[{"data":1,"prerenderedAt":1201},["ShallowReactive",2],{"/en-us/the-source/security/how-to-strengthen-security-by-applying-devsecops-principles":3,"footer-en-us":49,"article-site-categories-en-us":392,"the-source-banner-en-us":397,"the-source-navigation-en-us":409,"the-source-newsletter-en-us":434,"footer-source-/en-us/the-source/security/how-to-strengthen-security-by-applying-devsecops-principles/":445,"how-to-strengthen-security-by-applying-devsecops-principles-article-hero-category-en-us":456,"how-to-strengthen-security-by-applying-devsecops-principles-the-source-source-cta-en-us":480,"how-to-strengthen-security-by-applying-devsecops-principles-category-en-us":495,"how-to-strengthen-security-by-applying-devsecops-principles-the-source-resources-en-us":507,"how-to-strengthen-security-by-applying-devsecops-principles-article-hero-author-en-us":538},{"_path":4,"_dir":5,"_draft":6,"_partial":6,"_locale":7,"config":8,"seo":12,"content":16,"type":40,"slug":41,"category":5,"_id":42,"_type":43,"title":44,"_source":45,"_file":46,"_stem":47,"_extension":48},"/en-us/the-source/security/how-to-strengthen-security-by-applying-devsecops-principles","security",false,"",{"layout":9,"template":10,"author":11,"featured":6},"the-source","TheSourceArticle","ncregan",{"title":13,"description":14,"ogImage":15},"How to strengthen security by applying DevSecOps principles","Learn how to apply DevSecOps principles today and discover the power of DevSecOps.","https://res.cloudinary.com/about-gitlab-com/image/upload/v1751464433/bdwagz0bt5bpgghjkout.png",{"title":13,"date":17,"description":14,"timeToRead":18,"heroImage":15,"keyTakeaways":19,"articleBody":23,"faq":24},"2023-02-23","4 min read",[20,21,22],"DevSecOps integrates security into the software development lifecycle, helping to reduce security issues without delaying delivery.","Automation in DevSecOps boosts security, streamlining threat detection and response.","Collaboration in DevSecOps shares the responsibility for security and fosters a unified approach to secure, rapid software development.","By following the DevSecOps principles, companies can ensure their applications are safe from malicious actors while delivering value quickly and efficiently. In this article, we'll take an in-depth look at DevSecOps principles and how they can help organizations stay ahead of the curve in terms of security. Let’s dive in.\n\n## What is DevSecOps?\n[DevSecOps](/topics/devsecops/) is an approach to software development that combines DevOps practices with security. This integration of security practices enables teams to create a secure and reliable product while delivering value quickly and efficiently. The successful execution of DevSecOps involves continuous integration, automation, and testing with the goal of accelerating time-to-market without sacrificing quality or security.\n\n## DevSecOps principles: An overview\n[DevSecOps principles](/blog/4-must-know-devops-principles/) enable a development team to build secure and dependable applications at speed through the execution of ingrained security testing and vulnerability scanning. By executing a DevSecOps approach, teams integrate security into the software development lifecycle (SDLC) from the initial design to continuous delivery and deployment. Doing so helps to prevent malicious actors from creating security issues by exploiting system vulnerabilities and reducing the overall risk of cyber attacks.\n\nDevSecOps principles include:\n\n### Automation and integration\nAutomation and integration are core principles of DevSecOps. The automation of security processes eliminates manual processes and assists in the development of secure and dependable applications while reducing the risk of future malicious attacks. You can set up and run security measures at multiple points during the development cycle to simplify and maximize security practices through the application of continuous security.\n\n### Continuous delivery and deployment\nContinuous delivery and deployment is another process that allows teams to respond to potential threats quickly and protect their software supply chain from malicious actors. [Continuously deploying applications using automated processes](/blog/cd-solution-overview/) makes it possible to rapidly develop new features and products while ensuring application security and quality.\n\n### A collaborative approach to security\nSecurity is a fundamental part of DevSecOps. Ensuring that applications remain secure and reliable requires [a highly collaborative approach](/topics/version-control/software-team-collaboration/) with ongoing and multiple security checks. It is necessary for all stakeholders involved in the development process to be engaged in the security process.\n\nSecurity teams must work with developers to ensure that applications are designed with [appropriate security controls](/topics/devsecops/devsecops-security-checklist/) and minimum security vulnerabilities. Simultaneously, for applications to get deployed and monitored securely, operations need to collaborate with security teams. This cross-functional collaboration ensures that all phases of the SDLC are interwoven with security best practices, resulting in a more resilient codebase.\n\n### Security at every stage of the SDLC\nEmploying security at every stage of the SDLC ensures the efficient development of secure applications without sacrificing quality. It is essential to cover  [every stage of the lifecycle](/blog/top-10-gitlab-hacks/) from design to development, and deployment.\n\nFor the process to be effective, developers must design applications with appropriate security controls, and operations teams should deploy and monitor them securely.\n\n### Proactive monitoring and response strategies\nProactive monitoring and response strategies are essential for maintaining the security of applications throughout their lifespan. [Monitoring](/blog/working-with-performance-metrics/) is achieved through the deployment of automated tools that identify potential vulnerabilities and alert teams when they arise.\n\nDoing so helps to minimize risk and ensure consistency across the organization. The employment of a comprehensive response strategy allows for issues to be identified and solved before they compound into security risks.\n\n## Benefits of implementing DevSecOps\nImplementing DevSecOps offers numerous benefits to organizations:\n1. It helps create trust with customers by providing more secure software.\n2. It prevents malicious actors from exploiting system vulnerabilities and improves the security of systems.\n3. The DevSecOps methodology enables teams to deliver value quickly while ensuring the highest levels of security and adherence to compliance requirements.\n4. By integrating security practices into the software development pipeline from design to deployment, teams can identify and address potential risks promptly, thus reducing the risk of malicious attacks.\n5. DevSecOps helps organizations stay ahead of potential threats and remain competitive in their markets.