FedRAMP and GitLab

What is FedRAMP?

The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. See the GSA definition.

Details about the FedRAMP program highlight the process and status of how cloud services are assessed and certified in the FedRAMP marketplace.

GitLab Dedicated for Government - FedRAMP Authorized

GitLab Dedicated for Government has achieved FedRAMP Authorization at the Moderate Impact Level, sponsored by the General Services Administration (GSA). GitLab Dedicated for Government is now listed as "Authorized" on the FedRAMP Marketplace.

Key Features

  • Single-tenant SaaS solution providing physical isolation from other customers
  • U.S.-based infrastructure with data residency controls and access restricted to U.S. citizens
  • Private networking with secure connections between your VPC and GitLab
  • Fully managed and hosted by GitLab - no infrastructure management required
  • Data encryption at rest and in transit, with optional customer-managed AWS KMS keys
  • Continuous CVE patching and security monitoring

Benefits

  • Toolchain consolidation - Unite DevSecOps teams on a single platform with unified workflows
  • Comprehensive native security - Built-in security scanners including API Security, Container Scanning, DAST, and Fuzz Testing
  • Lower total cost of ownership - All the benefits of GitLab without staff overhead for infrastructure management
  • Zero trust architecture support - Centralized access control with consistent security policies

Self-Managed GitLab Deployments

Customers can also deploy GitLab into their own FedRAMP authorization boundary on AWS, Google Cloud, Azure, or on-premises data centers. GitLab provides documentation on how to install a FIPS-compliant version of our software.

Additional Certifications

GitLab has also achieved Texas Risk and Authorization Management Program Certification (TX-RAMP) for working with Texas state agencies.

Get Started

To learn more about GitLab Dedicated for Government or how GitLab supports public sector agencies, departments, and organizations, please contact us.

For migration assistance from existing GitLab instances, explore our GitLab Services.

Start shipping better software faster

See what your team can do with the intelligent

DevSecOps platform.

Get free trial Talk to sales