AI Security

This critical function will establish and drive our comprehensive AI security program, addressing the unique vulnerabilities inherent in AI-powered development tools, and build first-party tooling for reducing our risk and improving AI security observability. The AI Security function will report directly to the CISO leading this transformative initiative to position GitLab as the most secure AI-native development platform.

Responsibilities

Strategic Leadership

  • Develop and execute GitLab’s comprehensive AI security strategy and roadmap
  • Lead a dedicated team of AI security specialists, including AI security engineers, machine learning security specialists, and AI threat researchers
  • Establish AI security governance frameworks and policies across the organization
  • Drive “AI Secure by Design” practices throughout GitLab’s AI development lifecycle
  • Partner with executive leadership to align AI security investments with business objectives

Technical Program Management

  • Oversee the development of specialized AI threat detection and response capabilities
  • Lead the creation of secure prompt libraries and AI input validation systems
  • Establish real-time AI threat monitoring and interdiction infrastructure
  • Implement comprehensive logging and analysis capabilities for AI security events
  • Manage the transition from external AI model dependencies to internal security controls

Threat Intelligence and Research

  • In partnership with Security Operations, conduct research into emerging AI attack vectors, including prompt injection, model manipulation, and AI supply chain vulnerabilities
  • Develop proactive defense strategies against sophisticated AI-powered attacks
  • Lead threat hunting initiatives specific to AI and machine learning systems
  • Establish relationships with the AI security research community and threat intelligence providers
  • Drive continuous improvement of AI security capabilities based on emerging threats

Cross-Functional Collaboration

  • Partner with Engineering, Security, and Product teams to integrate security throughout the development process
  • Collaborate with product security, infrastructure security, and compliance teams to drive AI security programs and practices across GitLab’s technology estate
  • Work closely with legal and privacy teams on AI governance and regulatory compliance
  • Interface with customer success and sales teams to communicate AI security value proposition
  • Engage with external security researchers and the broader AI security community

Requirements

Technical Expertise

  • 8+ years of experience in cybersecurity with 3+ years focused on AI/ML security
  • Deep understanding of machine learning security, including adversarial attacks, model poisoning, and prompt injection techniques
  • Hands-on experience with AI/ML frameworks and deployment architectures
  • Strong background in threat detection, incident response, and security architecture
  • Experience with cloud security, containerization, and microservices security
  • Knowledge of secure software development practices and DevSecOps methodologies

Leadership and Strategy

  • Proven track record of building and leading high-performing security teams
  • Experience managing complex, multi-million dollar security programs and budgets
  • Strong strategic thinking with ability to translate technical risks into business impact
  • Excellent communication skills with experience presenting to executive leadership and boards
  • Experience working in fast-paced, high-growth technology environments

Industry Knowledge

  • Understanding of AI/ML development lifecycle and production deployment challenges
  • Knowledge of AI governance frameworks and emerging regulatory requirements
  • Experience with AI supply chain security and third-party AI service risks
  • Familiarity with AI ethics and responsible AI development practices

Preferred Qualifications

  • Advanced degree in Computer Science, Cybersecurity, or related field
  • Published research in AI security or machine learning security domains
  • Experience in developer tools, DevOps, or software development platform companies
  • Previous experience leading security incident response for AI-related vulnerabilities
  • Background in threat intelligence or security research organizations

Levels

Director, AI Security

This position reports to CISO (Chief Information Security Officer)

Job Grade

The role is a grade 10.

Director, AI Security Responsibilities

All responsibilities listed above (applicable to all roles).

Director, AI Security Requirements

All requirements listed above (applicable to all roles).

Senior Director, AI Security

This position reports to CISO (Chief Information Security Officer)

Job Grade

The role is a grade 11.

Senior Director, AI Security Responsibilities

All responsibilities listed above (applicalbe to all roles).

Senior Director, AI Security Requirements

All requirements listed above (applicalbe to all roles).

Career Ladder

For more details on the security engineering career ladders, please review the security engineering career development handbook page.

Hiring Process

Candidates for this position can expect the hiring process to follow the order below. Please keep in mind that candidates can be declined from the position at any stage of the process.

  • Qualified candidates will be invited to schedule a 30 minute screening call with one of our Global Recruiters.
  • Next, candidates will be invited to schedule an interview with CISO
  • Candidates will then be invited to schedule separate 60 minute interviews with three leaders of the organization
  • Candidates will then be invited to schedule separate two 45 minute interviews with cross-functional team members
  • Successful candidates will subsequently be made an offer via email

Additional details about our process can be found on our hiring page.

 

About GitLab

GitLab is an open core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating the rate of human progress. This mission is integral to our culture, influencing how we hire, build products, and lead our industry. We make this possible at GitLab by running our operations on our product and staying aligned with our values. Learn more about Life at GitLab. Thanks to products like Duo Enterprise, and Duo Workflow, customers get the benefit of AI at every stage of the SDLC. The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier. All team members are encouraged and expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact across our global organisation.

See our culture page for more!

Work remotely from anywhere in the world. Curious to see what that looks like? Check out our remote manifesto and guides.

Last modified June 20, 2025: Add Security AI Job Family to handbook (bae57300)
View page source - Edit this page - please contribute. Creative Commons License