\n\n[Implementing DevSecOps](/blog/whats-next-for-devsecops/) is essential for any organization looking to protect its systems from malicious attacks while delivering value quickly and efficiently. Additionally, integrating security into the entire software development lifecycle ensures that all new applications are secure from the very beginning. Instilling a DevSecOps culture and approach maximizes the overall efficiency and quality of the software development process.",[25,28,31,34,37],{"header":26,"content":27},"What are the benefits of implementing DevSecOps for organizations?","Key benefits include:\n- Enhanced security by preventing vulnerabilities from entering the codebase\n- Faster time-to-market with secure, continuous delivery pipelines\n- Improved compliance with regulatory standards through automated security checks\n- Increased customer trust and confidence due to more secure software products\n- Reduced risk of cyberattacks by proactively identifying and mitigating security threats",{"header":29,"content":30},"How can organizations successfully implement DevSecOps principles?","Organizations can successfully implement DevSecOps by:\n- Automating security checks within CI/CD pipelines\n- Promoting a collaborative culture where security is a shared responsibility among developers, operations, and security teams\n- Training development teams on secure coding practices\n- Integrating proactive monitoring and incident response strategies to address security threats swiftly\n- Using comprehensive DevSecOps platforms like GitLab that provide built-in security tools, vulnerability scanning, and compliance monitoring",{"header":32,"content":33},"What is DevSecOps and how does it differ from traditional DevOps?","DevSecOps is an approach that integrates security practices into every phase of the software development lifecycle (SDLC). Unlike traditional DevOps, which focuses on continuous integration and delivery, DevSecOps embeds security checks, vulnerability scanning, and compliance controls throughout the development and deployment processes, ensuring secure and reliable applications.",{"header":35,"content":36},"What are the core principles of DevSecOps?","Core principles of DevSecOps include:\n- __Automation and integration__: Automating security checks and vulnerability scans throughout the CI/CD pipeline to minimize human error and accelerate secure deployments.\n- __Continuous delivery and deployment__: Ensuring rapid development and deployment of secure applications with automated security validations.\n- __Collaboration across teams__: Fostering cross-functional collaboration between development, security, and operations teams for integrated security practices.\n- __Security at every stage__: Embedding security controls from design to deployment to ensure comprehensive protection.\n- __Proactive monitoring and response__: Implementing continuous monitoring and response strategies to identify and mitigate risks promptly.",{"header":38,"content":39},"How does DevSecOps improve security without slowing down development?","DevSecOps automates security checks and integrates them into the CI/CD pipeline, allowing security validations to occur alongside development and testing. This approach minimizes manual security interventions, reducing bottlenecks and enabling rapid, secure deployments without compromising speed or agility.","article","how-to-strengthen-security-by-applying-devsecops-principles","content:en-us:the-source:security:how-to-strengthen-security-by-applying-devsecops-principles.yml","yaml","How To Strengthen Security By Applying Devsecops Principles","content","en-us/the-source/security/how-to-strengthen-security-by-applying-devsecops-principles.yml","en-us/the-source/security/how-to-strengthen-security-by-applying-devsecops-principles","yml",{"_path":50,"_dir":51,"_draft":6,"_partial":6,"_locale":7,"data":52,"_id":388,"_type":43,"title":389,"_source":45,"_file":390,"_stem":391,"_extension":48},"/shared/en-us/main-footer","en-us",{"text":53,"source":54,"edit":60,"contribute":65,"config":70,"items":75,"minimal":380},"Git is a trademark of Software Freedom Conservancy and our use of 'GitLab' is under license",{"text":55,"config":56},"View page source",{"href":57,"dataGaName":58,"dataGaLocation":59},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/","page source","footer",{"text":61,"config":62},"Edit this page",{"href":63,"dataGaName":64,"dataGaLocation":59},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/content/","web ide",{"text":66,"config":67},"Please contribute",{"href":68,"dataGaName":69,"dataGaLocation":59},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/CONTRIBUTING.md/","please contribute",{"twitter":71,"facebook":72,"youtube":73,"linkedin":74},"https://twitter.com/gitlab","https://www.facebook.com/gitlab","https://www.youtube.com/channel/UCnMGQ8QHMAnVIsI3xJrihhg","https://www.linkedin.com/company/gitlab-com",[76,134,191,250,318],{"title":77,"links":78,"subMenu":94},"Pricing",[79,84,89],{"text":80,"config":81},"View plans",{"href":82,"dataGaName":83,"dataGaLocation":59},"/pricing/","view plans",{"text":85,"config":86},"Why Premium?",{"href":87,"dataGaName":88,"dataGaLocation":59},"/pricing/premium/","why premium",{"text":90,"config":91},"Why Ultimate?",{"href":92,"dataGaName":93,"dataGaLocation":59},"/pricing/ultimate/","why ultimate",[95],{"title":96,"links":97},"Contact Us",[98,103,108,113,118,123,128],{"text":99,"config":100},"Contact sales",{"href":101,"dataGaName":102,"dataGaLocation":59},"/sales/","sales",{"text":104,"config":105},"Support portal",{"href":106,"dataGaName":107,"dataGaLocation":59},"https://support.gitlab.com","support portal",{"text":109,"config":110},"Customer portal",{"href":111,"dataGaName":112,"dataGaLocation":59},"https://customers.gitlab.com/customers/sign_in/","customer portal",{"text":114,"config":115},"Status",{"href":116,"dataGaName":117,"dataGaLocation":59},"https://status.gitlab.com/","status",{"text":119,"config":120},"Terms of use",{"href":121,"dataGaName":122,"dataGaLocation":59},"/terms/","terms of use",{"text":124,"config":125},"Privacy statement",{"href":126,"dataGaName":127,"dataGaLocation":59},"/privacy/","privacy statement",{"text":129,"config":130},"Cookie preferences",{"dataGaName":131,"dataGaLocation":59,"id":132,"isOneTrustButton":133},"cookie preferences","ot-sdk-btn",true,{"title":135,"links":136,"subMenu":147},"Product",[137,142],{"text":138,"config":139},"DevSecOps platform",{"href":140,"dataGaName":141,"dataGaLocation":59},"/platform/","devsecops platform",{"text":143,"config":144},"AI-Assisted Development",{"href":145,"dataGaName":146,"dataGaLocation":59},"/gitlab-duo/","ai-assisted development",[148],{"title":149,"links":150},"Topics",[151,156,161,166,171,176,181,186],{"text":152,"config":153},"CICD",{"href":154,"dataGaName":155,"dataGaLocation":59},"/topics/ci-cd/","cicd",{"text":157,"config":158},"GitOps",{"href":159,"dataGaName":160,"dataGaLocation":59},"/topics/gitops/","gitops",{"text":162,"config":163},"DevOps",{"href":164,"dataGaName":165,"dataGaLocation":59},"/topics/devops/","devops",{"text":167,"config":168},"Version Control",{"href":169,"dataGaName":170,"dataGaLocation":59},"/topics/version-control/","version control",{"text":172,"config":173},"DevSecOps",{"href":174,"dataGaName":175,"dataGaLocation":59},"/topics/devsecops/","devsecops",{"text":177,"config":178},"Cloud Native",{"href":179,"dataGaName":180,"dataGaLocation":59},"/topics/cloud-native/","cloud native",{"text":182,"config":183},"AI for Coding",{"href":184,"dataGaName":185,"dataGaLocation":59},"/topics/devops/ai-for-coding/","ai for coding",{"text":187,"config":188},"Agentic AI",{"href":189,"dataGaName":190,"dataGaLocation":59},"/topics/agentic-ai/","agentic ai",{"title":192,"links":193},"Solutions",[194,198,203,208,213,217,222,225,230,235,240,245],{"text":195,"config":196},"Application Security Testing",{"href":197,"dataGaName":195,"dataGaLocation":59},"/solutions/application-security-testing/",{"text":199,"config":200},"Automated software delivery",{"href":201,"dataGaName":202,"dataGaLocation":59},"/solutions/delivery-automation/","automated software delivery",{"text":204,"config":205},"Agile development",{"href":206,"dataGaName":207,"dataGaLocation":59},"/solutions/agile-delivery/","agile delivery",{"text":209,"config":210},"SCM",{"href":211,"dataGaName":212,"dataGaLocation":59},"/solutions/source-code-management/","source