The security department as a part of GitLab should follow and live up to the GitLab values and mission. The transparency value can be especially difficult for a security department to embrace and embody, as due to the confidentiality of their work, security people tend to be secretive and intransparent by default.
The intent of the security culture committee is to maintain a welcoming and transparent environment within the security department.
The committee goals are to:
The committee should draft the ways to reach these goals for an open, approachable and transparent culture within the security department. The department’s leadership should reinforce those ways by communicating and leading by example. The committee will provide an interface for all team members to express any concerns regarding the culture within the security department.
For the first iteration of this committee the following people were nominated:
There will be a six month rotation for the committee members, details on the rotation and follow up nominations will be decided on the first meeting of the committee.
Meetings will take place monthly on the third Thursday 15:00 UTC. The recordings will be available in the "GitLab Videos Recorded" folder.
To suggest a change the Security Culture template should be used to put up a suggestion for further discussion among the team if needed.
To be determined in the first committee meeting.