All employees, as part of the onboarding process, are required to review policies and procedures which are included in the Employee Handbook. The Employee Handbook includes the Code of Conduct and Information Security Policy.
We need to demonstrate as part of new hire onboarding that policies and procedures are in place that define the dependencies between business processes, automated control activities, and technology general controls. New hires are required to review and acknowledge these policies and procedures in order to ensure awareness for GitLab's standards of conduct, information security policies and other policies outlined in the employee handbook.
This applies to all GitLab, Inc. employees
In order to ensure policies and procedures are reviewed including the Employee Handbook, Information Security Policy and Code of Conduct, every new employee at GitLab must acknowledge their review during the onboarding process.
Non-public information relating to this security control as well as links to the work associated with various phases of project work can be found in the Policy and Procedure Review control issue.