{"version":"0.1","company":{"name":"YubHub","url":"https://yubhub.co","jobsUrl":"https://yubhub.co/jobs/skill/frameworks-and-ecosystems"},"x-facet":{"type":"skill","slug":"frameworks-and-ecosystems","display":"Frameworks And Ecosystems","count":1},"x-feed-size-limit":100,"x-feed-sort":"enriched_at desc","x-feed-notice":"This feed contains at most 100 jobs (the most recently enriched). For the full corpus, use the paginated /stats/by-facet endpoint or /search.","x-generator":"yubhub-xml-generator","x-rights":"Free to redistribute with attribution: \"Data by YubHub (https://yubhub.co)\"","x-schema":"Each entry in `jobs` follows https://schema.org/JobPosting. YubHub-native raw fields carry `x-` prefix.","jobs":[{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_5003c49e-cf6"},"title":"Engineering Manager, SSCS: Supply Chain","description":"<p>As an Engineering Manager, you&#39;ll guide GitLab&#39;s dedicated Software Supply Chain Security (SSCS) Add-On engineering team as it develops core capabilities including Dependency Firewall, Build Provenance, Malicious Packages detection, and Artifact Signing.</p>\n<p>This is a founding management role where you&#39;ll help shape how the team works, partner closely with the Staff Backend Engineer, Product Manager, and SSCS stage management, and turn a defined roadmap into steady, high-quality delivery for enterprise customers with strict security and compliance needs.</p>\n<p>You&#39;ll focus on developing the team, creating a healthy operating rhythm, and establishing predictable execution for the SSCS SKU.</p>\n<p>You&#39;ll join a product area where customers in regulated industries are already validating the need, and your work will help GitLab deliver software supply chain security features that customers can rely on.</p>\n<p>While technical credibility matters, your main focus will be growing a strong backend engineering team, enabling team members in their development, and creating the conditions for long-term delivery and quality.</p>\n<p>Responsibilities:</p>\n<ul>\n<li>Guide a backend engineering team building the SSCS Add-On across dependency enforcement, build provenance, malicious package detection, and artifact signing.</li>\n</ul>\n<ul>\n<li>Be responsible for driving engineering delivery for general availability milestones by aligning sequencing, scope, and dependencies with the Staff Backend Engineer and Product Manager.</li>\n</ul>\n<ul>\n<li>Develop the team by partnering with Talent Acquisition on sourcing, interview design, candidate evaluation, and hiring decisions.</li>\n</ul>\n<ul>\n<li>Run regular 1:1s, performance reviews, and career development conversations that enable growth and clear expectations.</li>\n</ul>\n<ul>\n<li>Advance engineering quality by monitoring cycle time, defect rates, and test coverage, and by addressing risks early.</li>\n</ul>\n<ul>\n<li>Coordinate quarterly planning and roadmap tradeoff discussions with SSCS stage leadership and Product.</li>\n</ul>\n<ul>\n<li>Work with Finance and other partners on headcount pacing and team planning as the Add-On scales.</li>\n</ul>\n<ul>\n<li>Represent the SSCS Add-On team within stage leadership discussions and help ensure strong communication across functions.</li>\n</ul>\n<p>Requirements:</p>\n<ul>\n<li>Over 3 years of experience guiding backend product engineering teams in security, DevOps, or platform engineering environments.</li>\n</ul>\n<ul>\n<li>Ability to hire and grow backend or security engineers in distributed team environments, with practical understanding of the talent landscape for these roles.</li>\n</ul>\n<ul>\n<li>Technical credibility to contribute to architecture discussions involving package registries, CI/CD pipeline security, and signing infrastructure.</li>\n</ul>\n<ul>\n<li>Experience managing predictable delivery across multi-quarter product roadmaps and managing cross-team dependencies.</li>\n</ul>\n<ul>\n<li>Comfort working in an asynchronous, documentation-driven organization with clear written communication.</li>\n</ul>\n<ul>\n<li>Familiarity with supply chain security, artifact management, or compliance-focused product areas, or transferable experience from related domains.</li>\n</ul>\n<ul>\n<li>Working knowledge of concepts related to frameworks and ecosystems such as SLSA and Sigstore.</li>\n</ul>\n<ul>\n<li>Ability to build credibility with engineers, product partners, and customer-facing stakeholders through clear judgment, coaching, and teamwork.</li>\n</ul>\n<p>About the team: The SSCS Add-On team is a product engineering team within GitLab&#39;s Software Supply Chain Security stage. We work on key capabilities in the SSCS Add-On SKU and collaborate closely with product and engineering partners to deliver security features for customers operating in regulated environments.</p>\n<p>You&#39;ll report to the SSCS Senior Engineering Manager and partner directly with the Staff Backend Engineer and Product Manager.</p>\n<p>As a distributed team working asynchronously across regions, we are focused on strong delivery practices, team health, and scaling the product area with clarity and accountability.</p>\n<p>For more on how related teams work, see Team Handbook Page.</p>\n<p>How GitLab Supports Full-Time Employees:</p>\n<ul>\n<li>Benefits to support your health, finances, and well-being</li>\n</ul>\n<ul>\n<li>Flexible Paid Time Off</li>\n</ul>\n<ul>\n<li>Team Member Resource Groups</li>\n</ul>\n<ul>\n<li>Equity Compensation &amp; Employee Stock Purchase Plan</li>\n</ul>\n<ul>\n<li>Growth and Development Fund</li>\n</ul>\n<ul>\n<li>Parental leave</li>\n</ul>\n<ul>\n<li>Home office support</li>\n</ul>\n<p style=\"margin-top:24px;font-size:13px;color:#666;\">XML job scraping automation by <a href=\"https://yubhub.co\">YubHub</a></p>","url":"https://yubhub.co/jobs/job_5003c49e-cf6","directApply":true,"hiringOrganization":{"@type":"Organization","name":"GitLab","sameAs":"https://about.gitlab.com/","logo":"https://logos.yubhub.co/about.gitlab.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/gitlab/jobs/8478405002","x-work-arrangement":"remote","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["GitLab","Software Supply Chain Security","Dependency Firewall","Build Provenance","Malicious Packages detection","Artifact Signing","Backend engineering","Security","DevOps","Platform engineering","Package registries","CI/CD pipeline security","Signing infrastructure","Supply chain security","Artifact management","Compliance-focused product areas","Frameworks and ecosystems","SLSA","Sigstore"],"x-skills-preferred":[],"datePosted":"2026-04-18T15:49:15.915Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Remote, India"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"GitLab, Software Supply Chain Security, Dependency Firewall, Build Provenance, Malicious Packages detection, Artifact Signing, Backend engineering, Security, DevOps, Platform engineering, Package registries, CI/CD pipeline security, Signing infrastructure, Supply chain security, Artifact management, Compliance-focused product areas, Frameworks and ecosystems, SLSA, Sigstore"}]}