code management",{"text":152,"config":214},{"href":215,"dataGaName":216,"dataGaLocation":59},"/solutions/continuous-integration/","continuous integration & delivery",{"text":218,"config":219},"Value stream management",{"href":220,"dataGaName":221,"dataGaLocation":59},"/solutions/value-stream-management/","value stream management",{"text":157,"config":223},{"href":224,"dataGaName":160,"dataGaLocation":59},"/solutions/gitops/",{"text":226,"config":227},"Enterprise",{"href":228,"dataGaName":229,"dataGaLocation":59},"/enterprise/","enterprise",{"text":231,"config":232},"Small business",{"href":233,"dataGaName":234,"dataGaLocation":59},"/small-business/","small business",{"text":236,"config":237},"Public sector",{"href":238,"dataGaName":239,"dataGaLocation":59},"/solutions/public-sector/","public sector",{"text":241,"config":242},"Education",{"href":243,"dataGaName":244,"dataGaLocation":59},"/solutions/education/","education",{"text":246,"config":247},"Financial services",{"href":248,"dataGaName":249,"dataGaLocation":59},"/solutions/finance/","financial services",{"title":251,"links":252},"Resources",[253,258,263,268,273,278,283,288,293,298,303,308,313],{"text":254,"config":255},"Install",{"href":256,"dataGaName":257,"dataGaLocation":59},"/install/","install",{"text":259,"config":260},"Quick start guides",{"href":261,"dataGaName":262,"dataGaLocation":59},"/get-started/","quick setup checklists",{"text":264,"config":265},"Learn",{"href":266,"dataGaName":267,"dataGaLocation":59},"https://university.gitlab.com/","learn",{"text":269,"config":270},"Product documentation",{"href":271,"dataGaName":272,"dataGaLocation":59},"https://docs.gitlab.com/","docs",{"text":274,"config":275},"Blog",{"href":276,"dataGaName":277,"dataGaLocation":59},"/blog/","blog",{"text":279,"config":280},"Customer success stories",{"href":281,"dataGaName":282,"dataGaLocation":59},"/customers/","customer success stories",{"text":284,"config":285},"Remote",{"href":286,"dataGaName":287,"dataGaLocation":59},"https://handbook.gitlab.com/handbook/company/culture/all-remote/","remote",{"text":289,"config":290},"GitLab Services",{"href":291,"dataGaName":292,"dataGaLocation":59},"/services/","services",{"text":294,"config":295},"TeamOps",{"href":296,"dataGaName":297,"dataGaLocation":59},"/teamops/","teamops",{"text":299,"config":300},"Community",{"href":301,"dataGaName":302,"dataGaLocation":59},"/community/","community",{"text":304,"config":305},"Forum",{"href":306,"dataGaName":307,"dataGaLocation":59},"https://forum.gitlab.com/","forum",{"text":309,"config":310},"Events",{"href":311,"dataGaName":312,"dataGaLocation":59},"/events/","events",{"text":314,"config":315},"Partners",{"href":316,"dataGaName":317,"dataGaLocation":59},"/partners/","partners",{"title":319,"links":320},"Company",[321,326,331,336,341,346,351,355,360,365,370,375],{"text":322,"config":323},"About",{"href":324,"dataGaName":325,"dataGaLocation":59},"/company/","company",{"text":327,"config":328},"Jobs",{"href":329,"dataGaName":330,"dataGaLocation":59},"/jobs/","jobs",{"text":332,"config":333},"Leadership",{"href":334,"dataGaName":335,"dataGaLocation":59},"/company/team/e-group/","leadership",{"text":337,"config":338},"Team",{"href":339,"dataGaName":340,"dataGaLocation":59},"/company/team/","team",{"text":342,"config":343},"Handbook",{"href":344,"dataGaName":345,"dataGaLocation":59},"https://handbook.gitlab.com/","handbook",{"text":347,"config":348},"Investor relations",{"href":349,"dataGaName":350,"dataGaLocation":59},"https://ir.gitlab.com/","investor relations",{"text":352,"config":353},"Sustainability",{"href":354,"dataGaName":352,"dataGaLocation":59},"/sustainability/",{"text":356,"config":357},"Diversity, inclusion and belonging (DIB)",{"href":358,"dataGaName":359,"dataGaLocation":59},"/diversity-inclusion-belonging/","Diversity, inclusion and belonging",{"text":361,"config":362},"Trust Center",{"href":363,"dataGaName":364,"dataGaLocation":59},"/security/","trust center",{"text":366,"config":367},"Newsletter",{"href":368,"dataGaName":369,"dataGaLocation":59},"/company/contact/","newsletter",{"text":371,"config":372},"Press",{"href":373,"dataGaName":374,"dataGaLocation":59},"/press/","press",{"text":376,"config":377},"Modern Slavery Transparency Statement",{"href":378,"dataGaName":379,"dataGaLocation":59},"https://handbook.gitlab.com/handbook/legal/modern-slavery-act-transparency-statement/","modern slavery transparency statement",{"items":381},[382,384,386],{"text":119,"config":383},{"href":121,"dataGaName":122,"dataGaLocation":59},{"text":124,"config":385},{"href":126,"dataGaName":127,"dataGaLocation":59},{"text":129,"config":387},{"dataGaName":131,"dataGaLocation":59,"id":132,"isOneTrustButton":133},"content:shared:en-us:main-footer.yml","Main Footer","shared/en-us/main-footer.yml","shared/en-us/main-footer",{"categoryNames":393},{"ai":394,"platform":395,"security":396},"Artificial Intelligence","Platform & Infrastructure","Security & Compliance",{"_path":398,"_dir":399,"_draft":6,"_partial":6,"_locale":7,"visibility":133,"id":400,"title":401,"button":402,"_id":406,"_type":43,"_source":45,"_file":407,"_stem":408,"_extension":48},"/shared/en-us/the-source/banner/the-economics-of-software-innovation-2025-08-18","banner","The Economics of Software Innovation","The Economics of Software Innovation—AI’s $750 Billion Opportunity",{"config":403,"text":405},{"href":404},"/software-innovation-report/","Get the research report","content:shared:en-us:the-source:banner:the-economics-of-software-innovation-2025-08-18.yml","shared/en-us/the-source/banner/the-economics-of-software-innovation-2025-08-18.yml","shared/en-us/the-source/banner/the-economics-of-software-innovation-2025-08-18",{"_path":410,"_dir":9,"_draft":6,"_partial":6,"_locale":7,"logo":411,"subscribeLink":416,"navItems":420,"_id":430,"_type":43,"title":431,"_source":45,"_file":432,"_stem":433,"_extension":48},"/shared/en-us/the-source/navigation",{"altText":412,"config":413},"the source logo",{"src":414,"href":415},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1750191004/t7wz1klfb2kxkezksv9t.svg","/the-source/",{"text":417,"config":418},"Subscribe",{"href":419},"#subscribe",[421,424,427],{"text":394,"config":422},{"href":423},"/the-source/ai/",{"text":396,"config":425},{"href":426},"/the-source/security/",{"text":395,"config":428},{"href":429},"/the-source/platform/","content:shared:en-us:the-source:navigation.yml","Navigation","shared/en-us/the-source/navigation.yml","shared/en-us/the-source/navigation",{"_path":435,"_dir":9,"_draft":6,"_partial":6,"_locale":7,"title":436,"description":437,"submitMessage":438,"formData":439,"_id":442,"_type":43,"_source":45,"_file":443,"_stem":444,"_extension":48},"/shared/en-us/the-source/newsletter","The Source Newsletter","Stay updated with insights for the future of software development.","You have successfully signed up for The Source’s newsletter.",{"config":440},{"formId":441,"formName":369,"hideRequiredLabel":133},1077,"content:shared:en-us:the-source:newsletter.yml","shared/en-us/the-source/newsletter.yml","shared/en-us/the-source/newsletter",{"_path":4,"_dir":5,"_draft":6,"_partial":6,"_locale":7,"config":446,"seo":447,"content":448,"type":40,"slug":41,"category":5,"_id":42,"_type":43,"title":44,"_source":45,"_file":46,"_stem":47,"_extension":48},{"layout":9,"template":10,"author":11,"featured":6},{"title":13,"description":14,"ogImage":15},{"title":13,"date":17,"description":14,"timeToRead":18,"heroImage":15,"keyTakeaways":449,"articleBody":23,"faq":450},[20,21,22],[451,452,453,454,455],{"header":26,"content":27},{"header":29,"content":30},{"header":32,"content":33},{"header":35,"content":36},{"header":38,"content":39},{"_path":457,"_dir":9,"_draft":6,"_partial":6,"_locale":7,"type":458,"config":459,"seo":460,"content":463,"slug":5,"_id":477,"_type":43,"title":7,"_source":45,"_file":478,"_stem":479,"_extension":48},"/en-us/the-source/security","category",{"layout":9},{"title":396,"description":461,"ogImage":462},"Get