diff --git a/app/__init__.py b/app/__init__.py
index 21f0c8e03..e28175aec 100644
--- a/app/__init__.py
+++ b/app/__init__.py
@@ -150,6 +150,7 @@ def _csp(config):
             "'unsafe-eval'",
             "https://js-agent.newrelic.com",
             "https://gov-bam.nr-data.net",
+            "https://www.googletagmanager.com",
         ],
         "connect-src": ["'self'", "https://gov-bam.nr-data.net"],
         "style-src": ["'self'", asset_domain],
diff --git a/tests/app/main/views/test_headers.py b/tests/app/main/views/test_headers.py
index 21591586d..de0cef7d2 100644
--- a/tests/app/main/views/test_headers.py
+++ b/tests/app/main/views/test_headers.py
@@ -17,7 +17,8 @@ def test_owasp_useful_headers_set(
     assert search(r"form-action 'self';", csp)
     assert search(
         r"script-src 'self' static\.example\.com 'unsafe-eval' https:\/\/js-agent\.new"
-        r"relic\.com https:\/\/gov-bam\.nr-data\.net 'nonce-.*';",
+        r"relic\.com https:\/\/gov-bam\.nr-data\.net https:\/\/www\.googletagmanager\."
+        r"com 'nonce-.*';",
         csp,
     )
     assert search(r"connect-src 'self' https:\/\/gov-bam.nr-data\.net;", csp)