VP, Corporate Security | JobSetuu

Description

Job Overview

• Source: Jobicy

Job Description

An overview of this role

Corporate Security at GitLab leads Identity Engineering, Corporate Security Engineering, and End User Services, bringing together the engineering and service functions that secure workforce identity, internal systems, endpoints, and core business applications. This organization enables GitLab team members to work productively and securely through a 24x5 support model and engineering ownership across identity, device trust, SaaS, platform, and internal security controls.

As VP, Corporate Security, you will lead this organization through its next stage of maturity. You will own strategy, execution, and operational excellence across Corporate Security engineering and services, shaping how GitLab scales secure workforce access, endpoint security, SaaS governance, and internal IT experience in an all-remote environment. You will inherit and develop a multi-disciplinary organization that already includes leadership across identity engineering and corporate security engineering, and you will partner closely with the CISO and peers across Security, IT, Engineering, People, Legal, and Finance.

This role is right for someone who can connect security posture, team member experience, and business enablement. You should be equally comfortable setting executive direction and drilling into operating questions such as how to modernize identity, reduce authentication friction, mature endpoint and SaaS controls, improve onboarding and offboarding, and build systems that are secure by default and auditable by design.

Some examples of the team's focus areas:

• Corporate Security (CorpSec)
• CorpSec End User Services (EUS)
• CorpSec Identity Engineering

What you’ll do

• Set the vision and operating model for Corporate Security across engineering, identity, endpoint and device security, and end-user services, aligning security outcomes with productivity and service quality.
• Lead a globally distributed, multi-disciplinary organization through clear roadmaps, strong managers, measurable priorities, and high operational standards.
• Own GitLab’s internal identity and access strategy across Okta, lifecycle automation, RBAC and ABAC, administrative access controls, cloud access governance, and the ongoing evolution of Identity v3.
• Drive secure-by-default endpoint and device strategy across GitLab’s fleet, with particular strength in macOS, endpoint hardening, configuration management, telemetry, detection partnerships, and engineering-led change control.
• Oversee end-user services and internal IT support for the company, including access management, hardware support, and support for core applications such as Google Workspace, Slack, and Zoom, while improving helpdesk effectiveness and service experience.
• Build scalable onboarding, offboarding, and role-change processes that reduce risk, improve auditability, and remove friction for team members and business stakeholders.
• Partner cross-functionally with Security, IT, Engineering, People, Compliance, Finance, and Legal to translate business and regulatory requirements into pragmatic controls, policies, and workflows.
• Own vendor, tooling, and budget strategy for the Corporate Security estate, using metrics to improve resilience, team member experience, and risk reduction over time.

What you’ll bring

• Significant senior leadership experience leading corporate security, enterprise IT, IAM, endpoint security, or adjacent internal platform organizations at scale.
• Strong command of workforce identity and access concepts, including SSO, SAML, OAuth, lifecycle automation, RBAC and ABAC, administrative access controls, and governance for privileged and non-human identities.
• Deep understanding of modern endpoint and device security, ideally in a macOS-heavy environment, including MDM or endpoint management, hardening, software distribution, and fleet-level operational rollout strategy.
• A track record of replacing manual or click-ops processes with automation, GitOps, infrastructure-as-code, and auditable engineering workflows.
• Experience balancing service operations and engineering investment, with credibility in both helpdesk and internal platform environments.
• Experience operating in regulated or audit-heavy environments and partnering with compliance stakeholders on durable, evidence-ready controls.
• Excellent written and verbal communication skills, strong executive judgment, and the ability to lead effectively in an all-remote, asynchronous company.
• A pragmatic, business-enabling leadership style that raises the security bar while reducing friction for team members and internal customers.

About the team

The Corporate Security organization provides the technology, support, and internal security capabilities GitLab team members rely on to do their work. The team owns internal security-focused engineering and services across access, endpoints, SaaS platforms, and core workforce systems, while also supporting day-to-day team member productivity through end-user services and helpdesk operations.

Within that broader scope, Identity Engineering leads the technical strategy and automation behind IAM, RBAC, and administrative access controls for internal systems, cloud infrastructure, and tech stack applications, including the next-generation Identity v3 program. End-user and endpoint functions support access, hardware, core applications, and fleet security for GitLab’s distributed workforce. Together, these groups are building a more scalable, auditable, and secure foundation for how GitLab operates internally.

