Course Outline
DevSecOps Sovereignty with GitLab
- GitLab CE vs EE vs GitLab.com: feature and control comparison.
- Omnibus architecture and Kubernetes Helm deployment options.
- SaaS lock-in risks and data residency requirements.
Installation and Architecture
- Omnibus installation on Ubuntu with PostgreSQL and Redis.
- GitLab Helm chart on Kubernetes with persistent volumes.
- External services: object storage, SMTP, LDAP.
- Geo replication for multi-region disaster recovery.
Repository and Project Management
- Groups, subgroups, and project hierarchies.
- Merge request workflows, code review, and approval rules.
- Issue boards, epics, and milestones for Agile planning.
- Wiki, snippets, and release management.
CI/CD Pipeline Engineering
- .gitlab-ci.yml syntax, stages, and job dependencies.
- Runner types: shared, group, and specific runners.
- Docker executor, Kubernetes executor, and autoscaling.
- Artifact caching, registry publishing, and deployment stages.
Security Scanning
- SAST, DAST, dependency scanning, and container scanning.
- Secret detection and license compliance.
- Vulnerability dashboards and remediation tracking.
Authentication and Authorization
- LDAP, SAML, and OpenID Connect SSO.
- Two-factor authentication and personal access tokens.
- IP allowlisting and audit event logging.
Registry and Package Management
- Container registry: authentication, cleanup policies, and replication.
- Package registry for Maven, npm, PyPI, and Conan.
- Generic package uploads for internal artifacts.
Monitoring and Scaling
- GitLab Exporter metrics and Grafana dashboards.
- Database tuning and PgBouncer connection pooling.
- Horizontal scaling of web, API, and sidekiq nodes.
- Backup strategies: rake tasks, object storage, and restore verification.
Requirements
- Advanced Linux system administration and Ruby/Go basics.
- Understanding of CI/CD, container orchestration, and Git workflows.
- Experience with PostgreSQL and Redis at scale.
Audience
- Enterprise DevOps teams replacing GitLab.com or GitHub Enterprise.
- Organizations requiring full DevSecOps toolchain sovereignty.
- Regulated industries needing on-premise CI/CD and registry.
Custom Corporate Training
Training solutions designed exclusively for businesses.
- Customized Content: We adapt the syllabus and practical exercises to the real goals and needs of your project.
- Flexible Schedule: Dates and times adapted to your team's agenda.
- Format: Online (live), In-company (at your offices), or Hybrid.
Price per private group, online live training, starting from 3900 € + VAT*
Contact us for an exact quote and to hear our latest promotions
Testimonials (2)
I like that I've got immediately answer to my questions.
Szabolcs Kriston - Ericsson
Course - Advanced GitLab
I liked the easy communication between trainer and us, care given to our problems, insights and additional knowledge provided in anwers to our questions. I liked the pace, it didn't feel rushed at any point, even with technical problems. Each subject was taken care of properly.
