Search Results

Further Information

• 350-701 SCOR: Course Overview

  The Implementing and Operating Cisco Security Core Technologies (SCOR) Learning Path helps you gain the skills and technologies needed to implement core Cisco security solutions.

  This Learning Path will ready you to provide advanced threat protection against cybersecurity attacks and prepare you for senior-level security roles.

  This Learning Path prepares you for the 350-701 SCOR v1.1 exam. If passed, you earn the Cisco Certified Specialist – Security Core certification and satisfy the core exam requirement for the Cisco Certified Network Professional (CCNP) Security and Cisco Certified Internetwork Expert (CCIE) Security certifications.

• 350-701 SCOR: Course Modules

  Module 1: Network Security Controls Core Skills
  • Network Security Technologies
  • Cisco Secure Firewall ASA Deployment
  • Cisco Secure Firewall Threat Defence Basics
  • Cisco Secure Firewall Threat Defence IPS, Malware, and File Policies
  • Cisco Secure Email Gateway Basics
  • Cisco Secure Email Gateway Policy Configuration
  • Cisco Secure Web Appliance Deployment.

  Module 2: Endpoints and Systems Core Skills
  • Common Endpoint Attacks
  • Cisco Umbrella Deployment
  • Endpoint Security Technologies
  • Cisco Secure Endpoint.

  Module 3: Identity Access Management Core Skills
  • Cisco Secure Network Access Solutions
  • 802.1X Authentication
  • 802.1X Authentication Configuration.

  Module 4: Secure Transport Core Skills
  • VPN Technologies and Cryptography Concepts
  • Cisco Secure Site-to-Site VPN Solutions
  • Cisco IOS VTI-Based Point-to-Point IPsec VPNs
  • Point-to-Point IPsec VPNs on the Cisco Secure Firewall ASA and Cisco Secure Firewall Threat Defence
  • Cisco Secure Remote Access VPN Solutions
  • Remote-Access SSL VPNs on the Cisco Secure Firewall ASA and Cisco Secure Firewall Threat Defence.

  Module 5: Secure Network Infrastructure and Telemetry Core Skills
  • Network Infrastructure Protection
  • Control Plane Security Solutions
  • Layer 2 Data Plane Security Controls
  • Layer 3 Data Plane Security Controls
  • Management Plane Security Controls
  • Traffic Telemetry Methods
  • Cisco Secure Network Analytics Deployment.

  Module 6: Cloud Security Concepts Core Skills
  • Cloud Computing and Cloud Security
  • Cloud Security
  • Cisco Secure Cloud Analytics Deployment
  • Software-Defined Networking.

  Module 7: Network Security Core Skills
  • Describe Information Security Concepts
  • Describe Common TCP/IP Attacks
  • Describe Common Network Application Attacks.

• 350-701 SCOR: Course Objectives

  By the end of this course, you should be able to:

  • Secure networks, cloud infrastructure, and content.
  • Provide endpoint protection and secure network access.
  • Enable visibility and enforcement.
  • Deploy powerful security tools, such as Cisco Secure Firewall Threat Defense and Cisco Adaptive Security Appliance (ASA) Firewall.

• 350-701 SCOR: Prerequisites

  Professional-level certifications expand on the foundations of associate-level certifications. They cover more advanced topics and allow candidates to hone in on a specific focus area of their choice. Many professional-level certification candidates are looking to prove they’re the best of the best in a specialised field.

  Whilst there are no formal prerequisites, learners often have three to five years of experience implementing security solutions.

• 300-710 SNCF: Course Overview

  There are two recommended training offers to help you prepare for the 300-710 SNCF exam.

  When preparing, it is recommended that you start with the Fundamentals of Cisco Firewall Threat Defense and Intrusion Prevention (SFWIPF) training, followed by the Securing Data Center Networks and VPNs with Cisco Secure Firewall Threat Defense (SFWIPA) training offering.

  SPWIPF:

  The Fundamentals of Cisco Firewall Threat Defense and Intrusion Prevention learning path equips you with the skills to effectively manage the Cisco Secure Firewall.

  You’ll gain an understanding of Cisco Secure Firewall architecture and deployment, base configuration, packet processing and advanced options, and conducting Secure Firewall administration troubleshooting.

  SPWIPA:

  The Advanced Techniques for Cisco Firewall Threat Defense and Intrusion Prevention learning path shows you how to deploy Cisco Secure Firewall Threat Defense system and its features as a data center network firewall or as an Internet Edge firewall with Virtual Private Network (VPN) support.

