MCSEClasses Certification Training Boot Camp MCSE MCSD MCDBA Cisco CIW Linux Oracle Java Security Military Discounts Testimonials About Us Linux/Unix Certification MCSD Certification Home MCSE Certification MCDBA Certification Cisco Certification Security Certification Java Certification Oracle® Certification CIW Certification Jobs Boot Camp Financing Boot Camp Pricing Boot Camp Technical Schedule Contact Us


Cisco CCNP Security

Course Length: 15 days
Certifications: CCNP Security
Number of Exams: 4
Cisco® Credits: 80

Class Schedule
Call for Class Schedule

  • Hands-on instruction by a certified instructor
  • Includes all course materials
  • On-site Testing
  • Lunch & Snacks provided each day

Cisco Certified Network Professional Security (CCNP Security) certification program is aligned specifically to the job role of the Cisco Network Security Engineer responsible for Security in Routers, Switches, Networking devices and appliances, as well as choosing, deploying, supporting and troubleshooting Firewalls, VPNS, and IDS/IPS solutions for their networking environments.

Prerequisites

  • Valid CCNA Security certification, or
  • Any CCIE certification

Cisco CCNP® Security

Implementing Cisco Edge Network Security Solutions (SENSS - Exam 300-206)

Implementing Cisco Edge Network Security Solutions (SENSS) v1.0 is an instructor-led training course that is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. Additionally, it is designed to prepare security engineers with the knowledge and hands-on experience to prepare them to configure Cisco perimeter edge security solutions utilizing Cisco Switches, Cisco Routers, and Cisco Adaptive Security Appliance (ASA) Firewalls.

The goal of the course is to provide students with foundational knowledge and the capabilities to implement and managed security on Cisco ASA firewalls, Cisco Routers with the firewall feature set, and Cisco Switches.

The student will gain hands-on experience with configuring various perimeter security solutions for mitigating outside threats and securing network zones. At the end of the course, students will be able to reduce the risk to their IT infrastructures and applications using Cisco Switches, Cisco ASA, and Router security appliance feature and provide detailed operations support for these products.

Target Audience

The primary audience for this course is as follows:

  • Network Security Engineers

Prerequisites

  • Cisco Certified Network Associate (CCNA©) certification
  • Cisco Certified Network Associate (CCNA©) Security certification
  • Knowledge of Microsoft Windows operating system

Course Objectives

Upon completing this course, the learner will be able to meet these overall objectives:

  • Understand current security threat landscape
  • Understanding and implementing Cisco modular Network Security Architectures such as
  • SecureX and TrustSec
  • Deploy Cisco Infrastructure management and control plane security controls
  • Configuring Cisco layer 2 and layer 3 data plane security controls
  • Implement and maintain Cisco ASA Network Address Translations (NAT)
  • Implement and maintain Cisco IOS Software Network Address Translations (NAT)
  • Designing and deploying Cisco Threat Defense solutions on a Cisco ASA utilizing access
  • policy and application and identity based inspection
  • Implementing Botnet Traffic Filters
  • Deploying Cisco IOS Zone-Based Policy Firewalls (ZBFW)
  • Configure and verify Cisco IOS ZBFW Application Inspection Policy