up to speed on how organizations can ensure they're staying on top of evolving security threats and compliance requirements.","https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463273/aplkxrvwpii26xao5yhi.png",[464,469],{"componentName":465,"type":465,"componentContent":466},"TheSourceCategoryHero",{"title":396,"description":461,"image":467},{"config":468},{"src":462},{"componentName":470,"type":470,"componentContent":471},"TheSourceCategoryMainSection",{"config":472},{"sourceCTAs":473},[474,475,476],"source-lp-guide-to-dynamic-sboms","source-lp-devsecops-the-key-to-modern-security-resilience","application-security-in-the-digital-age","content:en-us:the-source:security:index.yml","en-us/the-source/security/index.yml","en-us/the-source/security/index",{"_path":481,"_dir":482,"_draft":6,"_partial":6,"_locale":7,"config":483,"title":484,"description":485,"link":486,"_id":492,"_type":43,"_source":45,"_file":493,"_stem":494,"_extension":48},"/shared/en-us/the-source/source-lp-ctas/application-security-in-the-digital-age","source-lp-ctas",{"slug":476},"Application security in the digital age","Read our survey findings from more than 5,000 DevSecOps professionals worldwide for insights on how organizations are grappling with increasing attack surfaces and changing attitudes towards security and AI.",{"text":487,"config":488},"Read the report",{"href":489,"dataGaName":490,"dataGaLocation":491},"/developer-survey/2024/security-compliance/","Application Security in the Digital Age","thesource","content:shared:en-us:the-source:source-lp-ctas:application-security-in-the-digital-age.yml","shared/en-us/the-source/source-lp-ctas/application-security-in-the-digital-age.yml","shared/en-us/the-source/source-lp-ctas/application-security-in-the-digital-age",{"_path":457,"_dir":9,"_draft":6,"_partial":6,"_locale":7,"type":458,"config":496,"seo":497,"content":498,"slug":5,"_id":477,"_type":43,"title":7,"_source":45,"_file":478,"_stem":479,"_extension":48},{"layout":9},{"title":396,"description":461,"ogImage":462},[499,503],{"componentName":465,"type":465,"componentContent":500},{"title":396,"description":461,"image":501},{"config":502},{"src":462},{"componentName":470,"type":470,"componentContent":504},{"config":505},{"sourceCTAs":506},[474,475,476],[508,512,525],{"_path":481,"_dir":482,"_draft":6,"_partial":6,"_locale":7,"config":509,"title":484,"description":485,"link":510,"_id":492,"_type":43,"_source":45,"_file":493,"_stem":494,"_extension":48},{"slug":476},{"text":487,"config":511},{"href":489,"dataGaName":490,"dataGaLocation":491},{"_path":513,"_dir":482,"_draft":6,"_partial":6,"_locale":7,"config":514,"title":515,"description":516,"link":517,"_id":522,"_type":43,"_source":45,"_file":523,"_stem":524,"_extension":48},"/shared/en-us/the-source/source-lp-ctas/source-lp-devsecops-the-key-to-modern-security-resilience",{"slug":475},"DevSecOps: The key to modern security resilience","Learn how embedding security in development can slash incident response time by 720x and save millions in security costs annually.",{"text":518,"config":519},"Download the guide",{"href":520,"dataGaName":521,"dataGaLocation":491},"/the-source/security/devsecops-the-key-to-modern-security-resilience/","DevSecOps the key to modern security resilience","content:shared:en-us:the-source:source-lp-ctas:source-lp-devsecops-the-key-to-modern-security-resilience.yml","shared/en-us/the-source/source-lp-ctas/source-lp-devsecops-the-key-to-modern-security-resilience.yml","shared/en-us/the-source/source-lp-ctas/source-lp-devsecops-the-key-to-modern-security-resilience",{"_path":526,"_dir":482,"_draft":6,"_partial":6,"_locale":7,"config":527,"title":528,"description":529,"link":530,"_id":535,"_type":43,"_source":45,"_file":536,"_stem":537,"_extension":48},"/shared/en-us/the-source/source-lp-ctas/source-lp-guide-to-dynamic-sboms",{"slug":474},"Guide to dynamic SBOMs: An integral element of modern software development","Learn how to gain visibility into previously unidentified organizational risks with a software bill of materials (SBOM).",{"text":531,"config":532},"Read the guide",{"href":533,"dataGaName":534,"dataGaLocation":491},"/the-source/security/guide-to-dynamic-sboms/","Guide to Dynamic SBOMs","content:shared:en-us:the-source:source-lp-ctas:source-lp-guide-to-dynamic-sboms.yml","shared/en-us/the-source/source-lp-ctas/source-lp-guide-to-dynamic-sboms.yml","shared/en-us/the-source/source-lp-ctas/source-lp-guide-to-dynamic-sboms",[539,564,580,598,614,634,655,677,693,712,734,752,773,789,808,825,843,863,881,899,919,938,959,980,996,1012,1032,1050,1067,1084,1105,1123,1142,1158,1179],{"_path":540,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":542,"seo":543,"content":545,"type":559,"slug":560,"_id":561,"_type":43,"title":544,"_source":45,"_file":562,"_stem":563,"_extension":48},"/en-us/the-source/authors/amanda-rueda","authors",{"layout":9},{"title":544},"Amanda Rueda",[546,557],{"type":547,"componentName":547,"componentContent":548},"TheSourceAuthorHero",{"config":549,"name":544,"role":552,"bio":553,"headshot":554},{"gitlabHandle":550,"linkedInProfileUrl":551},"amandarueda","https://www.linkedin.com/in/amandamrueda/","Senior Product Manager","Amanda Rueda is a Senior Product Manager at GitLab, specializing in strategic product vision, agile planning, and leveraging AI to enhance workflows and user experiences. Amanda is a thought leader in agile planning and product management workflows, and enjoys building GitLab features that drive team collaboration, transparent project management, and high-performing teams.",{"altText":544,"config":555},{"src":556},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463383/osecw1pzbxvb7fhqhiky.png",{"componentName":558,"type":558},"TheSourceArticlesList","author","amanda-rueda","content:en-us:the-source:authors:amanda-rueda.yml","en-us/the-source/authors/amanda-rueda.yml","en-us/the-source/authors/amanda-rueda",{"_path":565,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":566,"seo":567,"content":569,"type":559,"slug":576,"_id":577,"_type":43,"title":568,"_source":45,"_file":578,"_stem":579,"_extension":48},"/en-us/the-source/authors/andre-michael-braun",{"layout":9},{"title":568},"Andre Michael Braun",[570,575],{"type":547,"componentName":547,"componentContent":571},{"name":568,"headshot":572},{"altText":568,"config":573},{"src":574},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463336/yl27k7wdlnkzsizwknn1.jpg",{"componentName":558,"type":558},"andre-michael-braun","content:en-us:the-source:authors:andre-michael-braun.yml","en-us/the-source/authors/andre-michael-braun.yml","en-us/the-source/authors/andre-michael-braun",{"_path":581,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":582,"seo":583,"content":585,"type":559,"slug":594,"_id":595,"_type":43,"title":584,"_source":45,"_file":596,"_stem":597,"_extension":48},"/en-us/the-source/authors/andrew-haschka",{"layout":9},{"title":584},"Andrew Haschka",[586,593],{"type":547,"componentName":547,"componentContent":587},{"name":584,"role":588,"bio":589,"headshot":590},"Field CTO, Asia Pacific & Japan","Andrew Haschka is the CTO for Asia Pacific & Japan at GitLab, acting as the trusted advisor to GitLab partners and customers. Andrew takes a consultative approach to address common and unique business requirements. He provides subject matter expertise and industry experience throughout the customer’s