  You will learn how to configure identity-based policies, Secure Sockets Layer (SSL) decryption, remote-access VPN, and site-to-site VPN before moving on to advanced Intrusion Prevention System (IPS) configuration and event management, integrations with other systems, and advanced troubleshooting.

  You will also learn how to automate configuration and operations of Cisco Secure Firewall Threat Defense system using programmability and Application Programming Interfaces (APIs) and how to migrate configuration from Cisco Secure Firewall Adaptive Security Appliances (ASA).

  This learning path prepares you for the 300-710 Securing Networks with Cisco Firepower (SNCF) exam. If passed, you earn the Cisco Certified Specialist – Network Security Firepower certification and satisfy the concentration exam requirement for the Cisco Certified Networking Professional (CCNP) Security certification.

• 300-710 SNCF (SFWIPF): Course Modules

  Module 1: Cisco Secure Firewall Architecture and Deployment
  • Introducing Cisco Secure Firewall Threat Defence
  • Describing Cisco Secure Firewall Threat Defence Deployment Options
  • Describing Cisco Secure Firewall Threat Defence Management Options.

  Module 2: Cisco Secure Firewall Base Configuration
  • Configuring Basic Network Settings on Cisco Secure Firewall Threat Defence
  • Configuring High Availability on Cisco Secure Firewall Threat Defence
  • Configuring Auto Network Address Translation on Cisco Secure Firewall Threat Defence.

  Module 3: Packet Processing and Advanced Inspection
  • Describing Packet Processing and Policies on Cisco Secure Firewall Threat Defence
  • Configuring Discovery Policy on Cisco Secure Firewall Threat Defence
  • Configuring Prefilter Policy on Cisco Secure Firewall Threat Defence
  • Configuring Access Control Policy on Cisco Secure Firewall Threat Defence
  • Configuring Security Intelligence on Cisco Secure Firewall Threat Defence
  • Configuring File Policy on Cisco Secure Firewall Threat Defence
  • Configuring Intrusion Policy on Cisco Secure Firewall Threat Defence.

  Module 4: Secure Firewall Administration and Troubleshooting
  • Performing Basic Threat Analysis on Cisco Secure Firewall Management Center
  • Managing Cisco Secure Firewall Threat Defence System
  • Troubleshooting Basic Traffic Flow
  • Cisco Secure Firewall Threat Defence Device Manager.

• 300-710 SNCF (SFWIPA): Course Modules

  Module 1: Cisco Secure Firewall Advanced Firewall Configurations
  • Reviewing Cisco Secure Firewall Threat Defence Functionalities
  • Describing Advanced Deployments on Cisco Secure Firewall Threat Defence
  • Configuring Advanced Device Settings on Cisco Secure Firewall Threat Defence
  • Configuring Dynamic Routing on Cisco Secure Firewall Threat Defence
  • Configuring Advanced NAT on Cisco Secure Firewall Threat Defence.

  Module 2: Advanced Snort Configurations and Features
  • Configuring SSL Policy on Cisco Secure Firewall Threat Defence
  • Deploying Identity-Based Policies on Cisco Secure Firewall Threat Defence
  • Configuring Advanced Access Control Settings on Cisco Secure Firewall Threat Defence.

  Module 3: Cisco Secure Firewall VPN Technologies
  • Deploying Remote Access VPN on Cisco Secure Firewall Threat Defence
  • Deploying Site-to-Site VPN on Cisco Secure Firewall Threat Defence.

  Module 4: Cisco Secure Firewall Administration, Integration, and Troubleshooting
  • Describing Advanced Event Management Cisco Secure Firewall Threat Defence
  • Describing Integrations on Cisco Secure Firewall Threat Defence
  • Troubleshooting Advanced Traffic Flow on Cisco Secure Firewall Threat Defence
  • Automating Cisco Secure Firewall Threat Defence
  • Migrating to Cisco Secure Firewall Threat Defence.

• 300-710 SNCF (SFWIPF): Course Objectives

  By the end of this course, you should be able to:

  • Understand how to deploy and manage Cisco Secure Firewall Threat Defence system.
  • Learn to configure network settings on Cisco Secure Firewall.
  • Understand the packet processing flow and policy types used in Cisco Secure Firewall for traffic control and inspection.
  • Learn to configure policies within Cisco Secure Firewall Threat Defence.
  • Identify and troubleshoot common issues related to traffic flow, connectivity, packet drops, and performance bottlenecks on the Cisco Secure Firewall.
  • Learn to use the Cisco Secure Firewall Threat Defence Manager to streamline deployment and simplify policy management.