Course Outline

Module 1: Cisco Secure Design Principles
  • Lesson 1: Network Security Zoning
  • Lesson 2: Cisco Module Network Architecture
  • Lesson 3: Cisco SecureX Architecture
  • Lesson 4: Cisco TrustSec Solutions
Module 2: Implement Network Infrastructure Protection
  • Lesson 1: Introducing Cisco Network Infrastructure Architecture
  • Lesson 2: Deploying Cisco IOS Control Plane Security Controls
  • Lesson 3: Deploying Cisco IOS Management Plane Security Controls
  • Lesson 4: Deploying Cisco ASA Management Plane Security Controls
  • Lesson 5: Deploying Cisco Traffic Telemetry Methods
  • Lesson 6: Deploying Cisco IOS Layer 2 Data Plane Security Controls
  • Lesson 7: Deploying Cisco IOS Layer 3 Data Plane Security Controls
Module 3: Deploying NAT on Cisco IOS and Cisco Adaptive Security Appliance (ASA)
  • Lesson 1: Introducing Network Address Translation
  • Lesson 2: Deploying Cisco ASA Network Address Translation
  • Lesson 3: Deploying Cisco IOS Software Network Address Translation
Module 4: Deploying Threat Controls on Cisco ASA
  • Lesson 1: Introducing Cisco Threat Controls
  • Lesson 2: Deploying Cisco ASA Basic Access Controls
  • Lesson 3: Deploying Cisco ASA Application Inspection Policies
  • Lesson 4: Deploying Cisco ASA Botnet Traffic Filtering
  • Lesson 5: Deploying Cisco ASA Identity Based Firewall
Module 5: Deploying Threat Controls on Cisco IOS Software
  • Lesson 1: Deploying Cisco IOS Software with Basic Zone-Based Firewall Policies
  • Lesson 2: Deploying Cisco IOS Software Zone-Based Firewall with Application Inspection Policies
Labs:
  • Lab 2-1: Configuring Cisco Control and Management Plane Security
  • Lab 2-2: Configuring Traffic Telemetry Methods
  • Lab 2-3: Configuring Layer 2 Data Plane Security Controls
  • Lab 2-4: Configuring Layer 3 Data Plane Security Controls
  • Lab 3-1: Configure Cisco ASA Network Address Translation
  • Lab 3-2: Configure Cisco IOS Software for Network Address Translation
  • Lab 4-1: Configuring Cisco ASA Access Control Features
  • Lab 4-2: Configuring Cisco Application Inspection Policy
  • Lab 4-3: Configuring Cisco Botnet Traffic Filtering
  • Lab 4-4: Configuring Cisco Identity Based Firewall
  • Lab 5-1: Configuring Cisco IOS Software with Basic Zone-Based Firewall
  • Lab 5-2: Configuring Cisco IOS Software with Basic Zone-Based Firewall

[ back to top ]


Implementing Cisco Secure Mobility Solutions (SIMOS - Exam 300-209)

Implementing Cisco Secure Mobility Solutions (SIMOS) v1.0 is an instructor-led training (vILT) course that is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. This course is designed to prepare network security engineers with the knowledge and skills they need to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions. Students of this course will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions, using Cisco ASA adaptive security appliances and Cisco IOS routers.

Target Audience

The primary audience for this course is as follows:

  • Network Security Engineers

Prerequisites

To fully benefit from this course, students should have the following prerequisite skills and knowledge:

  • Cisco Certified Network Associate (CCNA©) certification
  • Cisco Certified Network Associate (CCNA©) Security certification
  • Knowledge of Microsoft Windows operating system

Course Objectives

Upon completing this course, the learner will be able to meet these overall objectives:

  • Describe the various VPN technologies and deployments as well as the cryptographic algorithms and protocols that provide VPN security.
  • Implement and maintain Cisco site-to-site VPN solutions.
  • Implement and maintain Cisco FlexVPN in point-to-point, hub-and-spoke, and spoke-to-spoke IPsec VPNs.
  • Implement and maintain Cisco clientless SSL VPNs.
  • Implement and maintain Cisco AnyConnect SSL and IPsec VPNs.
  • Implement and maintain endpoint security and dynamic access policies (DAP)

