Move Security Policies page to SRM and remove tablau (01338a04) · Commits · GitLab.com / Content Sites / handbook

.gitlab/CODEOWNERS

+1 −1

Original line number	Diff line number	Diff line
		@@ -154,7 +154,6 @@
		/content/handbook/engineering/development/sec/software-supply-chain-security/authorization.md @jayswain
		/content/handbook/engineering/development/sec/software-supply-chain-security/compliance.md @nrosandich
		/content/handbook/engineering/development/sec/software-supply-chain-security/pipeline-security/ @fcatteau
		/content/handbook/engineering/development/sec/software-supply-chain-security/security-policies/ @alan
		/content/handbook/engineering/development/sec/secure/ @twoodham
		/content/handbook/engineering/development/sec/secure/dynamic-analysis/ @mikeeddington @twoodham
		/content/handbook/engineering/development/sec/secure/composition-analysis/ @gonzoyumo @twoodham
		@@ -163,6 +162,7 @@
		/content/handbook/engineering/development/sec/security-risk-management/ @dagron1 @rvider
		/content/handbook/engineering/development/sec/security-risk-management/security-infrastructure/ @ryaanwells
		/content/handbook/engineering/development/sec/security-risk-management/security-insights @nmccorrison
		/content/handbook/engineering/development/sec/security-risk-management/security-policies/ @alan
		/content/handbook/engineering/expansion-development.md @jeromezng
		/content/handbook/engineering/frontend/ @timzallmann
		/content/handbook/engineering/training/ic-to-manager.md @dsatcher

content/handbook/engineering/development/sec/_index.md

+1 −1

Original line number	Diff line number	Diff line
		@@ -154,7 +154,7 @@ The following teams comprise the sub-department:
		- Vulnerability Research group - [handbook](/handbook/engineering/development/sec/secure/vulnerability-research/)
		- API Security - [handbook](/handbook/engineering/development/sec/secure/dynamic-analysis/api-security/)
		- Security Risk Management
		- Security Policies group - [handbook](/handbook/engineering/development/sec/software-supply-chain-security/security-policies/)
		- Security Policies group - [handbook](/handbook/engineering/development/sec/security-risk-management/security-policies/)
		- Threat Insights group - [handbook](/handbook/engineering/development/sec/security-risk-management/security-insights/)

		It is important to delineate who the EM and PM DRIs are for every functionality, especially where this may not be obvious. This is documented on a dedicated [delineation page](delineate-sec.html).

content/handbook/engineering/development/sec/security-risk-management/_index.md

+1 −1

Original line number	Diff line number	Diff line
		@@ -43,4 +43,4 @@ PM: {{< member-by-gitlab "g.hickman" >}}

		EM: {{< member-by-gitlab "alan" >}}

		{{< member-and-role-by-gitlab "aturinske" "sashi_kumar" "mcavoj" "Andyschoenen" "bauerdominic" "arfedoro" "mc_rocha" >}}
		{{< member-and-role-by-gitlab "aturinske" "sashi_kumar" "mcavoj" "Andyschoenen" "bauerdominic" "arfedoro" "mc_rocha" "imam_h" >}}

content/handbook/engineering/development/sec/software-supply-chain-security/security-policies/_index.md→content/handbook/engineering/development/sec/security-risk-management/security-policies/_index.md

+2 −18

Original line number	Diff line number	Diff line
		@@ -43,31 +43,15 @@ We use our [Security Policies Priorities](https://about.gitlab.com/direction/sec

		Complete items are removed from the table once the code is in production without a feature flag, and a release post, if applicable, has been merged. The epic is closed at this point.

		{{< tableau height="600px" toolbar="hidden" src="https://us-west-2b.online.tableau.com/t/gitlabpublic/views/TopEngineeringMetrics/TopEngineeringMetricsDashboard" >}}
		{{< tableau/filters "GROUP_LABEL"="security policies" >}}
		{{< /tableau >}}

		{{< tableau height="600px" src="https://us-west-2b.online.tableau.com/t/gitlabpublic/views/MergeRequestMetrics/OverallMRsbyType_1" >}}
		{{< tableau/filters "GROUP_LABEL"="security policies" >}}
		{{< /tableau >}}

		{{< tableau height="600px" src="https://us-west-2b.online.tableau.com/t/gitlabpublic/views/Flakytestissues/FlakyTestIssues" >}}
		{{< tableau/filters "GROUP_NAME"="security policies" >}}
		{{< /tableau >}}

		{{< tableau height="600px" src="https://us-west-2b.online.tableau.com/t/gitlabpublic/views/SlowRSpecTestsIssues/SlowRSpecTestsIssuesDashboard" >}}
		{{< tableau/filters "GROUP_LABEL"="security policies" >}}
		{{< /tableau >}}

		### Workflow

		The Security Policies group largely follows GitLab's [Product Development Flow](/handbook/product-development/product-development-flow/).

		Additional information about how we operate can be found on the [Planning page](/handbook/engineering/development/sec/security-risk-management/srm-planning/).

		Our current workflow is visualized as flowchart on the [Workflow page](/handbook/engineering/development/sec/software-supply-chain-security/security-policies/workflow/).
		Our current workflow is visualized as flowchart on the [Workflow page](/handbook/engineering/development/sec/security-risk-management/security-policies/workflow/).

		Our current process on how we work on features is on the [Feature process page](/handbook/engineering/development/sec/software-supply-chain-security/security-policies/feature_process/)
		Our current process on how we work on features is on the [Feature process page](/handbook/engineering/development/sec/security-risk-management/security-policies/feature_process/)

		#### MR Reviews

content/handbook/engineering/development/sec/software-supply-chain-security/security-policies/feature_process.md→content/handbook/engineering/development/sec/security-risk-management/security-policies/feature_process.md

+0 −0

File moved.

View file