modernisation journey, working with product management and engineering teams to evolve product features to meet market demand.",{"altText":584,"config":591},{"src":592},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463349/z1qnc4uxmqgg3hnm3da4.png",{"componentName":558,"type":558},"andrew-haschka","content:en-us:the-source:authors:andrew-haschka.yml","en-us/the-source/authors/andrew-haschka.yml","en-us/the-source/authors/andrew-haschka",{"_path":599,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":600,"seo":601,"content":603,"type":559,"slug":610,"_id":611,"_type":43,"title":602,"_source":45,"_file":612,"_stem":613,"_extension":48},"/en-us/the-source/authors/ayoub-fandi",{"layout":9},{"title":602},"Ayoub Fandi",[604,609],{"componentName":547,"type":547,"componentContent":605},{"name":602,"headshot":606},{"altText":602,"config":607},{"src":608},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463329/wyp554loeyoibx3ozren.jpg",{"componentName":558,"type":558},"ayoub-fandi","content:en-us:the-source:authors:ayoub-fandi.yml","en-us/the-source/authors/ayoub-fandi.yml","en-us/the-source/authors/ayoub-fandi",{"_path":615,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":616,"seo":617,"content":619,"type":559,"slug":630,"_id":631,"_type":43,"title":618,"_source":45,"_file":632,"_stem":633,"_extension":48},"/en-us/the-source/authors/bob-stevens",{"layout":9},{"title":618},"Bob Stevens",[620,629],{"componentName":547,"type":547,"componentContent":621},{"config":622,"name":618,"role":625,"headshot":626},{"gitlabHandle":623,"linkedInProfileUrl":624},"bstevens1","https://www.linkedin.com/in/bob-stevens-1237564/","Public Sector Area Vice President, GitLab",{"altText":618,"config":627},{"src":628},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1752687939/mv3lhtimdzr8jmfqmbk1.jpg",{"componentName":558,"type":558},"bob-stevens","content:en-us:the-source:authors:bob-stevens.yml","en-us/the-source/authors/bob-stevens.yml","en-us/the-source/authors/bob-stevens",{"_path":635,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":636,"seo":637,"content":639,"type":559,"slug":651,"_id":652,"_type":43,"title":638,"_source":45,"_file":653,"_stem":654,"_extension":48},"/en-us/the-source/authors/brian-wald",{"layout":9},{"title":638},"Brian Wald",[640,650],{"componentName":547,"type":547,"componentContent":641},{"config":642,"name":638,"role":645,"bio":646,"headshot":647},{"gitlabHandle":643,"linkedInProfileUrl":644},"brianwald","https://www.linkedin.com/in/brianwald/","Head of Global Field CTO org","Brian Wald is Head of Global Field CTO org at GitLab. He leads a dynamic team of Field CTOs dedicated to transforming enterprise software development practices.",{"altText":638,"config":648},{"src":649},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463417/fugpbux9miqbdx3wewtu.jpg",{"componentName":558,"type":558},"brian-wald","content:en-us:the-source:authors:brian-wald.yml","en-us/the-source/authors/brian-wald.yml","en-us/the-source/authors/brian-wald",{"_path":656,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":657,"seo":658,"content":660,"type":559,"slug":673,"_id":674,"_type":43,"title":659,"_source":45,"_file":675,"_stem":676,"_extension":48},"/en-us/the-source/authors/bryan-ross",{"layout":9},{"title":659},"Bryan Ross",[661,672],{"componentName":547,"type":547,"componentContent":662},{"config":663,"name":659,"role":667,"bio":668,"headshot":669},{"gitlabHandle":664,"twitterXProfileUrl":665,"linkedInProfileUrl":666},"bryanrossuk","https://twitter.com/bryanrossuk","https://www.linkedin.com/in/bryanross","Field CTO","With over 15 years of industry experience as a senior IT leader, Bryan helps customers realize business value from IT faster. Equally comfortable speaking with executives and engineers alike, he bridges the gap between technical and business stakeholders through compelling storytelling and real-world examples. With a knack for delivering authentic, impactful messages, he enjoys helping others at the intersection of technology, people and process.",{"altText":659,"config":670},{"src":671},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463324/mvdyvskii4hltdrgqxom.jpg",{"componentName":558,"type":558},"bryan-ross","content:en-us:the-source:authors:bryan-ross.yml","en-us/the-source/authors/bryan-ross.yml","en-us/the-source/authors/bryan-ross",{"_path":678,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":679,"seo":680,"content":682,"type":559,"slug":689,"_id":690,"_type":43,"title":681,"_source":45,"_file":691,"_stem":692,"_extension":48},"/en-us/the-source/authors/chandler-gibbons",{"layout":9},{"title":681},"Chandler Gibbons",[683,688],{"componentName":547,"type":547,"componentContent":684},{"name":681,"headshot":685},{"altText":681,"config":686},{"src":687},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463362/o7g9fqtqtjvegfwniuxh.jpg",{"componentName":558,"type":558},"chandler-gibbons","content:en-us:the-source:authors:chandler-gibbons.yml","en-us/the-source/authors/chandler-gibbons.yml","en-us/the-source/authors/chandler-gibbons",{"_path":694,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":695,"seo":696,"content":698,"type":559,"slug":708,"_id":709,"_type":43,"title":697,"_source":45,"_file":710,"_stem":711,"_extension":48},"/en-us/the-source/authors/dave-steer",{"layout":9},{"title":697},"Dave Steer",[699,707],{"componentName":547,"type":547,"componentContent":700},{"config":701,"name":697,"role":703,"headshot":704},{"gitlabHandle":702},"dsteer","Vice President, Product Marketing",{"altText":697,"config":705},{"src":706},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463457/zbtapdkglu3yb9suaq7w.png",{"componentName":558,"type":558},"dave-steer","content:en-us:the-source:authors:dave-steer.yml","en-us/the-source/authors/dave-steer.yml","en-us/the-source/authors/dave-steer",{"_path":713,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":714,"seo":715,"content":717,"type":559,"slug":729,"_id":730,"_type":43,"title":731,"_source":45,"_file":732,"_stem":733,"_extension":48},"/en-us/the-source/authors/ddesanto",{"layout":9},{"title":716},"David DeSanto",[718,728],{"componentName":547,"type":547,"componentContent":719},{"config":720,"name":716,"role":723,"bio":724,"headshot":725},{"gitlabHandle":721,"linkedInProfileUrl":722},"david","https://www.linkedin.com/in/ddesanto/","Chief Product Officer","David DeSanto is the Chief Product Officer at GitLab Inc., where he leads GitLab’s product division to define and execute GitLab's product vision and roadmap. David is responsible for ensuring the company builds, ships, and supports the platform that reinforces GitLab's leadership in the DevSecOps platform market.",{"altText":716,"config":726},{"src":727},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463446/bgnljs84zcsxj0t6nvix.png",{"componentName":558,"type":558},"ddesanto","content:en-us:the-source:authors:ddesanto.yml","Ddesanto","en-us/the-source/authors/ddesanto.yml","en-us/the-source/authors/ddesanto",{"_path":735,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":736,"seo":737,"content":739,"type":559,"slug":747,"_id":748,"_type":43,"title":749,"_source":45,"_file":750,"_stem":751,"_extension":48},"/en-us/the-source/authors/derek-debellis",{"layout":9},{"title":738},"Derek DeBellis",[740,746],{"componentName":547,"type":547,"componentContent":741},{"name":738,"role":742,"headshot":743},"Lead Researcher, Google's DORA team ",{"altText":738,"config":744},{"src":745},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463385/sbnjwfaguszi5g2smzr7.png",{"componentName":558,"type":558},"derek-debellis","content:en-us:the-source:authors:derek-debellis.yml","Derek