Engineering Manager, Software Supply Chain Security: Authorization

As an Engineering Manager for the Authorization team at GitLab, you'll lead a talented group of engineers who are fundamentally transforming how permissions work across our platform. You'll be at the forefront of our major authorization systems redesign initiative, guiding your team through exciting challenges like implementing Fine-Grained Access Control and developing our new policy-as-code approach. 

At GitLab, we see our team as our product. While you'll need to be technically credible in authorization frameworks and identity management, your primary focus will be on nurturing your team's health, hiring exceptional talent, and positioning them for success. You'll collaborate closely with Product Managers to shape the roadmap for modern authorization features that balance security, usability, and performance at scale. This is a unique opportunity to lead critical infrastructure work that touches every part of the GitLab platform while helping transform our permission systems to be more secure, scalable, and flexible.

Your leadership will be instrumental as we transition from our current Declarative Policies framework to a more sophisticated policy-based system that supports advanced multi-tenancy features and reinforces GitLab's security posture. If you're passionate about building teams and systems that enable secure collaboration at scale, this role offers the chance to make a significant impact on GitLab's future.

This role is an extension of the Engineering Manager position.

What You’ll Do 

• Lead a team focused on developing features for Software Supply Chain Security, with a primary focus on authorization systems and user permission models
• Guide the implementation of advanced authorization controls across GitLab's platform
• Collaborate with Product Managers to define and prioritize the roadmap for Supply Chain Security and authorization features in particular
• Stay current with industry standards and best practices in identity and access management, particularly least-privilege and zero-trust access models
• Partner with Security team members to ensure features meet the highest security standards
• Educate and advocate for supply chain security best practices across GitLab
• Represent GitLab in industry forums related to software supply chain security when appropriate

What You’ll Bring 

• Experience with authorization systems, identity management, and access control models
• Understanding of policy-as-code approaches (ideally familiarity with Cedar, Rego, or similar policy languages)
• Knowledge of modern authorization frameworks like RBAC, ABAC, FGAC and context-aware authorization systems
• Familiarity with identity federation concepts and tools
• Strong technical leadership abilities to guide the team through complex architectural transitions
• Experience implementing SLSA compliance in production environments is ideal, but not required

In addition to the standard Engineering Manager performance indicators, this role will also be measured on:

• Successful implementation of components for the GitLab authorization components and IAM
• Adoption rate of new authorization features by GitLab users
• Reduction in security vulnerabilities related to authorization sub-systems
• Integration completeness with other GitLab security features
• Community engagement around GitLab's supply chain security capabilities
• Documentation quality for supply chain security features

About the team

The Authorization team is responsible for building and maintaining GitLab's permission systems to be more secure, scalable, and flexible. We're currently embarking on a major authorization systems redesign initiative that will fundamentally transform how authorization works across GitLab. The team is focused on key projects including Fine-Grained Access Control, Policy Standardization, and developing a new policy-as-code approach that will replace our current Declarative Policies framework. This work is critical to GitLab's security posture, performance at scale, and ability to support advanced multi-tenancy features.

You can learn more about our team here. 

• Benefits to support your health, finances, and well-being
• All remote, asynchronous work environment
• Flexible Paid Time Off 
• Team Member Resource Groups
• Equity Compensation & Employee Stock Purchase Plan
• Growth and Development Fund
• Parental leave 
• Home office support

Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application.