Senior Product Manager, Static Analysis (SAST)

September 5, 2025

Apply for this job

Email *

Job Description

Description

Senior Product Manager, Static Analysis (SAST)

Join to apply for the Senior Product Manager, Static Analysis (SAST) role at GitLab

Senior Product Manager, Static Analysis (SAST)

Join to apply for the Senior Product Manager, Static Analysis (SAST) role at GitLab

GitLab is an open-core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating human progress. Our platform unites teams and organizations, breaking down barriers and redefining what’s possible in software development. Thanks to products like Duo Enterprise and Duo Agent Platform, customers get AI benefits at every stage of the SDLC.
The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier, with all team members expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact. GitLab is where careers accelerate, innovation flourishes, and every voice is valued. Our high-performance culture is driven by our values and continuous knowledge exchange, enabling our team members to reach their full potential while collaborating with industry leaders to solve complex problems. Co-create the future with us as we build technology that transforms how the world develops software.
An Overview Of This Role
Security is at the heart of GitLab Ultimate, and SAST is a key part of our customers’ journey to produce more secure software.
As the Senior Product Manager for Static Analysis, you’ll be responsible for GitLab’s code scanning products. You’ll focus primarily on SAST, and you’ll also maintain Infrastructure as Code Scanning and Code Quality. This role combines cutting-edge security technology and iterative product development at the scale of GitLab’s global customer base.
You’ll drive high-visibility initiatives like GitLab Advanced SAST, real-time SAST in the IDE, and our AI-powered GitLab Duo Vulnerability Resolution. The challenge? Balancing the technical complexity of static analysis with the practical needs of developers and security teams who rely on these tools daily.
You’ll work independently to shape product strategy while collaborating with experts across GitLab. You’ll work most closely with the Static Analysis engineering team, with years of experience in SAST R&D; our innovative Vulnerability Research team; and the rest of the Sec PM team, which manages all of GitLab’s security scanning, risk management, and governance features. Your decisions will directly impact GitLab Ultimate customers and help define the future of DevSecOps.
Here Are Some Examples Of Our Recent Releases

  • PHP support for Advanced SAST (release announcement)
  • Expanded CWE support in GitLab Duo Vulnerability Resolution (release announcement)
  • Significantly improved detection accuracy in Python, Go, and Java (epic)
  • Multi-core Advanced SAST scanning (release announcement)
  • GitLab Advanced SAST is now generally available (blog)

What You’ll Do