Course Outline

Module 1: Fundamentals of VPN Technologies and Cryptography
  • Lesson 1: The Role of VPNs in Network Security
  • Lesson 2: VPNs and Cryptography
Module 2: Deploying Secure Site-to-Site Connectivity Solutions
  • Lesson 1: Introducing Cisco Secure Site-to-Site Connectivity Solutions
  • Lesson 2: Deploying Point-to-Point IPsec VPNs on the Cisco ASA
  • Lesson 3: Deploying Cisco IOS VTI-Based Point-to-Point IPsec VPNs
  • Lesson 4: Deploying Cisco IOS DMVPNs
Module 3: Deploying Cisco IOS Site-to-Site FlexVPN Solutions
  • Lesson 1: Introducing Cisco FlexVPN Solution
  • Lesson 2: Deploying Point-to-Point IPsec VPNs Using Cisco IOS FlexVPN
  • Lesson 3: Deploying Hub-and-Spoke IPsec VPNs Using Cisco IOS FlexVPN
  • Lesson 4: Deploying Spoke-to-Spoke IPsec VPNs Using Cisco IOS FlexVPN
Module 4: Deploying Clientless SSL VPN
  • Lesson 1: Clientless SSL VPN Overview
  • Lesson 2: Deploying Basic Cisco Clientless SSL VPN
  • Lesson 3: Deploying Application Access in Clientless SSL VPN
  • Lesson 4: Deploying Advanced Authentication in Clientless SSL VPN
Module 5: Deploying Cisco AnyConnect VPNs
  • Lesson 1 Overview of Cisco AnyConnect VPNs
  • Lesson 2 Deploying Basic Cisco AnyConnect SSL VPN on Cisco ASA
  • Lesson 3 Deploying Advanced Cisco AnyConnect SSL VPN on Cisco ASA
  • Lesson 4: Deploying Cisco AnyConnect IPsec/IKEv2 VPNs
  • Lesson 5: Deploying Advanced Authentication, Authorization, and Accounting in Cisco
Module 6: Deploying Endpoint Security and Dynamic Access Policies
  • Lesson 1: Implementing Host Scan
  • Lesson 2: Implementing DAP for SSL VPNs
Labs
  • Lab 2-1: Implement Site-to-Site Secure Connectivity on the Cisco ASA
  • Lab 2-2: Implement Cisco IOS Static VTI Point-to-Point Tunnel
  • Lab 2-3: Implement DMVPN
  • Lab 3-1: Implement Site-to-Site Secure Connectivity Using Cisco IOS FlexVPN
  • Lab 3-2: Implement Hub-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
  • Lab 3-3: Implement Spoke-to-Spoke Secure Connectivity Using Cisco IOS Flex VPN
  • Lab 4-1: Implement ASA Basic Clientless SSL VPN
  • Lab 4-2: Application Access clientless SSL
  • Lab 4-3: Advanced AAA clientless SSL
  • Lab 5-1: Implement ASA Basic AnyConnect SSL VPN
  • Lab 5-2: Configure Advanced Cisco AnyConnect SSL VPN on Cisco ASA
  • Lab 5-3: Configure Cisco AnyConnect IPsec/IKEv2 VPNs on Cisco ASA
  • Lab 5-4: Configure Advanced Authentication for Cisco AnyConnect SSL VPN on Cisco ASA
  • Lab 6-1: Configure Hostscan and DAP for AnyConect SSL VPNs

[ back to top ]


Implementing Cisco Secure Access Solutions (SISAS - Exam 300-208)

Implementing Cisco Secure Access Solutions (SISAS) v1.0 is an instructor-led training course that is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. Additionally, it is designed to prepare security engineers with the knowledge and hands-on experience so that they can deploy Cisco's Identity Services Engine and 802.1X secure network access.

The goal of the course is to provide students with foundational knowledge and the capabilities to implement and managed network access security by utilizing Cisco ISE appliance product solution.

The student will gain hands-on experience with configuring various advance Cisco security solutions for mitigating outside threats and securing devices connecting to the network. At the end of the course, students will be able to reduce the risk to their IT infrastructures and applications using Cisco's ISE appliance feature and provide operational support identity and network access control.

Target Audience

The primary audience for this course is as follows:

  • Network Security Engineers

Prerequisites

To fully benefit from this course, students should have the following prerequisite skills and knowledge:

  • Cisco Certified Network Associate (CCNA©) certification
  • Cisco Certified Network Associate (CCNA©) Security certification
  • Knowledge of Microsoft Windows operating system

Course Objectives

Upon completing this course, the learner will be able to meet these overall objectives:

