diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index f47dbb8..1a9e698 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -1,3 +1,4 @@
 
 **/codeql*.yml @deliveroo/product-sec-eng # DO NOT MODIFY/REMOVE, AUTOGENERATED by Product Security
 **/dependency*.yml @deliveroo/product-sec-eng # DO NOT MODIFY/REMOVE, AUTOGENERATED by Product Security
+**/codeowner-check.yml @deliveroo/product-sec-eng # DO NOT MODIFY/REMOVE, AUTOGENERATED by DevSecOps
diff --git a/.github/workflows/codeowner-check.yml b/.github/workflows/codeowner-check.yml
new file mode 100644
index 0000000..ce62bcb
--- /dev/null
+++ b/.github/workflows/codeowner-check.yml
@@ -0,0 +1,13 @@
+name: CODEOWNERS Validation Call
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened]
+
+permissions:
+  contents: read
+  pull-requests: read
+
+jobs:
+  validate_codeowners:
+    uses: deliveroo/GHAS-enablement-repo/.github/workflows/codeowners-validation.yml@main