Debellis","en-us/the-source/authors/derek-debellis.yml","en-us/the-source/authors/derek-debellis",{"_path":753,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":754,"seo":755,"content":757,"type":559,"slug":769,"_id":770,"_type":43,"title":756,"_source":45,"_file":771,"_stem":772,"_extension":48},"/en-us/the-source/authors/emilio-salvador",{"layout":9},{"title":756},"Emilio Salvador",[758,768],{"componentName":547,"type":547,"componentContent":759},{"config":760,"name":756,"role":763,"bio":764,"headshot":765},{"gitlabHandle":761,"linkedInProfileUrl":762},"esalvadorp","https://www.linkedin.com/in/emiliosp/","Vice President, Strategy and Developer Relations, GitLab","Emilio Salvador is vice president of strategy and developer relations at GitLab. A technology executive with more than 20 years of experience, Emilio has held roles at Amazon and Microsoft, and most recently led strategy and operations for the Developer Advocacy and Experience team at Google. He holds an MBA from MIT Sloan School of Management.",{"altText":756,"config":766},{"src":767},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463402/g0snp3uisjm4tj3pkqcw.jpg",{"componentName":558,"type":558},"emilio-salvador","content:en-us:the-source:authors:emilio-salvador.yml","en-us/the-source/authors/emilio-salvador.yml","en-us/the-source/authors/emilio-salvador",{"_path":774,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":775,"seo":776,"content":778,"type":559,"slug":785,"_id":786,"_type":43,"title":777,"_source":45,"_file":787,"_stem":788,"_extension":48},"/en-us/the-source/authors/erika-feldman",{"layout":9},{"title":777},"Erika Feldman",[779,784],{"componentName":547,"type":547,"componentContent":780},{"name":777,"headshot":781},{"altText":777,"config":782},{"src":783},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463354/d9quqvz7d2ayjwif7vdn.png",{"componentName":558,"type":558},"erika-feldman","content:en-us:the-source:authors:erika-feldman.yml","en-us/the-source/authors/erika-feldman.yml","en-us/the-source/authors/erika-feldman",{"_path":790,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":791,"seo":792,"content":794,"type":559,"slug":804,"_id":805,"_type":43,"title":793,"_source":45,"_file":806,"_stem":807,"_extension":48},"/en-us/the-source/authors/george-kichukov",{"layout":9},{"title":793},"George Kichukov",[795,803],{"componentName":547,"type":547,"componentContent":796},{"config":797,"name":793,"role":667,"bio":799,"headshot":800},{"gitlabHandle":798},"gkichukov","George Kichukov brings over two decades of expertise in software development, enterprise architecture, and technology leadership to his role as Financial Services Field CTO for GitLab. His career began in the startup ecosystem, where he spent five years developing name-matching technologies deployed across government, defense, and financial services. George transitioned into solution architecture, where he guided financial institutions in modernizing their application development practices. Prior to GitLab, George spent 12 years at a large financial services organization leading developer services, application security programs and DevOps infrastructure automation platforms. In his current role at GitLab, George partners with financial services organizations, helping them achieve their strategic objectives in DevOps, DevSecOps, Developer Experience, SDLC compliance, and using AI across software development.",{"altText":793,"config":801},{"src":802},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463366/dk2knfancgsxocjkmyoa.jpg",{"componentName":558,"type":558},"george-kichukov","content:en-us:the-source:authors:george-kichukov.yml","en-us/the-source/authors/george-kichukov.yml","en-us/the-source/authors/george-kichukov",{"_path":809,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":810,"seo":811,"content":813,"type":559,"slug":820,"_id":821,"_type":43,"title":822,"_source":45,"_file":823,"_stem":824,"_extension":48},"/en-us/the-source/authors/gitlab",{"layout":9},{"title":812},"GitLab",[814,819],{"componentName":547,"type":547,"componentContent":815},{"name":812,"headshot":816},{"altText":812,"config":817},{"src":818},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463461/ts7io0hgpdyqylbzfire.png",{"componentName":558,"type":558},"gitlab","content:en-us:the-source:authors:gitlab.yml","Gitlab","en-us/the-source/authors/gitlab.yml","en-us/the-source/authors/gitlab",{"_path":826,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":827,"seo":828,"content":830,"type":559,"slug":839,"_id":840,"_type":43,"title":829,"_source":45,"_file":841,"_stem":842,"_extension":48},"/en-us/the-source/authors/grant-hickman",{"layout":9},{"title":829},"Grant Hickman",[831,838],{"componentName":547,"type":547,"componentContent":832},{"config":833,"name":829,"headshot":835},{"gitlabHandle":834},"g.hickman",{"altText":829,"config":836},{"src":837},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463463/f3uqwtugqotyhwutz5gu.png",{"componentName":558,"type":558},"grant-hickman","content:en-us:the-source:authors:grant-hickman.yml","en-us/the-source/authors/grant-hickman.yml","en-us/the-source/authors/grant-hickman",{"_path":844,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":845,"seo":846,"content":848,"type":559,"slug":859,"_id":860,"_type":43,"title":847,"_source":45,"_file":861,"_stem":862,"_extension":48},"/en-us/the-source/authors/haim-snir",{"layout":9},{"title":847},"Haim Snir",[849,858],{"componentName":547,"type":547,"componentContent":850},{"config":851,"name":847,"role":854,"headshot":855},{"gitlabHandle":852,"linkedInProfileUrl":853},"hsnir1","https://www.linkedin.com/in/haimsnir/","Senior Product Manager, Dev & Analytics, GitLab",{"altText":847,"config":856},{"src":857},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463395/nubmshvaq8wpomopllni.png",{"componentName":558,"type":558},"haim-snir","content:en-us:the-source:authors:haim-snir.yml","en-us/the-source/authors/haim-snir.yml","en-us/the-source/authors/haim-snir",{"_path":864,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":865,"seo":866,"content":868,"type":559,"slug":872,"_id":877,"_type":43,"title":878,"_source":45,"_file":879,"_stem":880,"_extension":48},"/en-us/the-source/authors/iganbaruch",{"layout":9},{"title":867},"Itzik Gan Baruch",[869,876],{"componentName":547,"type":547,"componentContent":870},{"config":871,"name":867,"headshot":873},{"gitlabHandle":872},"iganbaruch",{"altText":867,"config":874},{"src":875},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463443/vibb2fkc0ojni2d1eqde.png",{"componentName":558,"type":558},"content:en-us:the-source:authors:iganbaruch.yml","Iganbaruch","en-us/the-source/authors/iganbaruch.yml","en-us/the-source/authors/iganbaruch",{"_path":882,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"type":559,"slug":883,"config":884,"seo":885,"content":888,"_id":896,"_type":43,"title":887,"_source":45,"_file":897,"_stem":898,"_extension":48},"/en-us/the-source/authors/jason-morgan","jason-morgan",{"layout":9},{"config":886,"title":887},{"noIndex":6},"Jason Morgan",[889,895],{"type":547,"componentName":547,"componentContent":890},{"name":887,"role":891,"headshot":892},"Staff Solutions Architect",{"altText":887,"config":893},{"src":894},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758808571/n1inburdbemlmpcg9atj.jpg",{"type":558,"componentName":558},"content:en-us:the-source:authors:jason-morgan.yml","en-us/the-source/authors/jason-morgan.yml","en-us/the-source/authors/jason-morgan",{"_path":900,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"type":559,"slug":901,"config":902,"seo":903,"content":906,"_id":916,"_type":43,"title":905,"_source":45,"_file":917,"_stem":918,"_extension":48},"/en-us/the-source/authors/jessie-young","jessie-young",{"layout":9},{"config":904,"title":905},{"noIndex":6},"Jessie