Senior Manager, Customer Trust & Security Governance

The Senior Manager, Customer Trust & Security Governance helps GitLab turn security into a clear business enabler. In this role, you will oversee the programs that help our customers and prospects assess our security posture, reduce friction in our sales cycle, strengthen our security policy and standards, and make security outcomes visible across the business. Reporting to the VP of Security Assurance, you will own a broad scope across customer trust, governance, metrics, and security awareness, with a focus on building durable processes, improving documentation, and using automation and AI to help our team spend more time on high-value work.

In your first year, you will shape how GitLab addresses customer security needs at scale, mature the security governance program, and improve how security is measured and communicated internally. You will work across Security, Sales, Legal, Product, Procurement, and other business partners, and you will help strengthen confidence in GitLab's AI-powered DevSecOps platform through practical guidance, clear standards, and thoughtful execution.

• Lead the customer trust function for contract reviews, security questionnaires, requests for proposals, and related customer and vendor security inquiries.
• Set direction, priorities, and operating practices that help the team respond effectively while reducing friction in the sales cycle.
• Partner with Legal, Sales, Product, and Procurement to review and negotiate security-related terms in revenue and vendor agreements.
• Manage escalations for complex security questionnaires, risk assessments, and contract issues, and guide teams toward practical solutions.
• Develop and improve security templates, playbooks, fallback positions, and training materials that support faster, more consistent negotiations.
• Build and maintain GitLab's library of security policies and collaborate with security subject matter experts to mature security standards.
• Drive the security metrics and reporting program, including preparation and facilitation for quarterly business reviews.
• Oversee an engaging security awareness program and use automation and AI tooling to improve workflows, documentation, and team effectiveness.

• Extensive experience leading security governance or customer-facing security programs in a complex, cross-functional environment.
• Knowledge of security and compliance frameworks such as SOC 2, ISO 27001, FedRAMP, GDPR, and NIST.
• Ability to review and negotiate security and privacy terms in contracts, with a practical approach to balancing risk and business needs.
• Understanding of cloud security, software as a service security models, and DevSecOps practices.
• Skill in translating technical security concepts into clear guidance for customers, executives, and internal partners.
• Experience building or improving security policies, standards, metrics, reporting, or awareness programs.
• Comfort working asynchronously with teams across Security, Sales, Legal, Product, and Engineering, and collaborating through written communication.
• Openness to using automation and AI to improve scale and consistency, and to applying transferable experience from adjacent security, governance, or trust roles.

The team is responsible for helping GitLab demonstrate and operationalize trust through customer-facing security support, internal governance, measurable security outcomes, and security awareness. It works across regions in an asynchronous way and partners closely with Security, Sales, Legal, Product, Procurement, and Engineering to make security clear, practical, and scalable. This team supports both business velocity and sound governance by improving how GitLab responds to customer requirements, maintains security standards, and communicates progress.