• 300-710 SNCF (SFWIPA): Course Objectives

  By the end of this course, you should be able to:

  • Attain advanced knowledge of Cisco Secure Firewall Threat Defence technology.
  • Gain competency and skills required to implement and manage a Cisco Secure Firewall Threat Defence system regardless of platform.
  • Learn detailed information on policy management, traffic flow through the system, and the system architecture.
  • Deploy and manage many of the advanced features available in the Cisco Secure Firewall Threat Defence system.
  • Gain knowledge for protocols, solutions, and designs to acquire professional-level and expert-level data center roles.

• 300-710 SNCF: Prerequisites

  Professional-level certifications expand on the foundations of associate-level certifications. They cover more advanced topics and allow candidates to hone in on a specific focus area of their choice. Many professional-level certification candidates are looking to prove they’re the best of the best in a specialised field.

  Whilst there are no formal prerequisites, learners often have three to five years of experience implementing security solutions.

• 300-715 SISE: Course Overview

  The Implementing and Configuring Cisco Identity Services Engine learning path teaches you to deploy and use the Cisco Identity Services Engine (ISE), an identity and access control policy platform that simplifies the delivery of consistent, highly secure access control across wired, wireless, and VPN connections.

  Completing this learning path will help you prepare for the Implementing and Configuring Cisco Identity Services Engine (300-715 SISE) exam and earn your Cisco Certified Specialist – Security Identity Management Implementation certification. Passing this exam can also fulfil the concentration exam requirement for the CCNP Security certification.

• 300-715 SISE: Course Modules

  Module 1: Architecture and Deployment
  • Introducing Cisco ISE Architecture
  • Introducing Cisco ISE Deployment.

  Module 2: ISE Policy Enforcement
  • Introducing Cisco ISE Policy Enforcement Components
  • Introducing Cisco ISE Policy Configuration
  • Troubleshooting Cisco ISE Policy and Third-Party NAD Support
  • Exploring Cisco TrustSec.

  Module 3: ISE Access Management
  • Web Auth and Guest Services
  • Configuring Hotspots and Guest Portals
  • Cisco ISE BYOD
  • Working with Network Access Devices.

  Module 4: ISE Profiler
  • Cisco ISE Profiler
  • Introducing Profiling Best Practices and Reporting.

  Module 5: ISE Endpoint Compliance
  • Introducing Cisco ISE Endpoint Compliance Services
  • Configuring Client Posture Services and Compliance.

• 300-715 SISE: Course Objectives

  By the end of this course, you should be able to:

  • Implement Cisco ISE, including policy enforcement, profiling services, web authentication, guest access services, and more.
  • Know how to use Cisco ISE to gain visibility into your network.
  • Know how to use Cisco ISE to streamline your security policy management and contribute to operational efficiency.

• 300-715 SISE: Prerequisites

  Professional-level certifications expand on the foundations of associate-level certifications. They cover more advanced topics and allow candidates to hone in on a specific focus area of their choice. Many professional-level certification candidates are looking to prove they’re the best of the best in a specialised field.

  Whilst there are no formal prerequisites, learners often have three to five years of experience implementing security solutions.

• 300-720 SESA: Course Overview

  The Securing Email with Cisco Email Security Appliance learning path shows you how to deploy and use Cisco® Email Security Appliance to establish protection for your email systems against phishing, business email compromise, and ransomware, and to help streamline email security policy management.

• 300-720 SESA: Course Modules

  Module 1: ESA Architecture and Deployment
  • Describing the Cisco Email Security Appliance
  • Controlling Sender and Recipient Domains.

  Module 2: ESA Policy Enforcement
  • Controlling Spam with Talos SenderBase and Anti-Spam
  • Using Anti-Virus and Outbreak Filters
  • Using Mail Policies
  • Using Content Filters
  • Using Message Filters
  • Preventing Data Loss.

  Module 3: Message Authentication and Encryption
  • Using LDAP
  • Describing SMTP Session Authentication
  • Using Email Authentication
  • Using Email Encryption.

