Gitlab hero border pattern left svg Gitlab hero border pattern right svg

VUL.4.01 - Enterprise Antivirus Control Guidance

On this page

VUL.4.01 - Enterprise Antivirus

Control Statement

If applicable, GitLab has managed enterprise antivirus deployments and ensures the following:

Context

This control outlines the components of a successfully deployed antivirus program which helps add another layer of risk mitigation to the GitLab environment. The applicability in this control is left vague since we have to apply some reason to this control. We know there are some systems that either aren't possible to install antivirus software on or systems that wouldn't have any risk reduced by installing antivirus software. The intent of this control is to install this software anywhere it is feasible to and not to only where it is convenient.

Scope

This control applies to all GitLab production systems that can run antivirus software.

Ownership

TBD

Implementation Guidance

For detailed implementation guidance relevant to GitLab team-members, refer to the full guidance documentation.

For all reference links relevant to this control, refer to the full guidance documentation.

Examples of evidence an auditor might request to satisfy this control

For examples of evidence an auditor might request, refer to the full guidance documentation.

Framework Mapping