Fast Track Bootcamps
 Crafted For Career-Ready Skills
Earn 08 CPE Course Credits Earn 08 CPE Course Credits
Rated the best Trustpilot 4.9/5 Read Reviews
Infosectrain Group Learner
Infosectrain Learner Point 98418+ Learners

Program Highlights

The GitHub Advanced Security Training is designed to help learners secure the software development lifecycle using GitHub Advanced Security features. The course focuses on code scanning, secret scanning, dependency management, CodeQL, security policies, and GitHub administration, helping learners identify and address security risks before code reaches production.

  • 8-Hour LIVE Instructor-Led Training8-Hour LIVE Instructor-Led Training
  • GH-500T00-A Aligned CurriculumGH-500T00-A Aligned Curriculum
  • Hands-on GHAS Feature ConfigurationHands-on GHAS Feature Configuration
  • CodeQL and Code Scanning CoverageCodeQL and Code Scanning Coverage
  • Secret Scanning and Dependabot CoverageSecret Scanning and Dependabot Coverage
  • Certified and Industry-Experienced TrainersCertified and Industry-Experienced Trainers
  • Career Guidance and One-on-One MentorshipCareer Guidance and One-on-One Mentorship
  • Flexible Schedule with Live SessionsFlexible Schedule with Live Sessions
  • Post-Training Support and RecordingsPost-Training Support and Recordings

Training Schedule

  • upcoming classes
  • corporate training
  • 1 on 1 training
Upcoming classes

Looking for a customized training?

REQUEST A BATCH
corporate training

Why Choose Our Corporate Training Solution

  • Upskill your team on the latest tech
  • Highly customized solutions
  • Free Training Needs Analysis
  • Skill-specific training delivery
  • Secure your organizations inside-out

Seeking Corporate Training?

Discover Tailored Solutions for your unique needs. Request a Quote Today!

1-on-1 training

Why Choose 1-on-1 Training

  • Get personalized attention
  • Customized content
  • Learn at your dedicated hour
  • Instant clarification of doubt
  • Guaranteed to run

Desire Personalized Attention?

Request for exclusive batches that are tailored just for you, with flexible schedules.
Ask for 1-on-1 Training Now!

Can't Find a Suitable Schedule? Talk to Our Training Advisor!
Loading...

About Course

InfosecTrain’s GH-500T00-A: GitHub Advanced Security Training helps learners understand, configure, and use GitHub Advanced Security to strengthen application security across the software development lifecycle. This training focuses on practical security implementation in GitHub repositories. Learners explore how GHAS helps secure code, secrets, and dependencies using developer-focused tools such as CodeQL, code scanning, secret scanning, Dependabot, dependency review, security alerts, and repository policies. Microsoft describes GHAS as a way to improve the security posture of software projects by identifying and addressing vulnerabilities throughout the development process.

The course is suitable for professionals who want to integrate security into development workflows, reduce risks before production, and prepare for the GitHub Advanced Security certification. The related certification validates the ability to secure code, secrets, and dependencies, configure security features, triage alerts, and use policies, workflows, and automation.

Course Curriculum

    Learning Path: GitHub Advanced Security Part 1 of 2

  • Module 1: Introduction to GitHub Advanced Security
    • Introduction
    • Define GHAS and the importance of its integral features
    • How to utilize GHAS to get the most impact
    • Understand GHAS and its role in the security ecosystem
  • Module 2: Configure Dependabot security updates on your GitHub repo
    • Introduction
    • Manage your dependencies on GitHub
    • Dependabot alerts
    • Dependabot security updates
    • Manage Dependabot notifications and reports
    • Dependency review
    • Exercise – Configure Dependabot security updates
  • Module 3: Configure and use secret scanning in your GitHub repository
    • Introduction
    • What is secret scanning?
    • Configure secret scanning
    • Use secret scanning
    • Exercise – Introduction to secret scanning
  • Module 4: Configure code scanning on GitHub
    • Introduction
    • What is code scanning?
    • Enable code scanning with third-party tools
    • Configure code scanning
    • Exercise – Configure code scanning
  • Learning Path: GitHub Advanced Security Part 2 of 2

  • Module 5: Identify security vulnerabilities in your codebase by using CodeQL
    • Introduction
    • Prepare a database for CodeQL
    • Run CodeQL in a database
    • Understand CodeQL results
    • Troubleshoot CodeQL results
  • Module 6: Code scanning with GitHub CodeQL
    • Introduction
    • What is CodeQL?
    • How does CodeQL analyze code?
    • What is QL?
    • Code scanning and CodeQL
    • Customize your code scanning workflow with CodeQL – Part 1
    • Exercise – Reference a CodeQL query
    • Customize your code scanning workflow with CodeQL – Part 2
    • Use the CodeQL CLI
    • Customize languages and builds for code scanning
    • Exercise – Configure a CodeQL language matrix
  • Module 7: GitHub administration for GitHub Advanced Security
    • Introduction
    • What is GitHub Advanced Security?
    • Enable GitHub Advanced Security
    • Manage access to GitHub Advanced Security
    • Manage the GitHub Advanced Security features and alerts
  • Module 8: Manage sensitive data and security policies within GitHub
    • Introduction
    • Setting security policies
    • Create and manage repository rulesets
    • Reporting and logging
    • Exercise – Removing a commit from the git history

