Implementing Cisco Threat Control Systems

Overview

This course has been designed to prepare security engineers with the knowledge and skills required to deploy Cisco’s Next Generation Firewall (NGFW), Web Security, Email Security and Cloud Web Security solutions including Cisco Prime Security Manager for the management of identity policies.

Students will gain hands-on experience with configuring various advance Cisco security solutions for mitigating outside threats and securing traffic traversing the firewall. At the end of the course, students should be able to reduce the risk to their IT infrastructures and applications using Cisco’s Next Generation Firewall security appliance features and provide operational support for Intrusion Prevention Systems, Email Security, and Web based security appliances.

Days:

Course Code:

5

SITCS

Pre-Requisites

Attendees should meet the following prerequisites:

  • Cisco Certified Network Associate Certification ICND1 and ICND2 or CCNABC
  • Cisco Certified Network AssociateSecurity Certification ICND1 and IINS
  • Knowledge of Microsoft Windows operating system
Content

Cisco ASA Next-Generation Firewall (NGFW) Services

  • Describing the Cisco Modular Network Architecture
  • Describing the Cisco ASA (CX) NGFW Management Architecture
  • Configure Cisco ASA (CX) NGFW Policy Objects
  • Monitoring Cisco ASA (CX) NGFW Operations
  • Configuring Cisco ASA (CX) NGFW Access Policies
  • Configuring Cisco ASA (CX) NGFW Identity Policies
  • Configuring Cisco ASA (CX) NGFW Access Decryption Policies

Cisco Web Security Appliance

  • Describing The Cisco Web Security Appliance (WSA) Solutions
  • Integrating the Cisco Web Security Appliance
  • Configuring Cisco Web Security Appliance Identities and User Authentication Controls
  • Configuring Cisco Web Security Appliance Acceptable Use Control
  • Configuring Cisco Web Security Appliance Anti-Malware Controls
  • Configuring Cisco Web Security Appliance Decryption
  • Configuring Cisco Web Security Appliance Data Security Controls

Cisco Cloud Web Security

  • Describing the Cisco Cloud Web Security Solution
  • Configuring Cisco Cloud Web Security Connectors
  • Describing the Web Filtering Policy in Cisco ScanCenter

Cisco Email Security Appliance

  • Describe the Cisco Email Security Solutions
  • Describing the Cisco Email Security Appliance Basic Configuration
  • Deploying Cisco ASA Application Inspection Policies

Cisco Intrusion Prevention Systems

  • Describing IPS Threat Controls
  • Integrating Cisco IPS Sensor into a Network
  • Configuring Basic Cisco IPS Settings
  • Tuning Cisco IPS Signatures
  • Configuring Custom Cisco IPS Signatures
  • Configuring Cisco IPS Anomaly-Detection
  • Configuring Cisco IPS Reputation-Based Features

Labs

  • Lab 1-1 Exploring Cisco ASA (CX) NGFW and PRSM
  • Lab 1-2 Configuring Cisco ASA (CX) NGFW Access Policy
  • Lab 1-3 Configuring Cisco ASA (CX) NGFW Identity Policy
  • Lab 1-2 Configuring Cisco ASA (CX) NGFW Decryption Policy Lab
  • Lab 2-1: Configuring Cisco Web Security Appliance
  • Lab 3-1: Configuring Cisco Cloud Web Security Connector on AnyConnect and ISR G2
  • Lab 4-1: Configuring Basic Cisco Email Security Mail Policies
  • Lab 5-1: Configuring Cisco Basic Cisco IPS Settings
  • Lab 5-2: Tuning Cisco IPS Signatures and Anomaly -Detection
Objectives

After completing this course you should be able to:

  • Understand Cisco ASA Next-Generation Firewall (NGFW)
  • Deploy Cisco Web Security appliance to mitigate malware
  • Configure Web Security appliance for acceptable use controls
  • Configure Cisco Cloud Web Security Connectors
  • Describe Cisco Email Security Solution
  • Configure Cisco Email Appliance Incoming and Outgoing Policies
  • Describe IPS Threat Controls
  • Configure and Implement Cisco IPS Sensor into a Network
Target Audience

This course is aimed at engineers invovled in the implementation and support of Cisco Security Solutions that include Cisco’s Next Generation Firewall, Web Security. Email Security and Cloud Web Security Applicances. This course is also required for engineers looking to achieve the Cisco Certified Network Professional Certification for Security.

Certification

Recommended Preparation for Exam(s):

  • 300-207 – Implementing Cisco Threat Control Solutions Exam
Follow on Courses

Delegates looking to achieve the Cisco Certified Network Professional Certification for Security should also attend the following courses.

  • SENSS – Implementing Cisco Edge Network Security Solutions
  • SISAS – Implementing Cisco Secure Access Solutions
  • SIMOS – Implementing Cisco Secure Mobility Solutions
vendors Course Code Course Title Days Date
Cisco Certifications in Dubai, Cisco Training in UAE
SITCS Implementing Cisco Threat Control Systems 5 View All Dates

This public courses are pre-scheduled throughout the year at our premises

Online, live and interactive training accessible from anywhere

We can deliver standard or customised training at any time and location that suits your employees

Guaranteed courses are confirmed to run on the specific dates shown