HTTP/1.1 200 OK Date: Thu, 08 Jan 2026 06:54:28 GMT Content-Type: text/html; charset=utf-8 Vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With ETag: W/"d9e497f726d282b6038c45bce6131b55" Cache-Control: max-age=0, private, must-revalidate Strict-Transport-Security: max-age=31536000; includeSubdomains; preload X-Frame-Options: deny X-Content-Type-Options: nosniff X-XSS-Protection: 0 Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin Content-Security-Policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com github.githubassets.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com wss://alive-staging.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com s88570519.t.eloqua.com/e/f2; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com marketplace-screenshots.githubusercontent.com/ copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com github.githubassets.com ps-resources.github.io/es-offerings-site-feed; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ Server: github.com Content-Encoding: gzip Accept-Ranges: bytes Set-Cookie: _octo=GH1.1.1817819468.1767855268; Path=/; Domain=github.com; Expires=Fri, 08 Jan 2027 06:54:28 GMT; Secure; SameSite=Lax Set-Cookie: logged_in=no; Path=/; Domain=github.com; Expires=Fri, 08 Jan 2027 06:54:28 GMT; HttpOnly; Secure; SameSite=Lax X-GitHub-Request-Id: B5EC:11410B:83379B5:6E89C4A:695F54A4 Transfer-Encoding: chunked GitHub Advanced Security - Rollout and Deployment Training | Expert Services | GitHub · GitHub
🌐 شما از Web Proxy استفاده می‌کنید صفحه اصلی
Skip to content
Expert Services
Contact Experts

GitHub Advanced Security - Rollout and Deployment Training

Overview

A successful GitHub Advanced Security rollout at scale requires careful planning and involves both technical and organizational change management. This training provides support during the planning phases by providing best practices, recommended rollout strategies and identifying common pitfalls and issues.

Offering level

Advanced [300]

Target Audience

  • Platform Team
  • Product Security teams
  • DevSecOps teams
  • GitHub administrators

Key features and benefits

  • Understand best practices for rolling out GitHub Advanced Security.
  • Learn about the technical features that help support a phased or gradual rollout of Advanced Security across your organization.
  • Explore the techniques used to achieve high compliance and high remediation rates for identified vulnerabilities, including documentation and proactive enablement via PRs.
  • Demonstration of how to enable GitHub Advanced Security on GitHub Enterprise Server.

Engagement schedule

This engagement will consist of one session of 2 hours face-to-face time. Maximum session size is typically 15 people.

Syllabus

  • Introduction
  • Enabling GitHub Advanced Security on GitHub Enterprise (if applicable)
  • Planning a rollout
    • How to avoid forseeable problems
    • Get clean vs. keep clean
    • Code Scanning:
      • CI/CD integration, leveraging automation and CodeQL query selection
    • Secret Scanning:
      • Push protection, notifications and campaigns
  • How to enable Code Scanning at scale
    • CI/CD integration strategies for CodeQL
    • Automating enablement of CodeQL
  • Supporting developers
    • Internal documentation
    • Internal communication and support
    • Education
  • How to enable Secret Scanning at scale
  • Using policies to determine which organizations can use GHAS
  • Common pitfalls & how to be successful

Learning outcomes/business outcomes

After completing this workshop participants will be able to:

  • Enable the organization to maintain a sustained and controlled rollout of GitHub Advanced Security.

Prerequisites

  • Attendees should have completed the Developer Training, or have equivalent knowledge of GHAS.

How can we help?

Let's build a customized solution that meets all of your needs.

This field is required.
Please enter a valid work email address.
This field is required.
This field is required.
For support questions, head to
github.com/contact
Back to catalog listing