Target Audience

This course is ideal for

  • DevOps Engineers
  • Developers
  • GitHub Administrators
  • Application Security Engineers
  • Security Engineers
  • Solution Architects
  • IT Professionals working with GitHub environments
  • Professionals preparing for GitHub Advanced Security certification

Pre-requisites

Learners should have:

  • Basic knowledge of GitHub repositories and workflows
  • Familiarity with CI/CD concepts
  • Understanding of secure software development fundamentals
  • Basic awareness of application security and vulnerability management

Exam Details

Certification Name GitHub Advanced Security
Exam Code GH-500
Exam Format Proctored exam; may include interactive components
Passing Score 700 or Greater
Exam Duration  100 Minutes
Exam Language English, Spanish, Portuguese (Brazil), Korean, Japanese
Availability Schedule through Pearson VUE

Note: The number of questions on a certification exam is subject to change as Microsoft updates it to align with current technology and job role changes. Most Microsoft Certification exams contain between 40 and 60 questions; however, the number can vary by exam.

Course Objectives

After completing GitHub Advanced Security Training, you will be able to:

  • Understand the core concepts of GitHub Advanced Security (GHAS) and its role in securing the software development lifecycle
  • Configure and manage security features such as code scanning, secret scanning, and dependency review
  • Use CodeQL to analyze code and identify vulnerabilities across multiple programming languages
  • Implement secure development practices within GitHub workflows and CI/CD pipelines
  • Detect, triage, and remediate security alerts effectively
  • Protect sensitive information by identifying and preventing secret leaks
  • Manage and secure open-source dependencies to reduce supply chain risks
  • Apply security policies, automation, and governance across repositories and organizations
  • Integrate GitHub security tools with enterprise security and compliance requirements
Still unsure?
We're just a click away
For
loader-infosectrain

Can't wait? Get in touch now

Toll Free Numbers
How We Help You Succeed
Vision

Vision

Goal

Goal

Skill-Building

Skill-Building

Mentoring

Mentoring

Direction

Direction

Support

Support

Success

Success

Benefits of Training

world

Secure Code Before Production

earnings

Reduce Exposed Secret Risks

user-exp.

Manage Vulnerable Dependencies

revenue

Improve DevSecOps Workflows

population

Build GH-500 Readiness

Average Salary

$165898
Application Security Engineer
$184757
DevSecOps Engineer
$198612
Security Software Engineer
$117785
Security Engineer
$137876
GitHub Administrator/GHAS Administrator

Average Salary

$165898K
Application Security Engineer
$184757K
DevSecOps Engineer
$198612K
Security Software Engineer
$117785K
Security Engineer
$137876K
GitHub Administrator/GHAS Administrator

Hiring Companies

"Source: Indeed, Glassdoor"

Confused about the right course for yourself?

Words Have Power
Success Speaks Volumes
Success Story
Get a Sample Certificate
Sample Certificate

Frequently Asked Questions

What is GitHub Advanced Security Training?

GitHub Advanced Security Training helps learners secure GitHub-based development workflows using GHAS features such as code scanning, secret scanning, Dependabot, dependency review, CodeQL, and security policies.

Who should enroll in GitHub Advanced Security training?

This course is suitable for:

  • DevOps Engineers
  • Developers
  • GitHub Administrators
  • Application Security Engineers
  • Security Engineers
  • Solution Architects
  • IT Professionals working with GitHub environments
  • Professionals preparing for GitHub Advanced Security certification

What topics are covered in GH-500 training?

The training covers GHAS fundamentals, Dependabot, dependency review, secret scanning, code scanning, CodeQL, GitHub administration, security policies, repository rulesets, and sensitive data management.

Does the course cover CodeQL, code scanning, and secret scanning?

Yes. The course covers CodeQL, GitHub code scanning, third-party scanning integration, secret scanning configuration, and alert usage.

Will I learn dependency scanning and supply chain security?

Yes. You will learn Dependabot alerts, Dependabot security updates, dependency review, notifications, and dependency risk management.

Is GitHub Advanced Security suitable for DevSecOps Engineers and Developers?

Yes. The course is useful for DevSecOps Engineers and Developers who want to integrate security directly into GitHub development workflows.

What skills will I gain from GitHub Advanced Security training?

You will gain skills in configuring GHAS features, managing alerts, scanning code, detecting secrets, reviewing dependencies, using CodeQL, and applying repository-level security policies.

Does the course cover secure software development practices?

Yes. The course focuses on securing code, dependencies, and secrets across the software development lifecycle using GitHub Advanced Security.

How does GitHub Advanced Security improve application security?

GHAS helps identify vulnerabilities, exposed secrets, and dependency risks earlier in development so teams can fix issues before production.

Can this training help implement DevSecOps in software development workflows?

Yes. The course supports DevSecOps adoption by teaching learners how to integrate security checks, alerts, policies, and automation into GitHub workflows.

How does GitHub Advanced Security help identify and remediate code vulnerabilities?

GHAS uses code scanning and CodeQL to detect potential vulnerabilities, display results, support troubleshooting, and help teams prioritize remediation.

Is this course aligned with Microsoft’s GitHub Advanced Security certification?

Yes. The course is aligned with GH-500T00-A and supports preparation for the GitHub Advanced Security certification. Microsoft lists GitHub Advanced Security as the related certification for GH-500T00-A.

TOP