BlogSecurity23

Browse articles from Security

Recent posts

Security

Zero Trust at GitLab: Problems, goals, and coming challenges

We map out our Zero Trust goals, the challenges we expect to encounter along the way, and how we plan to address them.

Security

What we learned by taking our bug bounty program public

Six months into our public bug bounty program, we're taking stock of what's working and where we can make improvements.

Security

Turning the Adobe CCF into the GitLab Control Framework (it's all open source!)

We've implemented and adapted an open source compliance framework. Now we're sharing our process and tools so you can adapt and customize it too.

Security

Ask GitLab Security: Alexander Dietrich

What are the challenges and rewards of working security for a growing, cloud native company? We grill one of our senior security engineers.

Security

Ask GitLab Security: Roger Ostrander

What’s it like working day and night to kill spam, Bitcoin mining, malware and more? Meet our security team.

Security

When technology outpaces security compliance

Where does today's tech transformation leave tomorrow's security compliance? A senior security analyst tackles the question.

Security

Ask GitLab Security: Paul Harrison

What’s it like working to secure one of the most transparent organizations in the world? Meet our security team.

Security

How GitLab went about choosing the right compliance framework

Independent vs aggregate? Determining the most effective security controls approach for any organization has many considerations.

Security

Inside the GitLab public bug bounty program

Four months since going public with our bug bounty program, we dive into where we’re at, what success looks like, and what to expect down the road.

Ready to get started?

See what your team could do with a unified DevSecOps Platform

Get free trial

Find out which plan works best for your team

Learn about pricing

Learn about what GitLab can do for your team

Talk to an expert