Expert Career Tips for VP, Corporate Security Roles

To succeed in a competitive market as a VP, Corporate Security, you need more than just technical skills. Here are some expert strategies to elevate your profile:

• Build a Strong Portfolio: For technical roles, a clean GitHub or a personal project site is essential. For non-technical roles, a case study portfolio demonstrating problem-solving and impact is equally valuable. Show, don't just tell, what you have achieved in your previous positions.
• Master the Narrative: When interviewing, use the STAR method (Situation, Task, Action, Result) to structure your answers. Quantify your results wherever possible—mentioning "increased efficiency by 20%" is much more impactful than saying "improved efficiency."
• Continuous Learning: The industry moves fast. Whether it's staying updated with the latest AI tools or mastering a new management methodology, continuous professional development is key. Consider obtaining industry-recognized certifications that align with VP, Corporate Security requirements.
• Networking: Connect with other professionals in similar roles. Join online communities, attend webinars, and engage in meaningful discussions on professional social networks. Often, the best opportunities come through referrals and community engagement.
• Soft Skills Matter: Communication, empathy, and leadership are often the deciding factors between two equally qualified technical candidates. Cultivate these skills as they are universally valued across all industries and seniority levels.

Additionally, research the specific company's culture and values. Tailoring your application to show how you align with their mission can significantly increase your chances of moving forward in the process.

Salary & Compensation

Salary not disclosed; typically competitive for the role.

Work Arrangement

Type: On-Site

Standard business hours at the office.

Comprehensive Application Strategy & Hiring Process

Applying for a new role is a marathon, not a sprint. Follow this strategic approach to maximize your success rate:

1. Initial Research & Tailoring

Don't send the same resume to every employer. Spend at least 30 minutes researching the company. Look for recent news, their product roadmap, and their team structure. Modify your summary and core competencies to reflect the specific keywords found in the job description.

2. The Perfect Cover Letter

If the application allows for a cover letter, use it to tell a story that your resume cannot. Explain why you are passionate about this specific company and how your unique background makes you the perfect fit for the challenges they are currently facing.

3. Navigating the Multi-Stage Interview

Most modern hiring processes involve 3-5 stages. This typically includes a recruiter screen, a technical or skill-based assessment, a peer interview, and a final leadership round. Prepare for each stage differently: focus on enthusiasm and fit for the recruiter, technical depth for the assessment, and strategic vision for the leadership round.

4. Post-Interview Follow-Up

Always send a personalized thank-you note within 24 hours of each interview. Reference a specific topic discussed during the call to demonstrate your active listening and genuine interest in the role.

By following these steps, you demonstrate a high level of professionalism and attention to detail that sets you apart from the average applicant.

Typical Interview Process

1. Resume screening
2. HR call
3. Skill interview
4. Final manager interview
5. Offer

Tip: Research the company's products and culture.

Global Market Intelligence & Relocation Insights

At JobSetuu, we specialize in helping talent navigate the global job market. Here is what you need to know about the current landscape in Global and beyond:

The demand for skilled professionals is increasingly borderless. For roles based in Global, understanding the local cost of living, visa requirements (if applicable), and cultural nuances is vital. If this is a remote role, consider the time zone alignment and the asynchronous communication culture of the hiring organization.

Relocation Support: Many forward-thinking companies offer relocation packages that include moving stipends, temporary housing, and legal assistance with work permits. When evaluating an offer, look beyond the base salary—consider the total compensation package, including equity, bonuses, and healthcare benefits.

Work-Life Balance Trends: Hybrid and remote work have become standard in many regions. Research the local labor laws and common practices regarding work hours and vacation time to ensure the role aligns with your lifestyle goals.

Leveraging JobSetuu's tools can help you compare salaries across different cities and understand the "purchasing power" of your potential offer, ensuring you make an informed decision for your long-term career path.

Skills & Competency Roadmap for Professional Development

To remain competitive in Professional Development, we recommend focusing on the following core competencies over the next 12-18 months:

• Technical Mastery: Deepen your expertise in the core tools and languages relevant to your field. For developers, this might be cloud architecture; for marketers, it might be data-driven attribution modeling.
• AI Augmentation: Learn how to leverage generative AI and automation tools to increase your productivity. Understanding how to integrate these technologies into your workflow is becoming a non-negotiable skill.
• Leadership & Strategy: Even in individual contributor roles, the ability to think strategically and lead projects from inception to completion is highly valued. Focus on stakeholder management and high-level project planning.
• Data Literacy: The ability to interpret data and use it to drive decisions is essential across all business functions. Familiarize yourself with data visualization and basic analytical concepts.

By investing in these areas, you not only prepare yourself for the role you are applying for today but also build a resilient foundation for the opportunities of tomorrow.

Apply via JobSetuu

Discover your next career milestone on JobSetuu. This VP, Corporate Security position is part of our commitment to bringing you the most relevant and high-impact job openings globally. At JobSetuu, we simplify your job search by aggregating premier listings and providing the tools you need to stand out. Don't miss the chance to elevate your professional journey—explore more opportunities and career insights on our platform today.