  • Understand Cisco Identity Services Engine architecture and access control capabilities
  • Understand 802.1X architecture, implementation and operation
  • Understand commonly implemented Extensible Authentication Protocols (EAP)
  • Implement Public-Key Infrastructure with ISE
  • Understand the implement Internal and External authentication databases
  • Implement MAC Authentication Bypass
  • Implement identity based authorization policies
  • Understand Cisco TrustSec features
  • Implement Web Authentication and Guest Access
  • Implement ISE Posture service
  • Implement ISE Profiling
  • Understand Bring Your Own Device (BYOD) with ISE
  • Troubleshoot ISE

Course Outline

Module 1: Threat Mitigation Through Identity Services
  • Lesson 1: Identity Services
  • Lesson 2: 802.1X and EAP
  • Lesson 3: Identity System Quick Start
Module 2: Cisco Identity Services Engine (ISE) Fundamentals
  • Lesson 1: Cisco ISE Overview
  • Lesson 2: Cisco ISE with PKI
  • Lesson 3: Cisco ISE Authentication
  • Lesson 4: Configuring Cisco ISE for External Authentication
Module 3: Advanced Access Control
  • Lesson 1: Certificate-based User Authentication
  • Lesson 2: Authorization
  • Lesson 3: Security Group Access (SGA) and MACsec Implementation
Module 4: Web Authentication and Guest Access
  • Lesson 1: Describe the Cisco Email Security Solutions
  • Lesson 2: Guest Access Services
Module 5: Endpoint Access Control Enhancements
  • Lesson 1: Posture
  • Lesson 2: Profiler
  • Lesson 3: BYOD
Module 6: Troubleshooting Network Access Control
  • Lesson 1: Troubleshooting Network Access Control
Labs:
  • Lab 1-1: Bootstrap Identity System
  • Lab 2-1: Enroll Cisco ISE in PKI
  • Lab 2-2: Implement MAC Authentication Bypass (MAB) and Internal ISE Authentication
  • Lab 2-3: Implement External Authentication
  • Lab 3-1: Implementing EAP-TLS with Identity Services Engine (ISE)
  • Lab 3-2: Implementing Authorization
  • Lab 4-1: Configuring Cisco ASA Access Policy
  • Lab 4-2: Implement Guest Access
  • Lab 5-1: Implement Posture
  • Lab 5-2: Profiler
  • Lab 6-1: Troubleshooting Network Access Control (Optional)

[ back to top ]


Implementing Cisco Threat Control Solutions (SITCS - Exam 300-210)

This course provides network professionals with the knowledge to implement Cisco FirePOWER NGIPS (Next Generation Intrusion Prevention System) and Cisco AMP (Advanced Malware Protection), as well as Web Security, Email Security, and Cloud Web Security. Students will gain hands-on experience configuring various advanced Cisco security solutions for mitigating outside threats and securing traffic traversing the firewall.

This course is part of the Cisco Certified Network Professional Security Certification (CCNP Security).

Target Audience

This course is intended for Network Security Engineers.

Prerequisites

In order to fully benefit from this course, it is recommended that students have the following prerequisites:

  • CCNA Security or valid CCSP or any CCIE Certification

Course Objectives

Upon successful completion of this course, students should be able to meet these overall objectives:

  • Describe and implement Cisco Web Security Appliance
  • Describe and implement Cloud Web Security
  • Describe and implement Cisco Email Security Appliance
  • Describe and implement Advanced Malware Protection
  • Describe and implement Cisco FirePOWER Next-Generation IPS
  • Describe and implement Cisco ASA FirePOWER Services Module

