Jobs/Remote (Canada)/Engineering Manager, Software Supply Chain Security: Pipeline Security

Remote (Canada), CA

Engineering Manager, Software Supply Chain Security: Pipeline Security

Open employer application Back to listings

Company

Gitlab

Compensation

Not listed

Schedule

Full-Time

Quick facts

Location: Remote (Canada), CA

Work style: Remote

Industry: Cloud and DevOps

Recruiter: Gitlab talent team

Posted: Posted 2026-04-30

Source status: Verified public source

Source: job-boards.greenhouse.io

Source job ID: 8339221002

Last checked: May 7, 2026

Confidence: 90/100 based on source quality and listing detail.

Source check

Verified public source from job-boards.greenhouse.io. UpJobz last saw this listing on May 7, 2026. Use the employer application link as the final source of truth before sharing personal information.

UpJobz verification layer

Freshness90/100 source confidence

Last checked May 7, 2026 against job-boards.greenhouse.io. UpJobz uses this as a freshness signal before keeping a job eligible for search traffic.

Ghost-job riskLower

The listing includes enough responsibilities and requirements to support a real go/no-go decision.

Pay clarityRange missing

No reliable range is visible, so ask for compensation early instead of waiting until late-stage interviews.

Work authorizationSignals present

Open to TN, H-1B, and OPT candidates already in the United States Employer has a documented history of US work-visa sponsorship

Location fitRemote

CA-scoped remote role; confirm timezone and country eligibility on job-boards.greenhouse.io.

Why it fits

Engineering Manager, Software Supply Chain Security: Pipeline Security is a high-signal remote role in Remote (Canada), and it is most realistic for open to tn, h-1b, and opt candidates already in the united states.

Company snapshot

GitLab is the all-remote DevSecOps platform spanning source code, CI/CD, security, and AI-assisted development.

Eligibility

Open to TN, H-1B, and OPT candidates already in the United StatesEmployer has a documented history of US work-visa sponsorshipVerify per-role sponsorship details on the listing before applying

Technical signals

aisecurityproductplatformapidevopsgitrubykubernetesci-cd

Subscriber advantage

Source signal

Verified public source

90/100 confidence reflects source quality, posting clarity, compensation visibility, and whether the role has enough structured detail to act on.

Eligibility

Clear market access

Open to TN, H-1B, and OPT candidates already in the United States

Comp signal

Compensation hidden

Plan to ask for compensation range early in the process.

Role overview

What this role actually needs.

GitLab is the intelligent orchestration platform for DevSecOps. GitLab enables organizations to increase developer productivity, improve operational efficiency, reduce security and compliance risk, and accelerate digital transformation. Responsibilities: - Lead a team of engineers building Software Supply Chain Security features with a focus on CI job artifact security. - Guide the design and implementation of SLSA (Supply-chain Levels for Software Artifacts) compliance within GitLab CI/CD pipelines. - Collaborate with Product Managers to define, prioritize, and deliver the roadmap for supply chain security capabilities. - Partner with Security team members to ensure new and existing features meet GitLab’s security standards and align with best practices. - Stay current with software supply chain security standards and tools, including SLSA, SBOM, software composition analysis, and vulnerability management. Translate what you learn into actionable product improvements. - Educate and advocate for supply chain security best practices across engineering teams to drive adoption of secure patterns in CI pipelines. Company context: GitLab is the all-remote DevSecOps platform spanning source code, CI/CD, security, and AI-assisted development.

Responsibilities

Day-to-day expectations

Gitlab lists these responsibilities for the Engineering Manager, Software Supply Chain Security: Pipeline Security role.

Lead a team of engineers building Software Supply Chain Security features with a focus on CI job artifact security.
Guide the design and implementation of SLSA (Supply-chain Levels for Software Artifacts) compliance within GitLab CI/CD pipelines.
Collaborate with Product Managers to define, prioritize, and deliver the roadmap for supply chain security capabilities.
Partner with Security team members to ensure new and existing features meet GitLab’s security standards and align with best practices.
Stay current with software supply chain security standards and tools, including SLSA, SBOM, software composition analysis, and vulnerability management. Translate what you learn into actionable product improvements.
Educate and advocate for supply chain security best practices across engineering teams to drive adoption of secure patterns in CI pipelines.

UpJobz market context

Why this listing is more than a copied job post.

Engineering Manager, Software Supply Chain Security: Pipeline Security is framed against UpJobz source checks, country scope, compensation visibility, and work-authorization signals so candidates can make a faster go/no-go decision.

Canada tech market

Canada roles on UpJobz are filtered for high-tech relevance, source freshness, and actionable employer detail before they are allowed into SEO surfaces.

Compensation read

The employer source does not expose a reliable salary range, so candidates should ask for compensation early instead of waiting until late-stage interviews.

Work authorization read

Current extracted signal: Open to TN, H-1B, and OPT candidates already in the United States. UpJobz treats this as a search signal, not legal advice, and links visa-sensitive roles back to the relevant visa hub where possible.

Location read

Because this is remote, country scope and time-zone expectations matter as much as the title. Confirm the employer's allowed work locations on job-boards.greenhouse.io.

Browse similar jobs

Subscriber playbook

Turn this listing into an application plan.

This is the first pass at the premium UpJobz layer: a fast brief that helps serious applicants move with more clarity.

Next moves

Tailor your resume around ai and security instead of sending a generic application.
Use the first two bullets of your application to connect your background directly to engineering manager, software supply chain security: pipeline security is a high-signal remote role in remote (canada), and it is most realistic for open to tn, h-1b, and opt candidates already in the united states.
Open the role quickly if it fits and bookmark three similar jobs before you leave the page.

Interview themes

Cloud and DevOpsRemoteaisecurityproductplatform

Watchouts

Compensation is hidden, so get range clarity in the first recruiter conversation.
Use open to tn, h-1b, and opt candidates already in the united states as part of your positioning so the recruiter does not have to infer it.
Lead with distributed collaboration, async delivery, and timezone discipline.

Role signals

Keywords to match against your background

Use these terms to decide whether your resume, portfolio, and recent projects line up with the role.

aisecurityproductplatformapidevopsgitrubykubernetesci-cd

Next step

Apply through the employer source

Open the source listing from job-boards.greenhouse.io, confirm the role is still active, then apply on the employer or ATS page.

Open employer application

Source: job-boards.greenhouse.io · Source ID: 8339221002 · Confidence: 90/100 · Last checked: May 7, 2026

How UpJobz verifies job sources Continue browsing tech jobs