IT Compliance works collaboratively with multiple functional teams throughout the GitLab organization. We partner with our Security Compliance and Legal teams to identify and manage privacy, data protection risks, and compliance requirements to help meet stakeholder expectations. We also partner with Management, Business Teams, and our Data Team to implement solutions.
Our work can be tracked in the IT Compliance GitLab Group.
Note The Compliance Access Review Project is where we are logging and storing the main issue IT Compliance uses to complete User Access Reviews. The actual User Access Review issues are still being tracked in our Access Request Project.
The IT Audit and Compliance function at GitLab is here to ensure as a company we are ready to pass a SOX Audit for our IT General Controls (ITGC). IT Audit and compliance builds the processes that allow us to stay compliant over time. We are specialized around Business Technology and that is our area of focus. Our work rolls up to the overall Security portfolio of Audit and Compliance.
Our IT Compliance Board board is where some of our work can be tracked. If you need help with anything or have any questions, you can add our label
IT Compliance or tag
@gitlab-com/business-ops/it-compliance in an issue. You can also find us hanging around in the
# business-operations slack channel.
The most common ITGCs:
GitLab’s IT Audit Function will focus on the following for the next 3 months: