SITCS v1.5 – Implementing Cisco Threat Control Solutions

SITCS v1.5 - Implementing Cisco Threat Control Solutions

COURSE OUTLINE:

Description

In this course, you will learn how to deploy Ciscoï¿½s Email Security (ESA); Web Security (CWS, WSA); Advanced Malware Protection (AMP); and Next Generation Intrusion Prevention Systems (NGIPS).

You will learn how to implement and manage security threat controls by leveraging the capabilities of Ciscoï¿½s FirePOWER NGIPS, AMP, WSA, CWS, and ESA products and solutions. The hands-on labs enable to configure advanced Cisco security solutions for mitigating outside threats, and to secure traffic traversing the network and security systems.

Audience

Engineers involved in the implementation and support of Cisco security solutions
Engineers looking to achieve the Cisco Certified Networking Professional Security certification

Prerequisites

Foundational IP networking skills
An understanding of Cisco IOS security features such as acquired from the CCNA Routing and Switching and CCNA Security certifications

Learning Objectives

Cisco Web Security Appliance
Cisco Cloud Web Security
Cisco Email Security Appliance
Advanced Malware Protection for Endpoints
Cisco FirePOWER Next-Generation IPS
Cisco ASA FirePOWER Services

1. Cisco Web Security Appliance

Cisco Web Security Appliance (WSA) Solutions
Integrating the Cisco Web Security Appliance
Configuring Cisco Web Security Appliance Identities and User Authentication Controls
Configuring Cisco Web Security Appliance Acceptable Use Control
Configuring Cisco Web Security Appliance Anti-Malware Controls
Configuring Cisco Web Security Appliance Decryption
Configuring Cisco Web Security Appliance Data Security Controls

2. Cisco Cloud Web Security

Cisco Cloud Web Security Solutions
Configuring Cisco Cloud Web Security Connectors
Web Filtering Policy in Cisco ScanCenter

3. Cisco Email Security Appliance

Cisco Email Security Solutions
Cisco Email Security Appliance Basic Setup Components
Configuring Cisco Email Security Appliance Basic Incoming and Outgoing Mail Policies

4. Advanced Malware Protection for Endpoints

AMP for Endpoints Overview and Architecture
Customizing Detection and AMP Policy
IOCs and IOC Scanning
Deploying AMP Connectors
AMP Analysis Tools

5. Cisco FirePOWER Next-Generation IPS

Cisco FireSIGHT System
Configuring and Managing Cisco FirePOWER Devices
Implementing an Access Control Policy
Discovery Technology
Configuring File-Type and Network Malware Detection
Managing SSL Traffic with Cisco FireSIGHT
IPS Policy and Configuration Concepts
Network Analysis Policy
Creating Reports
Correlation Rules and Policies
Basic Rule Syntax and Usage

6. Cisco ASA FirePOWER Services

Installing Cisco ASA 5500-X Series FirePOWER Services (SFR)

RELATED COURSES

Technical Training
Cisco

Cisco Unified Contact Center Enterprise Deployment- (UCCE-D)

Cisco Unified Contact Center Enterprise Deployment (UCCE-D) is a 5-day instructor-led course that helps prepare learners to deploy the Cisco Unified CCE v11.5 solution. This course will provide the student with the underlying knowledge to understand deployment design solutions, requirements for deployment, and how to install and configure all major Cisco Unified CCE components.

As a part of deployment activities, the student will understand how to install and integrate Intelligent Contact Manager (ICM) with Active Directory, how to install and integrate Cisco Unified CVP components using an IOS-based voice browser and Cisco Virtualized Voice Browser (Cisco VVB), how to install and integrate Cisco Finesse, how to install and integrate Cisco Unified Intelligence Center with Active Directory and associated Data Sources for reporting purposes, and how to install and configure Agent- and IVR-based Outbound Option dialing campaigns.

Finally, the student will learn how to setup and use troubleshooting tools including RTMT, System CLI, Diagnostic Framework, and ICM command-line utilities to find status information and log files, and to track a call from the point of entry to the agent desktop.

Technical Training
Cisco

BGP – Configuring BGP on Cisco Routers v4.0

In this comprehensive course, you will gain in-depth knowledge of BGP, the routing protocol that is one of the underlying foundations of the Internet. You will explore the theory of BGP, configuration of BGP on Cisco IOS routers, and detailed troubleshooting information.

Our labs provide you with the skills needed to configure and troubleshoot BGP networks in both enterprise and service provider environments. You’ll also learn BGP network design issues and usage rules for various features as well as how to design and implement efficient, optimal, and trouble-free BGP networks.

Technical Training
Cisco

SIMOS – Implementing Cisco Secure Mobility Solutions

This course is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. It prepares network security engineers with the knowledge and skills needed for protecting data traversing a public or shared infrastructure, such as the Internet, by implementing and maintaining Cisco VPN solutions. You will gain hands-on experience with configuring and troubleshooting remote access and site-to-site VPN solutions using Cisco ASA adaptive security appliances and Cisco IOS routers.

Technical Training
Cisco

CLDINF – Implementing and Troubleshooting the Cisco Cloud Infrastructure v1.0

This course is on the curriculum path leading to the Cisco Certified Cloud Professional certification. It is designed to prepare data center engineers with the knowledge and hands-on experience to implement and troubleshooting Cisco cloud infrastructure.