Course Overview

The GH-900 module delves into advanced GitHub capabilities focused on security, compliance, and enterprise governance. This module is tailored for professionals aiming to implement and manage secure development practices within GitHub environments. You will explore features like code scanning, secret detection, dependency reviews, and security policies, while also learning how to enforce organizational standards at scale using GitHub’s enterprise-level tooling. By completing this module, you’ll gain the skills to proactively protect codebases, ensure regulatory compliance, and build secure, compliant workflows across your development lifecycle.

After completing the GH 900 certification training, participants will be able to:

  • Enable and configure GitHub Advanced Security features like secret scanning, code scanning, and dependency reviews.
  • Set up organization-wide security and compliance policies using GitHub Enterprise settings.
  • Interpret security alerts and automate remediation using GitHub Actions and third-party tools.
  • Enforce repository-level governance through security policies, branch protection rules, and access controls.
  • Integrate GitHub with CI/CD pipelines and external security tools for enhanced compliance and auditing.
  • Educate development teams on secure coding practices supported by GitHub’s automated guidance.

Upcoming Batches

Loading Dates...

Key Features of GH-900-GitHub Foundations:

  • Led by GitHub Security Experts: Receive in-depth instruction from certified professionals with hands-on enterprise security experience.

  • Scenario-Based Labs: Gain experience managing secrets, scanning for vulnerabilities, and applying organizational compliance policies.

  • Integrated Tooling Demonstrations: Learn how to use GitHub Advanced Security alongside tools like CodeQL, Dependabot, and external security scanners.

  • Security-First Best Practices: Explore real-world examples of secure DevOps implementations using GitHub’s native features.

  • Enterprise-Level Insights: Understand how large organizations manage risk, enforce compliance, and build secure software at scale.

  • Official Microsoft Curriculum: Study materials aligned with Microsoft’s Applied Skills program to prepare for certifications and enterprise application.

Who should Attend GH-900 course ?

  • This course is best suited for professionals aiming to implement or manage secure DevOps workflows using GitHub:
  • Security Engineers & DevSecOps Practitioners working to integrate proactive security into development pipelines.
  • GitHub Enterprise Administrators responsible for managing organization-level compliance and governance.
  • Developers and Leads who need to understand how to code securely using GitHub’s built-in automation and policy tools.
  • Compliance Officers & Auditors looking for traceable, auditable development workflows tied to security standards.
  • Toolchain Architects integrating GitHub with broader security ecosystems such as SIEMs, SAST/DAST tools, and policy engines.

Pre-requisites of GH-900:

To maximize learning outcomes, it’s recommended that learners have:
  • A working knowledge of Git and GitHub workflows (e.g., pull requests, branching, actions)
  • Experience with software development or DevOps pipelines.
  • Familiarity with basic security concepts (e.g., secrets, vulnerabilities, static code analysis).
  • Optional: Exposure to GitHub Advanced Security features like code scanning or Dependabot alerts.

    • Why choose CloudThat as your training partner for GH-900?

    • CloudThat has successfully trained a vast number of professionals, approximately 6.5 lakh individuals, and provided training services to more than 100 corporate clients across the globe.
    • We have well-trained, experienced, and certified Subject matter experts and instructors to conduct these trainings.
    • The course guides students through specific tasks and real-world challenges to help them understand the relevance, power, and usefulness of Microsoft Word.

    Course Outline of GH-900- GitHub Foundations: Download Course Outline

    • Introduction
    • What is version control?
    • Basic Git commands

    • What is GitHub?
    • Components of the GitHub flow
    • GitHub is a collaborative platform
    • GitHub platform management
    • Exercise - A guided tour of GitHub

    • GitHub accounts and plans
    • GitHub Mobile and GitHub Desktop
    • GitHub billing
    • License Usage Stats
    • License Usage Stats in Machine and Peripheral Devices
    • Metered Usage Reports

    • Introduction
    • What is code scanning?
    • Enable code scanning with third party tools
    • Configure code scanning
    • Configure code scanning exercise

    • GitHub Copilot, your AI pair programmer
    • Interact with Copilot
    • Set up, configure, and troubleshoot GitHub Copilot
    • Exercise - Develop with AI-powered code suggestions by using GitHub Copilot and VS Code

    • The Codespace lifecycle
    • Personalize your Codespace
    • Codespaces versus GitHub.dev editor
    • Exercise - Code with Codespaces and Visual Studio Code

    • Projects versus Projects Classic
    • How to create a project
    • How to organize your project
    • How to organize and automate your project
    • Insight and automation with projects

    • What is Markdown?
    • Exercise - Communicate using Markdown

    • Identify where you can help
    • Contribute to an open-source repository
    • Exercise - Create your first pull request

    • How to manage a successful InnerSource program
    • Exercise - InnerSource fundamentals

    • How to maintain a secure GitHub repository
    • Automated security
    • Exercise - Secure your repository's supply chain

    • What is GitHub administration?
    • How does GitHub authentication work?
    • How does GitHub organization and permissions work?
    • Managing enterprise access, permissions, and governance

    • User identity and access management
    • User authentication
    • User authorization
    • Team synchronization

    • What are pull requests?
    • Exercise - Reviewing pull requests

    • How to search and organize repository history by using GitHub
    • Exercise - Connect the dots in a GitHub repository

    • What is GitHub Copilot?
    • Exercise - Set up GitHub Copilot to work with Visual Studio Code
    • Use GitHub Copilot with Python
    • Exercise - Update a Python web API with GitHub Copilot

    Certification Details:

    • Earning the GH-900 GitHub Copilot Applied Skills credential validates your ability to apply AI coding assistance in real development scenarios.
    • The certification proves your skill in leveraging GitHub Copilot to accelerate coding, testing, and documentation tasks in modern IDEs.
    • GH-900 training prepares you to use AI responsibly and effectively within your software projects and team environments.
    • Successful completion of the GH-900 assessment awards a Microsoft Applied Skills certificate that is shareable on LinkedIn and resumes.
    • Completing GH-900 equips learners with AI-enhanced development techniques, boosting productivity and readiness for future developer AI tools

    Click to Zoom

    Select Course date

    Loading Dates...
    Add to Wishlist

    Course ID: 25533

    Course Price at

    Loading price info...
    Enroll Now
    Enquire Now