GitLab Continues Expanding Its Security Certification and Report Portfolio
GitLab strengthens security assurance at the highest international standard:
— GitLab Inc., the most comprehensive DevSecOps platform, today announced the successful expansion of its security certification and report portfolio.
GitLab received a SOC 2 Type 1 report for the recent GitLab Dedicated solution, which includes Security and Confidentiality criterion, and expanded its SOC 2 Type 2 report for GitLab.com to include the Availability Criteria.
GitLab also expanded its ISO/IEC 27001:2013 certification scope to include the GitLab Dedicated solution, and received a certification expansion against the ISO/IEC 27017:2015 for cloud security standards and ISO/IEC 27018:2019 privacy standards[^1].
“As a global company, it is our responsibility to ensure that our security program and practices are aligned with the highest international compliance requirements. We are deeply committed to expanding the scope of our security controls to meet these expectations and maintain user trust,” said David DeSanto, Chief Product Officer at GitLab. “Our investment in third-party accreditations helps ensure that our customers, from small businesses to highly regulated enterprises, can adopt GitLab’s DevSecOps platform with full confidence that their data will remain secure.”
In addition, GitLab Dedicated was included in the ISO/IEC 27001:2013 certification scope. GitLab Dedicated offers a new deployment option by making our DevSecOps platform available as a single-tenant SaaS solution. GitLab Dedicated allows organizations to leverage the efficiency of the cloud while further enabling customers to meet their own regulatory expectations in a completely isolated instance.
In 2022, GitLab expanded GitLab.com SOC reports to include the Availability criteria, and achieved certification expansion against the ISO/IEC 27017:2015 and ISO/IEC 27018:2019 standards.
GitLab continues to invest, iterate, and diversify its security and compliance program. Follow GitLab’s Trust Center for updates and more in-depth information about the company’s certifications. For self-serve access to security collateral, visit the GitLab Customer Assurance Package.
GitLab is the most comprehensive DevSecOps platform for software innovation. As the DevSecOps platform, GitLab provides one interface, one data store, one permissions model, one value stream, one set of reports, one spot to secure your code, one location to deploy to any cloud, and one place for everyone to contribute. The platform is the only true cloud-agnostic end-to-end DevSecOps platform that brings together all DevSecOps capabilities in one place.
With GitLab, organizations can create, deliver, and manage code quickly and continuously to translate business vision into reality. GitLab empowers customers and users to innovate faster, scale more easily, and serve and retain customers more effectively. Built on Open Source, GitLab works alongside its growing community, which is composed of thousands of developers and millions of users, to continuously deliver new DevOps innovations.
See what your team can do with a single platform for software delivery.
Get free trialWhen you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.
Cookie Policy
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, enabling you to securely log into the site, filling in forms, or using the customer checkout. GitLab processes any personal data collected through these cookies on the basis of our legitimate interest.
These cookies enable helpful but non-essential website functions that improve your website experience. By recognizing you when you return to our website, they may, for example, allow us to personalize our content for you or remember your preferences. If you do not allow these cookies then some or all of these services may not function properly. GitLab processes any personal data collected through these cookies on the basis of your consent
These cookies allow us and our third-party service providers to recognize and count the number of visitors on our websites and to see how visitors move around our websites when they are using it. This helps us improve our products and ensures that users can easily find what they need on our websites. These cookies usually generate aggregate statistics that are not associated with an individual. To the extent any personal data is collected through these cookies, GitLab processes that data on the basis of your consent.
These cookies enable different advertising related functions. They may allow us to record information about your visit to our websites, such as pages visited, links followed, and videos viewed so we can make our websites and the advertising displayed on it more relevant to your interests. They may be set through our website by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant advertisements on other websites. GitLab processes any personal data collected through these cookies on the basis of your consent.