IT Security (Red Team)

Responsibilities

• Maintain a deep understanding of GitLab’s product offerings, how they work, and how they could be attacked or abused
• Propose, plan, and execute Red Team operations based on realistic threats to the organization
• Automate attack techniques, creating custom tooling for specific operations and contributing to general-purpose open source tools
• Write detailed reports covering the goals and outcomes of Red Team operations, including significant observations and recommendations
• Collaborate with GitLab’s Security Incident Response Team (SIRT) to improve detection and response capabilities
• Collaborate with GitLab’s Infrastructure Security Team to propose defensive improvements to cloud environments
• Collaborate across multiple product teams to propose enhancements and additions to GitLab’s SaaS and self-hosted offerings
• Collaborate with non-technical teams to propose process and policy enhancements and additions
• Stay informed on current security trends, advisories, publications, and academic research that is relevant our organization

Requirements

• Ability to use GitLab
• Understanding of the MITRE ATT&CK framework
• Ability to automate tasks by writing basic scripts/programs – we often use Python and Go
• Ability to read and understand multiple programming languages, especially Ruby and Go
• Command-line experience with Linux-based operating systems
• Experience exploiting vulnerabilities in at least two of the following areas:
  • Web applications
  • Cloud environments (GCP / AWS)
  • Linux and/or MacOS workstations
  • Software supply chain
• Basic hands-on experience with at least one of the major cloud providers (GCP, AWS, Azure)
• An adversarial mindset – you must be able to put yourself in the mind of the attacker
• Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner