including hands‑on work developing or managing Secret Detection products
• Deep understanding of Application Security personas, including developers, security engineers, and security leadership
• Multiple years of product management experience, preferably with enterprise software or security tools used by development teams
• Track record of successfully managing complex technical products and driving them from concept to market
• Experience working with large enterprise B2B customers and understanding their security, compliance, and operational needs
• Strong analytical skills with ability to synthesize customer stories, usage data, and market research into actionable product decisions
• Excellent written and verbal communication skills, including ability to explain complex security concepts to both technical and non‑technical audiences
• Creative problem‑solving mindset with ability to iterate on complex security challenges and balance detailed execution with strategic thinking
• Enough familiarity with code that you can understand Secret Detection findings, discuss detection tradeoff decisions with engineers and researchers, and create simple demonstrations
• Knowledge of static analysis, program analysis, formal verification, or related security techniques
• Experience building AI‑powered features, especially for security use cases

Remote‑Global

The base salary range for this role’s listed level is currently for residents of the United States only. This range is intended to reflect the role’s base salary rate in locations throughout the US. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, alignment with market data, and geographic location. The base salary range does not include any bonuses, equity, or benefits. See more information on our benefits and equity. Sales roles are also eligible for incentive pay targeted at up to 100% of the offered base salary.

GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (including disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.