GITLAB TRAINING

Ensure Secure Software Development with GitLab Security Essentials

The GitLab Security Essentials training is designed to give participants a comprehensive understanding of the security features offered by GitLab. This hands-on training session, delivered by experienced GitLab trainers, dives into the fundamentals of the security features available in GitLab. It covers a range of topics, including Static Application Security Testing (SAST), secret detection, Dynamic Application Security Testing (DAST), dependency scanning, container scanning, license compliance, and fuzz testing.
Request a Training Session
Group 39

Master GitLab Security for a Safer Digital Landscape

In an era where data breaches and cyber threats loom large, ensuring the security of your software projects is paramount. Our GitLab Security Essentials training course is your gateway to mastering the security features offered by GitLab, one of the industry's leading platforms. Delivered by seasoned GitLab experts, this hands-on training equips you with the knowledge and skills needed to safeguard your applications and data effectively. Here are three compelling reasons why you should enroll today:

  • Comprehensive Understanding: Gain a comprehensive understanding of GitLab's robust security capabilities, covering SAST, DAST, dependency scanning, and more, ensuring your projects are fortified against vulnerabilities.
  • Hands-On Practice: Put theory into action with practical exercises, configuring and utilizing GitLab's security features to identify and mitigate security risks effectively.
  • Versatile Audience: Tailored for a diverse audience, whether you're an IT professional, a developer, or part of a DevOps team, this course empowers you to enhance your security knowledge and practices.

Don't leave your software projects vulnerable to threats. Join our GitLab Security Essentials training course and fortify your digital landscape against today's security challenges!

Duration
2 days, 4 hours each day
Public Classroom Pricing

Individual: $499 (USD)
Group Rate: Contact for pricing

Private Group Pricing

Have a group of 5 or more students? Request special pricing for private group training today.

Explore the tabs to learn more about this course

Day 1

Introduction to the Secure Stage (1 hour)

  • Overview of the Secure Stage in GitLab and its key features
  • Explanation of the integration of security scanning with GitLab's development flow
  • Overview of the different types of security scans available in GitLab
  • Explanation of the types of security reports that can be generated

SAST, Secret Detection, and DAST (2 hours)

  • Introduction to Static Application Security Testing (SAST)
  • Explanation of the steps for using SAST in GitLab
  • Demonstration of enabling and configuring SAST
  • Overview of the SAST report and how to take action on findings
  • Introduction to Secret Detection
  • Explanation of the steps for using Secret Detection in GitLab
  • Demonstration of enabling and configuring Secret Detection
  • Introduction to Dynamic Application Security Testing (DAST)
  • Explanation of the steps for using DAST in GitLab
  • Demonstration of enabling and configuring DAST
  • Lab: Using SAST, Secret Detection, and DAST

Dependency Scanning (1 hour)

  • Introduction to Dependency Scanning
  • Explanation of the steps for using Dependency Scanning in GitLab
  • Demonstration of enabling and configuring Dependency Scanning
  • Lab: Using Dependency Scanning

Day 2

Container Scanning (1 hour)

  • Introduction to Container Scanning
  • Explanation of the steps for using Container Scanning in GitLab
  • Demonstration of enabling and configuring Container Scanning
  • Lab: Using Container Scanning

License Compliance (1 hour)

  • Introduction to License Compliance
  • Explanation of the steps for using License Compliance in GitLab
  • Demonstration of enabling and configuring License Compliance
  • Overview of the License Compliance report and how to review the results
  • Lab: Enable, Configure, and Run License Compliance

Fuzz Testing (1 hour 30 minutes)

  • Introduction to Fuzz Testing
  • Explanation of the steps for using Fuzz Testing in GitLab
  • Overview of the Fuzz Testing workflow
  • Explanation of how to use a Fuzz Testing corpus
  • Lab: Enable, Configure, and Run Fuzz Testing

The expected outcomes of the GitLab Security Essentials training course are:

  • Comprehensive Security Understanding: Participants will gain a comprehensive understanding of GitLab's security capabilities, including Static Application Security Testing (SAST), secret detection, Dynamic Application Security Testing (DAST), dependency scanning, container scanning, license compliance, and fuzz testing.
  • Hands-On Expertise: Through hands-on labs and practical exercises, attendees will learn how to configure and use GitLab's security features effectively. They will gain practical experience in setting up security scans, analyzing results, and mitigating security vulnerabilities.
  • Enhanced Security Practices: The training will introduce participants to GitLab's security best practices and recommended workflows, enabling them to identify and mitigate security risks effectively.
  • Tailored for Various Audiences: The course is designed to benefit a wide range of participants, including individuals or teams looking to enhance their knowledge of GitLab security, DevOps teams seeking to improve application and infrastructure security, developers and engineers responsible for application security, and anyone involved in securing software projects using GitLab.
  • In-Depth Curriculum: The training covers a comprehensive range of security topics, ensuring participants have a holistic understanding of GitLab's security capabilities.
  • Knowledge of GitLab Tiers: Attendees will gain insights into GitLab's three pricing tiers (Free, Premium, and Ultimate) and the benefits of upgrading to higher tiers, enabling them to make informed decisions about their toolset.
  • Flexible Delivery Options: Participants can choose between remote or on-site delivery, providing flexibility to accommodate different preferences and scheduling needs.
  • Small Class Size: With limited class sizes, attendees receive personalized attention and support to maximize their learning experience.
By the end of this training, individuals and teams will be well-equipped with the knowledge and practical skills necessary to implement robust security practices using GitLab, safeguarding their projects and data effectively.

Attendee local setup (for all courses)

  • Operating System: Attendees must bring their own laptop or desktop that runs either macOS, Linux, or Windows operating systems.
  • Internet Access: Attendees need Internet access with the ability to reach websites via http/https.

This Course is for: Project managers, developers, DevSecOps engineers, and security specialists who are using GitLab with the Ultimate license

Individual Prerequisite knowledge:

  • GitLab with Git Fundamentals course or equivalent knowledge
  • GitLab CI/CD course or equivalent knowledge
  • This course is not appropriate for students without any Git, GitLab, or GitLab CI/CD knowledge

Equipment/System Prerequisites:

  • GitLab Lab Environment Access: Attendees require access to the GitLab lab environment to participate in the hands-on activities.
  • Unique invitation codes are handed out on the first day of class by the instructors.
  • Access to an instance with all paid features and capabilities turned on is provided during the training session, features are not always available with the free version (GitLab CE) of GitLab.

Course Outline

Audience / Prerequisites

In this class you will learn how to...

 

REQUEST A TRAINING SESSION OR PRIVATE GROUP TRAINING