  Module 4: ESA Administration
  • Administering the Cisco Email Security Appliance
  • Using System Quarantines and Delivery Methods
  • Centralised Management Using Clusters
  • Testing and Troubleshooting.

• 300-720 SESA: Course Objectives

  By the end of this course, you should be able to:

  • Implement, troubleshoot, and administer Cisco Email Security Appliance.
  • Learn key capabilities, such as advanced malware protection, spam blocking, and anti-virus protection.
  • Learn about outbreak filtering, encryption, quarantines, and data loss prevention.

• 300-720 SESA: Prerequisites

  Professional-level certifications expand on the foundations of associate-level certifications. They cover more advanced topics and allow candidates to hone in on a specific focus area of their choice. Many professional-level certification candidates are looking to prove they’re the best of the best in a specialised field.

  Whilst there are no formal prerequisites, learners often have three to five years of experience implementing security solutions.

• 300-725 SWSA: Course Overview

  The Securing the Web with Cisco Web Security Appliance learning path shows you how to implement Cisco Web Security Appliance (WSA), powered by Cisco Talos, to provide advanced protection for business email and control against web security threats.

  You’ll learn how to deploy proxy services, use the solution’s anti-malware features, and more.

• 300-725 SWSA: Course Modules

  Module 1: Cisco WSA Architecture, Deployment, and Administration
  • Cisco WSA Overview
  • Proxy Services
  • Cisco WSA Authentication
  • Administration and Troubleshooting.

  Module 2: Cisco WSA Policy Enforcement
  • Decryption Policies
  • Differentiated Traffic Access Policies and Identification Profiles
  • Defending Against Malware
  • Acceptable Use Control Settings
  • Data Security and Data Loss Prevention.

• 300-725 SWSA: Course Objectives

  By the end of this course, you should be able to:

  • Implement Cisco WSA to secure web gateways, provide malware protection, and use policy controls to address the challenges of securing and controlling web traffic.
  • Gain valuable hands-on skills focused on web security.

• 300-725 SWSA: Prerequisites

  Professional-level certifications expand on the foundations of associate-level certifications. They cover more advanced topics and allow candidates to hone in on a specific focus area of their choice. Many professional-level certification candidates are looking to prove they’re the best of the best in a specialised field.

  Whilst there are no formal prerequisites, learners often have three to five years of experience implementing security solutions.

• 300-730 SVPN: Course Overview

  The Implementing Secure Solutions with Virtual Private Networks learning path teaches you how to implement, configure, monitor, and support enterprise virtual private network (VPN) solutions and builds the knowledge and skills necessary to deploy and troubleshoot tools for security, remote access, and increased privacy.

  Completing this course will prepare you to take the Implementing Secure Solutions with Virtual Private Networks (300-730 SVPN) exam and fulfil the concentration exam requirement of the CCNP Service Provider certification.

• 300-730 SVPN: Course Modules

  Module 1: Site-to-Site
  • Introducing VPN Technology Fundamentals
  • Implementing Site-to-Site VPN Solutions
  • Implementing Cisco IOS Site-to-Site FlexVPN Solutions
  • Implementing Cisco IOS GET VPN Solutions.

  Module 2: Remote Access VPNs
  • Implementing Cisco AnyConnect VPNs
  • Implementing Clientless VPNs.

• 300-730 SVPN: Course Objectives

  By the end of this course, you should be able to:

  • Understand the basics of remote access VPNs, including Cisco AnyConnect VPNs and Clientless Secure Socket Layer VPN solutions.
  • Understand the steps to implement site-to-site VPN solutions and Cisco IOS site-to-site FlexVPN and Cisco IOS GET VPN solutions.
  • Understand he steps to implement Cisco AnyConnect remote access.

• 300-730 SVPN: Prerequisites

  Professional-level certifications expand on the foundations of associate-level certifications. They cover more advanced topics and allow candidates to hone in on a specific focus area of their choice. Many professional-level certification candidates are looking to prove they’re the best of the best in a specialised field.

  Whilst there are no formal prerequisites, learners often have three to five years of experience implementing security solutions.

• 300-735 SAUTO: Course Overview

  The Implementing Automation for Cisco Security Solutions learning path covers the tools and the benefits of leveraging programmability and automation in Cisco Security Solutions.

• 300-735 SAUTO: Course Modules

  Module 1: Using APIs and Cisco devices
  • Introducing Cisco Security APIs
  • Consuming Cisco AMP for Endpoints APIs
  • Using Cisco ISE
  • Using Cisco pxGrid APIs
  • Using Cisco Threat Grid APIs.

