DevSecOps with GitLab Secure CICD with GitLab 2022

This course helps to implement DevSecOps in GitLab and integrate SAST, SCA & DAST security tools in CI/CD Pipeline
DevSecOps with GitLab Secure CICD with GitLab 2022
File Size :
650.18 MB
Total length :
2h 1m



A Security Guru


Last update

Last updated 10/2022



DevSecOps with GitLab Secure CICD with GitLab 2022

What you’ll learn

Learn DevSecOps implementation with GitLab
Learn SAST Integration with GitLab
Learn SCA Integration with GitLab
Learn DAST integration with GitLab
Learn to report security issues in JIRA
Learn to implement SonarQube/SonarCloud in DevSecOps Pipeline
Learn to implement Snyk in DevSecOps Pipeline
Learn to implement OWASP ZAP in DevSecOps Pipeline
Learn to populate code coverage on Sonar Dashboard

DevSecOps with GitLab Secure CICD with GitLab 2022


Basic computer knowledge
Good to have interest in Security domain


Who shall take this course?This “DevSecOps with GitLab” course is designed for Security Engineers, DevOps Engineers, SRE, QA Professionals and Freshers looking to find a job in the field of security. This is a focused GitLab DevSecOps course with a special focus on integrating SAST/SCA/DAST tools in Build pipeline. Learn and implement security in DevOps pipeline, get Hands On experience in using Security tools & technologies. This course is for:DevelopersDevOpsSecurity EngineersAspiring professional in the Security domainQuality Assurance EngineersInfoSec/AppSec Professional DevSecOps being the hot skill, will help you to secure a high-salaried job and stay informed on the latest market trends. Why purchase this course?This is only practical hands-on course available on the internet till now.DevSecOps enables rapid application development with agility, at the same time it secures your application with automated security checks integrated within the pipeline. It helps to increase productivity and security by integrating security stages in the pipeline.Also, we have included practical examples to implement security in the DevOps pipeline through various tools.By the end of the course, you will be able to successfully implement DevOps or DevSecOps pipeline and lead initiatives to create, build and maintain security pipelines in your project.No Action required before taking this course. For any question or concerns, Please post your comments on discussions tabDisclaimer: English subtitles are auto-generated so please ignore any grammar mistakes


Section 1: Introduction

Lecture 1 Introduction & Course Agenda

Lecture 2 About the Course

Lecture 3 About Instructor

Section 2: Deep Dive into DevSecOps

Lecture 4 Basic Security Terms – If new to security field

Lecture 5 What is DevSecOps?

Lecture 6 Tools used for DevSecOps Implementation in the market – Detailed discussion

Lecture 7 DevSecOps in GitLab

Section 3: Hands On – Implementing DevSecOps Pipeline in GitLab

Lecture 8 Create GitLab Free Tier Account

Lecture 9 Import Vulnerable source code repo in GitLab from GitHub account

Lecture 10 Create master branch and make it default for the source code repo in GitLab

Lecture 11 Write a simple .gitlab-ci.yml file and print text using GitLab shared runner

Section 4: Implement SAST in GitLab DevSecOps Pipeline using SonarCloud

Lecture 12 What is SonarCloud and its benefits?

Lecture 13 Create an account with SonarCloud before implementing SAST in DevSecOps Pipeline

Lecture 14 Hands-On: Integrate SonarCloud within GitLab DevSecOps pipeline

Lecture 15 Hands-On: Populate Unit Test Code Coverage on SonarCloud Dashboard for DevSecOps

Section 5: Implement SCA in GitLab DevSecOps Pipeline using Snyk

Lecture 16 What is Snyk and its benefits?

Lecture 17 Create an account with Snyk before implementing SCA in DevSecOps Pipeline

Lecture 18 Hands-On: Integrate Snyk within GitLab DevSecOps Pipeline to perform SCA

Section 6: Implement DAST in GitLab DevSecOps Pipeline using OWASP ZAP

Lecture 19 What is OWASP ZAP and its benefits?

Lecture 20 Hands-On: Integrate OWASP ZAP within GitLab DevSecOps Pipeline to perform DAST

Section 7: Report Security issues found during SAST, SCA & DAST scans in JIRA

Lecture 21 Hands On: Create a JIRA account with Atlassian with custom JIRA site

Lecture 22 Hands On: Report SAST security issues in JIRA identified by SonarCloud

Lecture 23 Hands On: Report SCA security issues in JIRA identified by Snyk

Lecture 24 Hands On: Report DAST security issues in JIRA identified by OWASP ZAP

Section 8: Next Steps and Bonus section

Lecture 25 Optional: Security As a Career

Lecture 26 Sample DevSecOps Engineer CV

Lecture 27 Bonus Lecture

DevSecOps Engineers,DevOps Engineers,Cloud Security Engineers

Course Information:

Udemy | English | 2h 1m | 650.18 MB
Created by: A Security Guru

You Can See More Courses in the IT & Software >> Greetings from

New Courses

Scroll to Top