Implementing and Operating Cisco Security Core Technologies
This authorized five-day course is aimed on implementation and operate cisco security technologies including network security, cloud security, content security, endpoint protection and detection, secure network access, visibility and enforcements.
Course length: 5 days (8:30 - 16:00)
Dates
-
Students will be able to
- Describe information security concepts and strategies within the network
- Describe common TCP/IP, network application, and endpoint attacks
- Describe how various network security technologies work together to guard against attacks
- Implement access control on Cisco ASA appliance and Cisco Firepower Next-Generation Firewall
- Describe and implement basic email content security features and functions provided by Cisco Email Security Appliance
- Describe and implement web content security features and functions provided by Cisco Web Security Appliance
- Describe Cisco Umbrella security capabilities, deployment models, policy management, and Investigate console
- Introduce VPNs and describe cryptography solutions and algorithms
- Describe Cisco secure site-to-site connectivity solutions and explain how to deploy Cisco IOS VTI-based point-to-point IPsec VPNs, and point-to-point IPsec VPN on the Cisco ASA and Cisco FirePower NGFW
- Describe and deploy Cisco secure remote access connectivity solutions and describe how to configure 802.1x and EAP authentication
- Provide basic understanding of endpoint security and describe AMP for Endpoints architecture and basic features
- Examine various defenses on Cisco devices that protect the control and management plane
- Configure and verify Cisco IOS Software Layer 2 and Layer 3 Data Plane Controls
- Describe Cisco Stealthwatch Enterprise and Stealthwatch Cloud solutions
- Describe basics of cloud computing and common cloud attacks and how to secure cloud environment
-
Course requirements
- Participation in CCNA, or CCNA certification, or adequate knowledge
- Familiarity with Ethernet and TCP/IP networking
- Knowledge of Cisco IOS networking and basic networking security concepts
-
This course is intended for
- Network administrators
- Security/network/system engineer
- Technical Solutions Architect/Network Designer
- Applicants for 350-701 SCOR certification, which is the part of CCNP Security (Cisco Certified Network Professional Security), CCIE Security and Cisco Certified Specialist - Security Core.
-
Literature
All participants will get original Cisco student and lab guides.
-
Hardware
Labs are practised on Cisco delivered Virtual lab environment. Classrooms are equipped with high-performance computers with Internet access and the possibility of wireless connection.
-
Syllabus
- Describing Network Security Technologies
- Deploying Cisco ASA Firewall
- Deploying Cisco Firepower Next-Generation Firewall
- Deploying Email Content Security
- Deploying Web Content Security
- Explaining VPN Technologies and Cryptography Concepts
- Introducing Cisco Secure Site-to-Site VPN Solutions
- Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
- Deploying Point-to-Point IPsec VPNs on the Cisco ASA and Cisco Firepower NGFW
- Introducing Cisco Secure Remote Access VPN Solutions
- Deploying Remote Access SSL VPNs on the Cisco ASA and Cisco Firepower NGFW
- Describing Information Security Concepts *
- Describing Common TCP/IP Attacks *
- Describing Common Network Application Attacks *
- Describing Common Endpoint Attacks *
- Deploying Cisco Umbrella *
- Explaining Cisco Secure Network Access Solutions *
- Describing 802.1x Authentication *
- Configuring 802.1x Authentication *
- Describing Endpoint Security Technologies *
- Deploying Cisco AMP for Endpoints *
- Introducing Network Infrastructure Protection *
- Deploying Control Plane Security Controls *
- Deploying Layer 2 Data Plane Security Controls *
- Deploying Layer 3 Data Plane Security Controls *
- Deploying Management Plane Security Controls *
- Deploying Traffic Telemetry Methods *
- Deploying Cisco Stealthwatch Enterprise *
- Describing Cloud and Common Cloud Attacks *
- Securing the Cloud *
- Deploying Cisco Stealthwatch Cloud *
- Describing SDN *
* Points in italics are defined as self-study according to the Cisco's company official curriculum.
Prices do not include VAT. OKsystem a.s. reserves the right to change dates and prices of courses.