SITCS v1.5 – Implementing Cisco Threat Control Solutions

SITCS v1.5 - Implementing Cisco Threat Control Solutions

COURSE OUTLINE:

Description

In this course, you will learn how to deploy Ciscoï¿½s Email Security (ESA); Web Security (CWS, WSA); Advanced Malware Protection (AMP); and Next Generation Intrusion Prevention Systems (NGIPS).

You will learn how to implement and manage security threat controls by leveraging the capabilities of Ciscoï¿½s FirePOWER NGIPS, AMP, WSA, CWS, and ESA products and solutions. The hands-on labs enable to configure advanced Cisco security solutions for mitigating outside threats, and to secure traffic traversing the network and security systems.

Audience

Engineers involved in the implementation and support of Cisco security solutions
Engineers looking to achieve the Cisco Certified Networking Professional Security certification

Prerequisites

Foundational IP networking skills
An understanding of Cisco IOS security features such as acquired from the CCNA Routing and Switching and CCNA Security certifications

Learning Objectives

Cisco Web Security Appliance
Cisco Cloud Web Security
Cisco Email Security Appliance
Advanced Malware Protection for Endpoints
Cisco FirePOWER Next-Generation IPS
Cisco ASA FirePOWER Services

1. Cisco Web Security Appliance

Cisco Web Security Appliance (WSA) Solutions
Integrating the Cisco Web Security Appliance
Configuring Cisco Web Security Appliance Identities and User Authentication Controls
Configuring Cisco Web Security Appliance Acceptable Use Control
Configuring Cisco Web Security Appliance Anti-Malware Controls
Configuring Cisco Web Security Appliance Decryption
Configuring Cisco Web Security Appliance Data Security Controls

2. Cisco Cloud Web Security

Cisco Cloud Web Security Solutions
Configuring Cisco Cloud Web Security Connectors
Web Filtering Policy in Cisco ScanCenter

3. Cisco Email Security Appliance

Cisco Email Security Solutions
Cisco Email Security Appliance Basic Setup Components
Configuring Cisco Email Security Appliance Basic Incoming and Outgoing Mail Policies

4. Advanced Malware Protection for Endpoints

AMP for Endpoints Overview and Architecture
Customizing Detection and AMP Policy
IOCs and IOC Scanning
Deploying AMP Connectors
AMP Analysis Tools

5. Cisco FirePOWER Next-Generation IPS

Cisco FireSIGHT System
Configuring and Managing Cisco FirePOWER Devices
Implementing an Access Control Policy
Discovery Technology
Configuring File-Type and Network Malware Detection
Managing SSL Traffic with Cisco FireSIGHT
IPS Policy and Configuration Concepts
Network Analysis Policy
Creating Reports
Correlation Rules and Policies
Basic Rule Syntax and Usage

6. Cisco ASA FirePOWER Services

Installing Cisco ASA 5500-X Series FirePOWER Services (SFR)

RELATED COURSES

Technical Training
Cisco

UCSMINI2 – Cisco UCS Mini Administration and Troubleshooting

In this course, you will learn about the Cisco UCS Mini solution. This intensive training helps you understand the key features, configuration steps, configuration interfaces, and the physical specifications of the Cisco UCS Mini’s associated hardware. This course will also focus on many common issues in the Unified Fabric, chassis, servers, and how to identify and resolve these issues.

Technical Training
Cisco

FIREPOWER200-Securing Networks with Cisco Firepower Threat Defense NGFW

In this course, you will learn about next-generation intrusion prevention system (NGIPS) and next-generation firewall (NGFW) security concepts.ï¿½

This course begins with an introduction to the system architecture, the latest major features, and the role of policies in implementing the solution. You will learn how to deploy and manage Cisco Firepower Threat Defense devices and perform basic Cisco Firepower discovery. You will learn how to use and configure Threat Defense technology, including application control, security intelligence, NGFW, NGIPS, and network-based malware and file controls. Also, you will learn how to take advantage of powerful tools, so you can perform more efficient event analysis, including the detection of file types and network-based malware. And youï¿½ll learn how to properly tune systems for better performance and greater network intelligence. This course concludes with system and user administration tasks and Threat Defense system troubleshooting.

Technical Training
Cisco

Conducting Cisco Unified Wireless Site Survey

Conducting Cisco Unified Wireless Site Survey (CUWSS) v1.0 is a five-day day instructor-led course, designed to help students prepare for the CCNP® wireless certification, a professional-level certification specializing in the wireless field. The goal of the course is to provide students with information and practice activities to prepare students to technically plan and conduct a wireless site survey. The student should be able to design the RF network and conduct a post installation assessment to ensure compliancy.

Technical Training
Cisco

Implementing Cisco Unified MeetingPlace Solutions

Learning ObjectivesThe course is a five-day instructor-led technical course providing in-depth coverage of how to install and configure the functional components of the Cisco MeetingPlace product in several deployment models in an enterprise customer network. Learners become familiar with the inter-communication of key system components, system installation and configuration, troubleshooting, monitoring and debugging. Knowledge is…