Course Outline

Module 1: Cisco Web Security Appliance
  • Lesson 1: Describing the Cisco Web Security Appliance Solutions
  • Lesson 2: Integrating the Cisco Web Security Appliance
  • Lesson 3: Configuring Cisco Web Security Appliance Identities and User Authentication Controls
  • Lesson 4: Configuring Cisco Web Security Appliance Acceptable Use Controls
  • Lesson 5: Configuring Cisco Web Security Appliance Anti-Malware Controls
  • Lesson 6: Configuring Cisco Web Security Appliance Decryption
  • Lesson 7: Configuring Cisco Web Security Appliance Data Security Controls
Module 2: Cisco Cloud Web Security
  • Lesson 1: Describing the Cisco Cloud Web Security Solutions
  • Lesson 2: Configuring Cisco Cloud Web Security Connectors
  • Lesson 3: Describing the Web Filtering Policy in Cisco ScanCenter
Module 3: Cisco Email Security Appliance
  • Lesson 1: Describing the Cisco Email Security Solutions
  • Lesson 2: Describing the Cisco Email Security Appliance Basic Setup Components
  • Lesson 3: Configuring Cisco Email Security Appliance Basic Incoming and Outgoing Mail Policies
Module 4: Advanced Malware Protection for Endpoints
  • Lesson 1: AMP for Endpoints Overview and Architecture
  • Lesson 2: Customizing Detection and AMP Policy
  • Lesson 3: IOCs and IOC Scanning
  • Lesson 4: Deploying AMP Connectors
  • Lesson 5: AMP Analysis Tools
Module 5: Cisco FirePOWER Next-Generation IPS
  • Lesson 1: Describing the Cisco FireSIGHT System
  • Lesson 2: Configuring and Managing Cisco FIrePOWER Devices
  • Lesson 3: Implementing an Access Control Policy
  • Lesson 4: Understanding Discovery Technology
  • Lesson 5: Configuring File-Type and Network Malware Detection
  • Lesson 6: Managing SSL Traffic with Cisco FireSIGHT
  • Lesson 7: Describing IPS Policy and Configuration Concepts
  • Lesson 8: Describing the Network Analysis Policy
  • Lesson 9: Creating Reports
  • Lesson 10: Describing Correlation Rules and Policies
  • Lesson 11: Understanding Basic Rule Syntax and Usage
Module 6: Cisco ASA FirePOWER Services Module
  • Lesson 1: Installing Cisco ASA 5500-X Series FirePOWER Services (SFR) Module
LAB OUTLINE:
  • Lab 1: Configure Cisco Web Security Appliance Explicit Proxy and User Authentication Web-related Connectivity
  • Lab 2: Configure Cisco Web Security Appliance Acceptable Use Controls
  • Lab 3: Configure Cisco Email Security Appliance Basic Policies
  • Lab 4: Accessing the AMP Public Cloud Console
  • Lab 5: Customizing Detection and AMP Policy
  • Lab 6: IOCs and IOC Scanning
  • Lab 7: Deploying AMP Connectors
  • Lab 8: AMP Analysis Tools
  • Lab 9: Configure Inline Interfaces and Create Objects
  • Lab 10: Create Access Control Policy Rules
  • Lab 11: Configure Network Discovery Detection
  • Lab 12: Create a File Policy
  • Lab 13: Create an Intrusion Policy
  • Lab 14: Create a Network Analysis Policy
  • Lab 15: Compare Trends
  • Lab 16: Create Correlation Policies

[ back to top ]


*Cisco Credits can not be used for travel or expense costs.

CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, Cisco IOS, Cisco Systems, the Cisco Systems logo, and Networking Academy are registered trademarks or trademarks of Cisco Systems® and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned in this web site are the property of their respective owners.


MCSEClasses.com is your best choice for Cisco CCNP Security, Cisco CCNP Security training, Cisco CCNP Security certification, Cisco CCNP Security certification boot camp, Cisco CCNP Security boot camp, Cisco CCNP Security certification training, Cisco CCNP Security boot camp training, Cisco CCNP Security boot camp certification, Cisco CCNP Security certification course, Cisco CCNP Security course, training Cisco CCNP Security, certification Cisco CCNP Security, boot camp Cisco CCNP Security, certification Cisco CCNP Security boot camp, certification Cisco CCNP Security training, boot camp Cisco CCNP Security training, certification Cisco CCNP Security course.



mcseclasses home | technical schedule | application schedule | class outlines | mcse, mcdba, mcsd training | microsoft .net | cisco certification | security training | ced solutions oracle® certification training | linux, unix, aix | comptia certification | webmaster training | pricing | locations | financing | instructors needed | e-mail us





Search classes by keyword:


Search classes by category:

Copyright © 2018 CED Solutions. CED Solutions Refund Policy. All Rights Reserved.