“The GitHub Copilot enablement workshop transformed how our developers approach productivity with immediately practical patterns.”
Microsoft Official Curriculum
Role-Based Certification PrepTrack: GitHub Advanced SecurityOfficial Source: Microsoft Learn
MicrosoftIntermediate
GitHub Advanced Security
GitHub Advanced Security (GHAS) plays a crucial role in enhancing the security posture of software development projects on GitHub. It provides a comprehensive set of tools and features designed to identify and address security vulnerabilities throughout the development lifecycle. By integrating security directly into the development process with GHAS, your team can build more secure and reliable software. The course will explore how to utilize GHAS to maximize security impact and understand GHAS and its role in the security ecosystem.
Duration
1 day
Level
Intermediate
Format
Virtual, On-site, or Hybrid
Language
English
Executive brief for stakeholdersDownload Program Brief (PDF)
Microsoft
DevopsIT
GitHub Advanced Security
Github
Security
On this page
Ideal for
AdministratorDevOpsCertification ReadinessTailored Team Delivery
Audience Profile
Built for these roles
This course in intended for students who want to understand and implement advanced security practices with the help of GitHub Advanced Security (GHAS). They will learn how to significantly enhance software development processes and create a more resilient and secure development ecosystem using developer-first solutions to unlock the ability to keep code, supply chain, and secrets secure before you push to production. They will learn how GHAS gives security teams visibility into the cross-organizational security posture and supply chain and unparalleled access to curated security intelligence from millions of developers and security researchers around the world.
Overview
Executive overview
Candidates for this exam have experience using GitHub Advanced Security (GHAS) to secure code, secrets, and dependencies across the software development lifecycle.
Program Outcomes
Capabilities your teams will gain
Domain 1: Describe GitHub Security Suites, Features, and Ecosystem (15-20%)
Domain 2: Configure and Use Secret Protection (formerly secret scanning) (15-20%)
Domain 3: Configure and Use Supply Chain Security (formerly Dependabot/Dependency Review) (15-20%)
Domain 4: Configure and Use Code Security (formerly Code Scanning with CodeQL) (10-15%)
Curriculum
Curriculum roadmap
1
Domain 1: Describe GitHub Security Suites, Features, and Ecosystem (15-20%)
2
Domain 2: Configure and Use Secret Protection (formerly secret scanning) (15-20%)
3
Domain 3: Configure and Use Supply Chain Security (formerly Dependabot/Dependency Review) (15-20%)
4
Domain 4: Configure and Use Code Security (formerly Code Scanning with CodeQL) (10-15%)
5
Domain 5: Security Operations: Best Practices, Prioritization, and Remediation (15-20%)
6
Domain 6: GitHub Security Suites Administration (10-15%)
1Module 1
GitHub Advanced Security Part 1 of 2
+
Module 1
GitHub Advanced Security Part 1 of 2
Learn how to secure your code with advanced security features at every stage of your development lifecycle. GitHub Advanced Security is an add-on to GitHub Enterprise that allows you to use security features, such as secret scanning, code scanning, and dependency management on your private repositories.
- Introduction to GitHub Advanced Security
- Configure Dependabot security updates on your GitHub repo
- Configure and use secret scanning in your GitHub repository
- Configure code scanning on GitHub
2Module 2
GitHub Advanced Security Part 2 of 2
+
Module 2
GitHub Advanced Security Part 2 of 2
Learn how to secure your code with advanced security features at every stage of your development lifecycle. GitHub Advanced Security is an add-on to GitHub Enterprise that allows you to use security features, such as secret scanning, code scanning, and dependency management on your private repositories. This is the second learning path out of two learning paths of GHAS.
- Identify security vulnerabilities in your codebase by using CodeQL
- Code scanning with GitHub CodeQL
- GitHub administration for GitHub Advanced Security
- Manage sensitive data and security policies within GitHub
Delivery Models
Delivery models
Virtual ILTOnsiteHybridExecutive WorkshopBootcampWeekend
Engagement Fit
Engagement fit
Certification readinessImplementation-focused labsPrivate cohort deliveryIntermediate practitioner depth
Enterprise Customization
Enterprise customization
Tailor this program to your organization's priorities: Builds current Microsoft credential readiness for GitHub Advanced Security using the official Microsoft Learn skill outline.
- •Align labs to your Microsoft tenant and workload scenarios
- •Add readiness checks and exam preparation reviews
- •Extend delivery with role-specific implementation workshops
Credentials
Certification & official source
- •GitHub Advanced Security
Aligned to the official Microsoft Learn course and learning path for this program.
View Official Microsoft Learn PageResources
Program resources
Yes. Most enterprise clients prefer private delivery scoped to role mix, timezone, and rollout timeline. We align lab environments and scenarios to your tenant context where applicable.
Enterprise Proof
Trusted delivery outcomes
Delivery Capability
Enterprise-grade instruction
MCT-led delivery
Programs led by Microsoft Certified Trainer practitioners
Enterprise program oversight
Founder-led specialist delivery with structured rollout planning
Global delivery
APAC · EMEA · Americas · Virtual & Onsite
Implementation-focused
Hands-on labs aligned to production scenarios
