How GitLab built a security control framework from scratch
GitLab's Security Compliance team created a custom control framework to scale across multiple certifications and products — here's why and how you can, too.
Read PostBrowse articles from Security
Featured post
Recent posts
Security
Track vulnerability remediation with the updated GitLab Security Dashboard
Quickly prioritize remediation on high-risk projects and measure progress with vulnerability insights.
Security
GitLab Threat Intelligence Team reveals North Korean tradecraft
Gain threat intelligence about North Korea’s Contagious Interview and fake IT worker campaigns and learn how GitLab disrupted their operations.
Security
How to set up GitLab SAML SSO with Google Workspace
Learn how to automate user provisioning and sync permissions with Google groups with this step-by-step guide.
Security
GitLab Bug Bounty Program policy updates
Learn about the program's enhanced clarity and updated scope.
Security
Strengthening GitLab.com security: Mandatory multi-factor authentication
Learn how GitLab is implementing mandatory MFA as part of Secure by Design commitment and what it means for users.
Security
OWASP Top 10 2025: What's changed and why it matters
Explore new supply chain and error handling risks, ranking shifts, and remediation strategies for all 10 categories.
Security
AI-powered vulnerability triaging with GitLab Duo Security Agent
Learn how this GitLab Duo Agent Platform capability uses AI to prioritize vulnerabilities, reduce alert fatigue, and help teams focus on critical security risks.
Find out which plan works best for your team
Learn about pricingLearn about what GitLab can do for your team
Talk to an expert