✦ Luna Orbit — Cybersecurity

Principal Engineer, Software Supply Chain Security

at GitLab

📍 Remote, Canada; Remote, Israel; Remote, Netherlands; Remote, United Kingdom; Remote, US Remote Posted March 19, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Full-Time
Experience lead
Exp. Years Not specified
Education Not specified
Category Cybersecurity

About this role

This role involves leading the security architecture for GitLab’s software supply chain, ensuring compliance with SLSA Level 3, and hardening CI/CD pipelines to enhance security posture.

Key Responsibilities

  • Lead software supply chain security architecture
  • Drive SLSA Level 3 compliance
  • Collaborate on CI/CD security hardening
  • Mentor engineering teams on security best practices
  • Act as external security spokesperson

Technical Overview

Focus on security architecture, DevSecOps, CI/CD pipeline hardening, secrets management, and zero trust models within SaaS environments using GitLab tools.

Ideal Candidate

The ideal candidate is a senior security architect with expertise in software supply chain security, DevSecOps practices, and zero trust architecture. They should have experience leading security initiatives in SaaS environments and mentoring engineering teams.

Must-Have Skills

software supply chain securitySLSA Level 3CI/CD securitysecurity architectureDevSecOps

Nice-to-Have Skills

secrets managementzero trust architecturesecurity complianceprovenance attestationinfrastructure security

Tools & Platforms

GitLabCI/CD pipelinessecurity hardening tools

Required Skills

software supply chain securitySLSA Level 3CI/CD security hardeningsecrets managementzero trust architecturesecurity architecturepipeline hardeningDevSecOpssecurity complianceprovenance attestation

Hard Skills

SLSA Level 3software supply chain securityCI/CD security hardeningsecrets managementzero trust architecturesecurity architecturepipeline hardeningDevSecOpssecurity complianceprovenance attestation

Soft Skills

leadershiparchitectural thinkingcollaborationmentoringstakeholder communication

Industry & Role

Industry SaaS
Job Function Security architecture leadership for software supply chain
Role Subtype Security Architect
Tech Domains Cybersecurity, DevSecOps

Keywords for Your Resume

software supply chain securitySLSA Level 3CI/CD security hardeningsecrets managementzero trust architecturesecurity architecturepipeline hardeningDevSecOpssecurity complianceprovenance attestationGitLabsecurity posturesecurity strategycloud securityCI/CD securityzero trust

Deal Breakers

Lack of security architecture experience, No experience with DevSecOps, No familiarity with SLSA standards, Unable to work remotely, No leadership or mentoring experience

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile