The GitLab Security Essentials training is designed to give participants a comprehensive understanding of the security features offered by GitLab. This hands-on training session, delivered by experienced GitLab trainers, dives into the fundamentals of the security features available in GitLab. It covers a range of topics, including Static Application Security Testing (SAST), secret detection, Dynamic Application Security Testing (DAST), dependency scanning, container scanning, license compliance, and fuzz testing.
Ensure Secure Software Development with GitLab Security Essentials
![gitlab-logo-l](https://nextlinklabs.com/hs-fs/hubfs/gitlab-logo-l.png?width=1500&height=326&name=gitlab-logo-l.png)
Who Can Benefit?
![Group 11 2 Group 11 2](https://nextlinklabs.com/hs-fs/hubfs/Group%2011%202.png?width=50&height=50&name=Group%2011%202.png)
Individuals or teams looking to enhance their knowledge of GitLab security.
![Group 13-1 Group 13-1](https://nextlinklabs.com/hs-fs/hubfs/Group%2013-1.png?width=50&height=50&name=Group%2013-1.png)
DevOps teams seeking to improve the security of their applications and infrastructure.
![Group 43-1 Group 43-1](https://nextlinklabs.com/hs-fs/hubfs/Group%2043-1.png?width=50&height=41&name=Group%2043-1.png)
Individuals or teams who want to learn how to use GitLab's security features to safeguard their projects and data.
![Group 21 Group 21](https://nextlinklabs.com/hs-fs/hubfs/Group%2021.png?width=50&height=46&name=Group%2021.png)
Developers and engineers who are responsible for the security of their applications and want to learn how to use GitLab to identify and mitigate security risks.
![Group 15 Group 15](https://nextlinklabs.com/hs-fs/hubfs/Group%2015.png?width=50&height=44&name=Group%2015.png)
Anyone involved in the development and deployment of applications that needs to understand how to secure their projects using GitLab.
What Does the Training Cover?
![Group 11-1 Group 11-1](https://nextlinklabs.com/hs-fs/hubfs/Group%2011-1.png?width=50&height=46&name=Group%2011-1.png)
An overview of GitLab's security capabilities.
![Group 17 Group 17](https://nextlinklabs.com/hs-fs/hubfs/Group%2017.png?width=50&height=50&name=Group%2017.png)
In-depth coverage of Static Application Security Testing, secret detection, Dynamic Application Security Testing, dependency scanning, container scanning, license compliance, and fuzz testing.
![Group 19 Group 19](https://nextlinklabs.com/hs-fs/hubfs/Group%2019.png?width=50&height=50&name=Group%2019.png)
Hands-on practice with GitLab's security features, including configuring and using security scans, analyzing results, and mitigating security vulnerabilities.
![Group 23 Group 23](https://nextlinklabs.com/hs-fs/hubfs/Group%2023.png?width=50&height=48&name=Group%2023.png)
An introduction to GitLab's security best practices and recommended workflows.
![Group 13 2 Group 13 2](https://nextlinklabs.com/hs-fs/hubfs/Group%2013%202.png?width=50&height=46&name=Group%2013%202.png)
An overview of the features available in GitLab's three pricing tiers (Free, Premium, and Ultimate), including a discussion of the benefits of upgrading to a higher tier.
![Group 9-1 Group 9-1](https://nextlinklabs.com/hubfs/Group%209-1.png)
Day 1
Introduction to the Secure Stage (1 hour)
- Overview of the Secure Stage in GitLab and its key features
- Explanation of the integration of security scanning with GitLab's development flow
- Overview of the different types of security scans available in GitLab
- Explanation of the types of security reports that can be generated
SAST, Secret Detection, and DAST (2 hours)
- Introduction to Static Application Security Testing (SAST)
- Explanation of the steps for using SAST in GitLab
- Demonstration of enabling and configuring SAST
- Overview of the SAST report and how to take action on findings
- Introduction to Secret Detection
- Explanation of the steps for using Secret Detection in GitLab
- Demonstration of enabling and configuring Secret Detection
- Introduction to Dynamic Application Security Testing (DAST)
- Explanation of the steps for using DAST in GitLab
- Demonstration of enabling and configuring DAST
- Lab: Using SAST, Secret Detection, and DAST
Dependency Scanning (1 hour)
- Introduction to Dependency Scanning
- Explanation of the steps for using Dependency Scanning in GitLab
- Demonstration of enabling and configuring Dependency Scanning
- Lab: Using Dependency Scanning
Day 2
Container Scanning (1 hour)
- Introduction to Container Scanning
- Explanation of the steps for using Container Scanning in GitLab
- Demonstration of enabling and configuring Container Scanning
- Lab: Using Container Scanning
License Compliance (1 hour)
- Introduction to License Compliance
- Explanation of the steps for using License Compliance in GitLab
- Demonstration of enabling and configuring License Compliance
- Overview of the License Compliance report and how to review the results
- Lab: Enable, Configure, and Run License Compliance
Fuzz Testing (1 hour 30 minutes)
- Introduction to Fuzz Testing
- Explanation of the steps for using Fuzz Testing in GitLab
- Overview of the Fuzz Testing workflow
- Explanation of how to use a Fuzz Testing corpus
- Lab: Enable, Configure, and Run Fuzz Testing
Course Details
- Hands-on labs and demonstrations to reinforce learning
- Slides with notes and reference links provided for attendees
- Class sizes are limited to a maximum of 12 attendees (additional seats available with seat add-on)
Remote Delivery
- Two 4-hour sessions presented on separate days
- $5,000 for remote delivery
On-Site Delivery
- Single 9-hour session, including 1 hour for lunch
- $7,000 for on-site delivery (plus travel expenses for each instructor)
![gitlab parter bar v7 gitlab parter bar v7](https://nextlinklabs.com/hubfs/gitlab%20parter%20bar%20v7.png)
Our experts are developers who use GitLab daily and can guide clients through the initial steps of implementation. As trusted, select partners and dedicated users, NextLink Labs is invested in supporting GitLab and proving quality services to all clients.