Young",[907,915],{"type":547,"componentName":547,"componentContent":908},{"name":905,"role":909,"headshot":910,"config":913},"Principal Engineer, AI Engineering, GitLab",{"altText":905,"config":911},{"src":912},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1760537925/E03N1RJJX7C-U03NFV6N2PN-4d786e81137a-512_m62zso.png",{"gitlabHandle":914},"jessieay",{"type":558,"componentName":558},"content:en-us:the-source:authors:jessie-young.yml","en-us/the-source/authors/jessie-young.yml","en-us/the-source/authors/jessie-young",{"_path":920,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":921,"seo":922,"content":924,"type":559,"slug":933,"_id":934,"_type":43,"title":935,"_source":45,"_file":936,"_stem":937,"_extension":48},"/en-us/the-source/authors/jlongo",{"layout":9},{"title":923},"Joseph Longo",[925,932],{"componentName":547,"type":547,"componentContent":926},{"config":927,"name":923,"headshot":929},{"gitlabHandle":928},"jlongo_gitlab",{"altText":923,"config":930},{"src":931},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463434/uoxaknpmoposbbgzqji8.png",{"componentName":558,"type":558},"jlongo","content:en-us:the-source:authors:jlongo.yml","Jlongo","en-us/the-source/authors/jlongo.yml","en-us/the-source/authors/jlongo",{"_path":939,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":940,"seo":941,"content":943,"type":559,"slug":955,"_id":956,"_type":43,"title":942,"_source":45,"_file":957,"_stem":958,"_extension":48},"/en-us/the-source/authors/joel-krooswyk",{"layout":9},{"title":942},"Joel Krooswyk",[944,954],{"componentName":547,"type":547,"componentContent":945},{"config":946,"name":942,"role":949,"bio":950,"headshot":951},{"gitlabHandle":947,"linkedInProfileUrl":948},"jkrooswyk","https://www.linkedin.com/in/joelrkrooswyk/","Federal CTO","Joel Krooswyk is the Federal CTO at GitLab. Joel has actively been involved in GitLab’s growth since 2017. His 25 years of leadership experience span not only the U.S. Public Sector, but also small, mid-market, and enterprise businesses globally. Joel combines deep government policy expertise with a wealth of experience in technology, software development, AI, and cybersecurity. He is frequently called upon by industry and agencies alike for policy commentary and response.",{"altText":942,"config":952},{"src":953},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463423/mkmdhuxsjggfvokdmdv7.jpg",{"componentName":558,"type":558},"joel-krooswyk","content:en-us:the-source:authors:joel-krooswyk.yml","en-us/the-source/authors/joel-krooswyk.yml","en-us/the-source/authors/joel-krooswyk",{"_path":960,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":961,"seo":962,"content":964,"type":559,"slug":976,"_id":977,"_type":43,"title":963,"_source":45,"_file":978,"_stem":979,"_extension":48},"/en-us/the-source/authors/josh-lemos",{"layout":9},{"title":963},"Josh Lemos",[965,975],{"componentName":547,"type":547,"componentContent":966},{"config":967,"name":963,"role":970,"bio":971,"headshot":972},{"gitlabHandle":968,"linkedInProfileUrl":969},"joshlemos","https://www.linkedin.com/in/joshlemos/","Chief Information Security Officer","Josh Lemos is the Chief Information Security Officer at GitLab Inc., where he brings 20 years of experience leading information security teams to his role. He is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected, fortifying the Gitlab DevSecOps platform and ensuring the highest level of security for customers.",{"altText":963,"config":973},{"src":974},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463405/f4rqtiecakrekvxfhqar.jpg",{"componentName":558,"type":558},"josh-lemos","content:en-us:the-source:authors:josh-lemos.yml","en-us/the-source/authors/josh-lemos.yml","en-us/the-source/authors/josh-lemos",{"_path":981,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":982,"seo":983,"content":985,"type":559,"slug":992,"_id":993,"_type":43,"title":984,"_source":45,"_file":994,"_stem":995,"_extension":48},"/en-us/the-source/authors/julie-griffin",{"layout":9},{"title":984},"Julie Griffin",[986,991],{"componentName":547,"type":547,"componentContent":987},{"name":984,"headshot":988},{"altText":984,"config":989},{"src":990},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463371/hqkbr3uk8hw2de7tltn4.webp",{"componentName":558,"type":558},"julie-griffin","content:en-us:the-source:authors:julie-griffin.yml","en-us/the-source/authors/julie-griffin.yml","en-us/the-source/authors/julie-griffin",{"_path":997,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":998,"seo":999,"content":1001,"type":559,"slug":1008,"_id":1009,"_type":43,"title":1000,"_source":45,"_file":1010,"_stem":1011,"_extension":48},"/en-us/the-source/authors/kristina-weis",{"layout":9},{"title":1000},"Kristina Weis",[1002,1007],{"componentName":547,"type":547,"componentContent":1003},{"name":1000,"headshot":1004},{"altText":1000,"config":1005},{"src":1006},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463469/eoolq6n6bs0zb8gmf0js.webp",{"componentName":558,"type":558},"kristina-weis","content:en-us:the-source:authors:kristina-weis.yml","en-us/the-source/authors/kristina-weis.yml","en-us/the-source/authors/kristina-weis",{"_path":1013,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":1014,"seo":1015,"content":1017,"type":559,"slug":1028,"_id":1029,"_type":43,"title":1016,"_source":45,"_file":1030,"_stem":1031,"_extension":48},"/en-us/the-source/authors/lee-faus",{"layout":9},{"title":1016},"Lee Faus",[1018,1027],{"componentName":547,"type":547,"componentContent":1019},{"config":1020,"name":1016,"role":1022,"bio":1023,"headshot":1024},{"gitlabHandle":1021},"lfaus","Global Field CTO","Lee Faus is a Global Field CTO at GitLab. Lee has been a software architect, teacher, professor, and educator for over 25 years. He leverages his experience as an educator to bring complex technology concepts into a business forum where executives gain valuable advice to positively impact their business.",{"altText":1016,"config":1025},{"src":1026},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463398/vivhlomglvnstamj54bo.jpg",{"componentName":558,"type":558},"lee-faus","content:en-us:the-source:authors:lee-faus.yml","en-us/the-source/authors/lee-faus.yml","en-us/the-source/authors/lee-faus",{"_path":1033,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"type":559,"slug":1034,"config":1035,"seo":1036,"content":1039,"_id":1047,"_type":43,"title":1038,"_source":45,"_file":1048,"_stem":1049,"_extension":48},"/en-us/the-source/authors/nathen-harvey","nathen-harvey",{"layout":9},{"config":1037,"title":1038},{"noIndex":6},"Nathen Harvey",[1040,1046],{"type":547,"componentName":547,"componentContent":1041},{"name":1038,"role":1042,"headshot":1043},"DORA Lead, Google Cloud",{"altText":1038,"config":1044},{"src":1045},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1760537671/ls7apap7dorwaguxs4hh.webp",{"type":558,"componentName":558},"content:en-us:the-source:authors:nathen-harvey.yml","en-us/the-source/authors/nathen-harvey.yml","en-us/the-source/authors/nathen-harvey",{"_path":1051,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":1052,"seo":1053,"content":1055,"type":559,"slug":11,"_id":1063,"_type":43,"title":1064,"_source":45,"_file":1065,"_stem":1066,"_extension":48},"/en-us/the-source/authors/ncregan",{"layout":9},{"title":1054},"Niall