  Module 2: Umbrella and APIs
  • Investigating Cisco Umbrella Security Data Programmatically
  • Exploring Cisco Umbrella Reporting and Enforcement APIs.

  Module 3: API Operations
  • Automating Security with Cisco Firepower APIs
  • Operationalizing Cisco Stealthwatch and Its API Capabilities
  • Using Cisco Stealthwatch Cloud APIs
  • Describing Cisco Security Management Appliance APIs.

• 300-735 SAUTO: Course Objectives

  By the end of this course, you should be able to:

  • Gain the knowledge and skills to use automation and programmability so you can design more efficient networks, increase scalability, and protect against cyberattacks.
  • Learn how to create APIs to streamline cloud-based, network security solutions for your organisation.
  • Prepare for the 300-735 SAUTO exam.

• 300-735 SAUTO: Prerequisites

  Professional-level certifications expand on the foundations of associate-level certifications. They cover more advanced topics and allow candidates to hone in on a specific focus area of their choice. Many professional-level certification candidates are looking to prove they’re the best of the best in a specialised field.

  Whilst there are no formal prerequisites, learners often have three to five years of experience implementing security solutions.

• 300-740 SCAZT: Course Overview

  The Designing and Implementing Secure Cloud Access for Users and Endpoints learning path will show you the skills for designing and implementing cloud security architecture, user and device security, network and cloud security, application and data security, visibility and assurance, and threat response.

  Some of the Cisco solutions covered in this learning path include Cisco SecureX, Cisco XDR, Cisco Duo, Cisco ISE, Cisco Catalyst SD-WAN, Cisco Umbrella, Cisco Secure Firewall, Cisco Secure Workload, Cisco Secure Analytics, and more.

  This learning path prepares you for the 300-740 SCAZT exam. If passed, you satisfy the concentration exam requirement for the Cisco Certified Network Professional (CCNP) Security certification.

• 300-740 SCAZT: Course Modules

  Module 1: Cloud Security Architectures
  • Industry Security Frameworks
  • Cisco Security Reference Architecture Fundamentals
  • Cisco Security Reference Architecture Common Use Cases
  • Cisco SAFE Architecture.

  Module 2: User and Device Authentication and Posturing
  • Certificate-Based User and Device Authentication
  • Cisco Duo Multifactor Authentication for Application Protection
  • Cisco Duo with AnyConnect VPN for Remote Access
  • Cisco ISE Endpoint Compliance Services
  • SSO Using SAML or OpenID Connect.

  Module 3: Control and Secure Access to Cloud Applications
  • Reverse Proxy
  • Cisco SD-WAN Security Content Filtering
  • Cisco SD-WAN to Cisco Umbrella SIG Integration
  • Cisco Umbrella Cloud Access Security Broker
  • Cisco SD-WAN with ThousandEyes
  • Security Policies for Remote Access VPN
  • Cisco Secure Access
  • Cisco Secure Firewall.

  Module 4: Cloud Application and Data Security
  • Web Application Firewall
  • Cisco Secure Workload Deployment, Agents, and Connectors
  • Cisco Secure Workload Structure and Policy
  • Cloud Security Attacks and Mitigations
  • Multicloud Security Policies.

  Module 5: Cloud Visibility and Assurance
  • Cloud Visibility and Assurance
  • Cisco Secure Network Analytics and Cisco Secure Analytics and Logging
  • Cisco XDR
  • Cisco Attack Surface Management
  • Cloud Applications and Data Access Verification.

  Module 6: Responding to Threats in the Cloud
  • Automation of Cloud Policy
  • Response to Cloud Threats
  • Automation of Cloud Threat Detection and Response.

• 300-740 SCAZT: Course Objectives

  By the end of this course, you should be able to:

  • Gain the needed skills to implement effective cybersecurity solutions.
  • Boost knowledge for protocols, solutions, and designs to acquire professional-level and expert-level cybersecurity roles.

• 300-740 SCAZT: Prerequisites

  Professional-level certifications expand on the foundations of associate-level certifications. They cover more advanced topics and allow candidates to hone in on a specific focus area of their choice. Many professional-level certification candidates are looking to prove they’re the best of the best in a specialised field.

  Whilst there are no formal prerequisites, learners often have three to five years of experience implementing security solutions.