You will work closely with engineering teams to integrate security into the software development lifecycle, build secure-by-default patterns, and ensure that products are resilient against modern threats.

This role combines hands-on technical work, security engineering, and collaboration with developers to guide secure design and remediation.

You will help implement security controls, perform assessments, and contribute to the continuous improvement of our security program.

Key responsibilities include:

• Integrating application security best practices into the development lifecycle by partnering with engineering teams and enabling automated security checks within CI/CD pipelines.

• Supporting and maintaining Application Security based tooling,including SAST, DAST, SCA, and secrets scanning,and helping developers interpret and remediate findings.

• Conducting secure code reviews, threat modeling sessions, and application architecture assessments to identify risks and propose mitigation strategies.

• Developing and maintaining security automation, guardrails, and reusable components.

• Assisting in defining and improving secure coding standards and application hardening practices.

• Supporting monitoring and detection efforts by helping improve application-level logging, telemetry, and alerting.

• Assisting in incident response activities related to application vulnerabilities, including verification, triage, and remediation support.

• Staying current on emerging threats, vulnerabilities, and best practices in application and product security.

• Contributing to documentation including security requirements, guidelines, and remediation playbooks.

• Participating in internal security reviews, compliance-driven assessments, and architectural walkthroughs.

• Developing and helping maintain existing application security tools, pipelines, and workflows.

• Collaborating with engineering and product teams to ensure secure deployment and continuous improvement of applications.

Requirements include:

• A bachelor’s degree in Computer Science, Engineering, MIS, or equivalent practical experience.

• 2–5 years of experience in application security, product security, software engineering with a security focus, or a related technical role.

• Strong understanding of application vulnerabilities and mitigation strategies (OWASP Top 10, CWE).

• Experience with CI/CD tooling, Git-based workflows, and modern development practices.

• Familiarity with cloud security concepts and hands-on experience with at least one cloud platform (AWS, Azure, or GCP).

• Experience with one or more programming languages such as Python, Go, Java, JavaScript/Typescript, or Ruby. (Java and Python preferred.)

• Experience with application security tools such as OWASP ZAP, Burp Suite, SAST/DAST tools, SCA, or dependency scanning.

• Knowledge of secure coding principles, API security, authentication, authorization, and secrets management.

• Strong problem-solving skills and the ability to communicate technical issues clearly to developers and cross-functional stakeholders.

• Understanding of agile development processes and working within engineering teams.

• Ability to Travel: This role will require 25% in-person travel for purposes including but not limited to new hire onboarding, team and department offsites, customer engagements, and other company events.

This role is based in our Boston office and follows a hybrid model, with an expectation of being onsite 1-2 days per week.

XML job scraping automation by YubHub

You'll focus on major enterprise prospects and customers, guiding them through complex DevSecOps and software delivery transformations across areas like CI/CD automation, secure development, and infrastructure modernisation.

In this role, you'll act as a key connector between customer stakeholders and GitLab's field organisation so GitLab is seen as a trusted, long-term partner before, during, and after the sale.

In your first year, you'll be expected to build and manage a healthy enterprise pipeline, create repeatable sales motions, and drive successful rollouts and adoption that translate into measurable results and long-term expansion.

Responsibilities

• Support GitLab's strategic large prospects and customers as a trusted advisor throughout their DevSecOps journey.

• Drive the full sales cycle in large, complex enterprises, including prospecting, qualifying, developing, and closing new opportunities across your assigned accounts.

• Provide strong account leadership and direction in both the pre-sales and post-sales process to ensure customers realise value from GitLab's AI-powered DevSecOps platform.

• Coordinate closely with Solutions Architects, Customer Success, Support, and strategic channel partners to design and execute account strategies that drive adoption, expansion, and retention.

• Develop and execute structured account plans based on customer business needs, including opportunity mapping, stakeholder alignment, and multi-threaded engagement across technical and business teams.

• Ensure successful rollout and ongoing adoption through proactive account management activities, regular business reviews, and clear alignment on customer outcomes.

• Prepare and deliver accurate activity and forecast reports, and contribute to root cause analysis on wins and losses while sharing lessons learned with account managers, marketing, and technical teams.

• Act as the voice of the customer by sharing feedback and product ideas, and use a consultative approach to create proposals, quotes, and presentations that clearly link GitLab's solutions to customer business objectives.

Requirements

• A true desire to see customers achieve meaningful outcomes and long-term value from their investment in GitLab.

• Experience driving complex B2B software sales cycles with large enterprises, ideally in DevSecOps, software development tools, or adjacent SaaS solutions.

• Proven success selling into large, strategic organisations, with the ability to build trusted relationships with C-level and senior stakeholders across business and technical teams.

• Able to provide a high degree of account management and control, working under minimal supervision on complex opportunities while maintaining clear communication and alignment.

• Ability to generate new business and expand existing accounts through consultative, multi-stakeholder sales motions that result in sustainable, long-term partnerships.

• Experience collaborating with strategic channel partners to develop opportunities, co-sell, and support successful customer adoption.

• Excellent negotiation, presentation, and closing skills, with effective written and verbal communication that influences internal and external stakeholders.

• Preferred experience with Git, software development tools, application lifecycle management, or security/application security tools.

• You share our values and work in accordance with them, use GitLab in your daily work, and are able to travel if needed while following GitLab's travel policy.

About the team

The Enterprise Sales team is responsible for driving growth, adoption, and long-term value for GitLab's AI-powered DevSecOps platform with our largest and most strategic customers.

As a Major Account Executive on the AMER Enterprise team, you'll be part of a distributed, all-remote team that works asynchronously across regions and partners closely with GitLab's sales engineering, marketing, and customer success teams.

We value transparency, collaboration, and a consultative approach, and we support one another through shared account planning, regular deal reviews, and knowledge sharing focused on enterprise customers across regulated and large-scale environments.

XML job scraping automation by YubHub