Cregan",[1056,1062],{"componentName":547,"type":547,"componentContent":1057},{"config":1058,"name":1054,"headshot":1059},{"gitlabHandle":11},{"altText":1054,"config":1060},{"src":1061},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463431/yrtwodocb4cu3j7lkhyo.png",{"componentName":558,"type":558},"content:en-us:the-source:authors:ncregan.yml","Ncregan","en-us/the-source/authors/ncregan.yml","en-us/the-source/authors/ncregan",{"_path":1068,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"type":559,"slug":1069,"config":1070,"seo":1071,"content":1074,"_id":1081,"_type":43,"title":1073,"_source":45,"_file":1082,"_stem":1083,"_extension":48},"/en-us/the-source/authors/rob-smith","rob-smith",{"layout":9},{"config":1072,"title":1073},{"noIndex":6},"Rob Smith",[1075,1080],{"type":547,"componentName":547,"componentContent":1076},{"name":1073,"role":625,"headshot":1077},{"altText":1073,"config":1078},{"src":1079},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1760625579/ndksqvsfysea4cnltb1r.jpg",{"type":558,"componentName":558},"content:en-us:the-source:authors:rob-smith.yml","en-us/the-source/authors/rob-smith.yml","en-us/the-source/authors/rob-smith",{"_path":1085,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":1086,"seo":1087,"content":1089,"type":559,"slug":1100,"_id":1101,"_type":43,"title":1102,"_source":45,"_file":1103,"_stem":1104,"_extension":48},"/en-us/the-source/authors/rschulman",{"layout":9},{"title":1088},"Robin Schulman",[1090,1099],{"componentName":547,"type":547,"componentContent":1091},{"config":1092,"name":1088,"role":1094,"bio":1095,"headshot":1096},{"gitlabHandle":1093},"robin","Chief Legal Officer","Robin Schulman is the Chief Legal Officer, Head of Corporate Affairs, and Corporate Secretary of GitLab Inc., the DevSecOps platform.",{"altText":1088,"config":1097},{"src":1098},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463437/u2xfbudw1f8hhnkrgaoy.webp",{"componentName":558,"type":558},"rschulman","content:en-us:the-source:authors:rschulman.yml","Rschulman","en-us/the-source/authors/rschulman.yml","en-us/the-source/authors/rschulman",{"_path":1106,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":1107,"seo":1108,"content":1110,"type":559,"slug":1119,"_id":1120,"_type":43,"title":1109,"_source":45,"_file":1121,"_stem":1122,"_extension":48},"/en-us/the-source/authors/sabrina-farmer",{"layout":9},{"title":1109},"Sabrina Farmer",[1111,1118],{"componentName":547,"type":547,"componentContent":1112},{"name":1109,"role":1113,"bio":1114,"headshot":1115},"Chief Technology Officer","Sabrina Farmer is the Chief Technology Officer at GitLab, where she leads software engineering, operations, and customer support teams to execute the company's technical vision and strategy and oversee the development and delivery of GitLab's products and services.\n\nPrior to GitLab, Sabrina spent nearly two decades at Google, where she most recently served as vice president of engineering, core infrastructure. During her tenure with Google, she was directly responsible for the reliability, performance, and efficiency of all of Google's billion-user products and infrastructure.\n\nA long-time advocate for women in technology, Farmer earned a B.S. in Computer Science at the University of New Orleans, where she established two scholarships to help level the playing field for inclusion and empowerment in technology.",{"altText":1109,"config":1116},{"src":1117},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463377/udmzbjjr5xrcrffdlphx.webp",{"componentName":558,"type":558},"sabrina-farmer","content:en-us:the-source:authors:sabrina-farmer.yml","en-us/the-source/authors/sabrina-farmer.yml","en-us/the-source/authors/sabrina-farmer",{"_path":1124,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":1125,"seo":1126,"content":1128,"type":559,"slug":1138,"_id":1139,"_type":43,"title":1127,"_source":45,"_file":1140,"_stem":1141,"_extension":48},"/en-us/the-source/authors/sandra-gittlen",{"layout":9},{"title":1127},"Sandra Gittlen",[1129,1137],{"componentName":547,"type":547,"componentContent":1130},{"config":1131,"name":1127,"role":1133,"headshot":1134},{"gitlabHandle":1132},"sgittlen","Managing Editor, Blog",{"altText":1127,"config":1135},{"src":1136},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463466/r7ckb9h2zr4c2rsz3zlm.png",{"componentName":558,"type":558},"sandra-gittlen","content:en-us:the-source:authors:sandra-gittlen.yml","en-us/the-source/authors/sandra-gittlen.yml","en-us/the-source/authors/sandra-gittlen",{"_path":1143,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":1144,"seo":1145,"content":1147,"type":559,"slug":1154,"_id":1155,"_type":43,"title":1146,"_source":45,"_file":1156,"_stem":1157,"_extension":48},"/en-us/the-source/authors/sharon-gaudin",{"layout":9},{"title":1146},"Sharon Gaudin",[1148,1153],{"componentName":547,"type":547,"componentContent":1149},{"name":1146,"headshot":1150},{"altText":1146,"config":1151},{"src":1152},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463475/h6j4nnvykzyfzgvl7txb.webp",{"componentName":558,"type":558},"sharon-gaudin","content:en-us:the-source:authors:sharon-gaudin.yml","en-us/the-source/authors/sharon-gaudin.yml","en-us/the-source/authors/sharon-gaudin",{"_path":1159,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":1160,"seo":1161,"content":1163,"type":559,"slug":1175,"_id":1176,"_type":43,"title":1162,"_source":45,"_file":1177,"_stem":1178,"_extension":48},"/en-us/the-source/authors/stephen-walters",{"layout":9},{"title":1162},"Stephen Walters",[1164,1174],{"componentName":547,"type":547,"componentContent":1165},{"config":1166,"name":1162,"role":1169,"bio":1170,"headshot":1171},{"gitlabHandle":1167,"linkedInProfileUrl":1168},"swalters1","https://www.linkedin.com/in/1stephenwalters/","Field CTO, GitLab","Stephen Walters is Field CTO for GitLab. Stephen has been in the IT industry for over 30 years. He is an extensively experienced subject matter expert in Value Stream Management, DevSecOps, DevOps, ALM, SDLC and IT4IT, with management and consultancy experience across end-to-end IT disciplines. Currently also operating as an Ambassador for the DevOps Institute and an Influencer in the Value Stream Management Consortium, he is interested in all things DevOps. Stephen is a co-author of the Value Stream Reference Architectures white paper and is currently pursuing further research into Value Stream Management, Organizational Architecture and AI.",{"altText":1162,"config":1172},{"src":1173},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463392/g6ktk5qb4vcqc9wqjlf9.jpg",{"componentName":558,"type":558},"stephen-walters","content:en-us:the-source:authors:stephen-walters.yml","en-us/the-source/authors/stephen-walters.yml","en-us/the-source/authors/stephen-walters",{"_path":1180,"_dir":541,"_draft":6,"_partial":6,"_locale":7,"config":1181,"seo":1182,"content":1184,"type":559,"slug":1196,"_id":1197,"_type":43,"title":1198,"_source":45,"_file":1199,"_stem":1200,"_extension":48},"/en-us/the-source/authors/taylor-mccaslin",{"layout":9},{"title":1183},"Taylor McCaslin",[1185,1195],{"componentName":547,"type":547,"componentContent":1186},{"config":1187,"name":1183,"role":1190,"bio":1191,"headshot":1192},{"gitlabHandle":1188,"linkedInProfileUrl":1189},"tmccaslin","https://www.linkedin.com/in/taylormccaslin/","Group Manager, Product - Data Science","Taylor McCaslin is the Product Lead for AI/ML at GitLab, where he is responsible for leading the team of product managers who manage the AI Powered and ModelOps stage groups and sets the vision and direction for how to empower GitLab users to leverage data science as part of their DevOps program. Prior to joining GitLab, he held positions at Indeed, Duo Security, and WP Engine.",{"altText":1183,"config":1193},{"src":1194},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1751463427/trfasilaeasosxfcxmsm.jpg",{"componentName":558,"type":558},"taylor-mccaslin","content:en-us:the-source:authors:taylor-mccaslin.yml","Taylor Mccaslin","en-us/the-source/authors/taylor-mccaslin.yml","en-us/the-source/authors/taylor-mccaslin",1761814446496]