Engineering Manager, AST: Composition Analysis at GitLab · Web3Vacancy
Jobs Companies Pricing Blog About Contact
For Recruiters
Live · Updated daily

Web3 Jobs & Crypto Jobs Where crypto teams hire. Where builders get found.

The #1 crypto-native job board for web3 jobs, crypto jobs & blockchain vacancies. Every role in the ecosystem — dev, design, marketing & more. Remote-first at top protocols, DAOs & companies.

500+Open Jobs
680+Companies
$180kAvg Salary
94%Remote Roles
Hiring in web3? Post a vacancy or search 5,000+ vetted crypto-native builders and reach out directly.
Analysing Your CV...
Extracting your experience, skills, and details...

Latest Crypto Job Vacancies

10 jobs found
No longer accepting applicationsThis role at GitLab has closed. Browse live web3 jobs instead.

Engineering Manager, AST: Composition Analysis

Remote
$80,500–$138,000
◆ 8/10 devtechweb3Other
Join Talent Pool
Get Discovered

No applications. Teams find and message you directly.

Drop your CV. web3 teams find you.
AI builds your profile in 60 seconds · PDF · drag or click
Upload CV
3-5d avg. to first message · 320+ hires made
No account needed. Teams find you and reach out directly.
5,000+ web3 builders in the pool
About this role

Join GitLab as an Engineering Manager for Composition Analysis, leading a team to enhance software composition analysis capabilities and improve security offerings in DevSecOps environments.

Description

As an Engineering Manager for Composition Analysis, you'll lead a team building the software composition analysis capabilities that help GitLab customers find and fix vulnerabilities in their application dependencies and software supply chain. You'll guide engineers working on software composition analysis and container scanning, and you'll be responsible for setting priorities, shaping product architecture, and running agile processes so that our security offerings stay effective, reliable, and easy to use in real DevSecOps environments. You'll balance complex, security-focused roadmaps and author project plans so that customers get a robust composition analysis experience within GitLab. In your first year, you'll drive key initiatives like auto-remediation of vulnerable packages and auto-fix breaking changes with AI, scanning unmanaged C/C++ dependencies, static reachability analysis, malicious package detection, and snippet detection for open source dependencies.

Responsibilities
  • Lead engineers across the Composition Analysis team, setting clear priorities and expectations.
  • Drive key security initiatives, including auto-remediation of vulnerable software packages, scanning unmanaged C/C++ dependencies, static reachability analysis, and snippet detection for open source dependencies.
  • Balance priorities and resources across the Composition Analysis team to ensure sustainable delivery and high-quality outcomes.
  • Author and maintain project plans for epics within the Composition Analysis team, aligning work, identifying dependencies, and ensuring quality delivery.
  • Run agile project management processes for the Composition Analysis team, including planning, estimation, and continuous improvement of delivery practices.
  • Provide guidance on the architecture of software composition analysis solutions, ensuring they are robust, scalable, and effective.
  • Collaborate closely with the Composition Analysis team to ensure consistent, high-quality approaches to application security across GitLab's platform.
Requirements
  • Background leading multiple technical teams or groups, ideally in application security or cloud security.
  • Practical understanding of software composition analysis, including how to assess and manage risks in application dependencies.
  • Familiarity with containerization technologies, package managers, and dependency management systems.
  • Experience working with or around open source security tooling (for example, Syft, Grype, Trivy, or similar tools).
  • Ability to plan and run agile project management processes for the Composition Analysis team, including coordinating priorities and dependencies.
  • Skill in guiding product and architecture decisions for security scanning tools, balancing technical constraints with customer needs.
  • Openness to candidates with transferable experience in security engineering, DevSecOps, or vulnerability management who are motivated to grow in application security leadership.
Job Details
Salary$80,500–$138,000
LocationRemote
AI Score★★★★★★★★☆☆ 8/10
PostedApr 23, 2026 (80d ago)
Tags & Skills
devtechweb3Otherremote
Tech Stack
application securitycloud securitysoftware composition analysiscontainerization technologiespackage managersdependency management systemsopen source security tooling

Similar Web3 Jobs

Browse Crypto Job Vacancies

The #1 Web3 Job Board for Crypto Jobs & Blockchain Careers

Web3Vacancy is the leading web3 job board for blockchain developers, DeFi engineers, smart contract auditors, NFT product managers, DAO operators, ZK researchers, and Web3 growth leads. We aggregate 2,400+ remote-first crypto jobs from top protocols, decentralized exchanges, layer-2 networks, AI-blockchain startups, and Web3 studios worldwide. Whether you are hiring or looking for your next blockchain job, Web3Vacancy is the go-to job board for the decentralized economy.

Find web3 jobs across every skill level and specialization. Solidity developers, Rust engineers, Move programmers, ZK circuit engineers, tokenomics designers, crypto legal counsel, Web3 community managers, and blockchain data analysts all find their next role here. New crypto job listings are added daily across Ethereum, Solana, Polygon, Arbitrum, Base, Cosmos, Sui, Aptos, and every emerging blockchain ecosystem.

Looking to start a web3 career? Explore our guides on web3 salaries, blockchain interview questions, and the top web3 companies hiring in 2026. New to blockchain? Start with our What Is Web3 guide and learn web3 development from scratch. Employers can post a web3 job or browse our web3 talent pool to hire blockchain developers directly.