(Click Category to List Courses)

38 - IT-N Information Technology - Networking


IT-N 310 - Cisco CCIE Security (10 Days)

Code Start Date Duration Venue Fees
IT-N 310 28 November 2020 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 26 December 2020 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 16 January 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 13 February 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 13 March 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 10 April 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 05 June 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 31 July 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 28 August 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 25 September 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 23 October 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 20 November 2021 10 Days Istanbul $ 7900 Registration Form Link
IT-N 310 18 December 2021 10 Days Istanbul $ 7900 Registration Form Link
DOWNLOAD PDF

 

Course Description

This course provides expert training and robust infrastructure for developing your Cisco specific technology and deployment skillsets supplemented with vendor-neutral industry knowledge. By the end of this course, participants will have real-world security implementation and troubleshooting experience and skills that the market demands. They will be able to engineer, implement, troubleshoot and support complex security solutions and technologies. 

Course Objectives

  • Detect and mitigate common types of attacks
  • Identity Management, Information Exchange, and Access Control
  • Describe, implement and troubleshoot remote access VPN
  • Develop detailed understanding on Perimeter Security and Intrusion Prevention
  • Understand Cisco Firepower Management Center (FMC) features

Who Should Attend?

  • Network Engineers
  • Network Designers
  • Network Security Administrators

Course Details/Schedule

Day 1

  • Perimeter Security and Intrusion Prevention
  • Deployment modes on Cisco ASA and Cisco FTD
  • Firewall features on Cisco ASA and Cisco FTD
  • Security features on Cisco IOS/IOS-XE
  • Cisco Firepower Management Center (FMC) features
  • NGIPS deployment modes
  • Next-Generation Firewall (NGFW) features
  • Detect and mitigate common types of attacks

Day 2

  • Clustering/HA features on Cisco ASA and Cisco FTD
  • Policies and rules for traffic control on Cisco ASA and Cisco FTD
  • Routing protocols security on Cisco IOS, Cisco ASA and Cisco FTD
  • Network connectivity through Cisco ASA and Cisco FTD
  • Correlation and remediation rules on Cisco FMC

Day 3

  • Secure Connectivity and Segmentation
  • AnyConnect client-based remote access VPN technologies on Cisco ASA, Cisco FTD, and Cisco Routers
  • Cisco IOS CA for VPN authentication
  • FlexVPN, DMVPN, and IPsec L2L Tunnels

Day 4

  • Uplink and downlink MACsec (802.1AE)
  • VPN high availability using
  • Infrastructure segmentation methods
  • Micro-segmentation with Cisco TrustSec using SGT and SXP

Day 5

  • Infrastructure Security
  • Device hardening techniques and control plane protection methods
  • Management plane protection techniques
  • Data plane protection techniques
  • Layer 2 security techniques
  • Wireless security technologies

Day 6

  • Monitoring protocols
  • Security features to comply with organizational security policies
  • Cisco SAFE model 
  • Interaction with network devices through APIs using basic Python scripts
  • Cisco DNAC Northbound APIs use cases

Day 7

  • ISE scalability using multiple nodes and personas.
  • Cisco switches and Cisco Wireless LAN Controllers for network access AAA with ISE
  • Cisco devices for administrative access with ISE
  • AAA for network access with 802.1X and MAB using ISE.
  • Guest lifecycle management using ISE and Cisco Wireless LAN controllers
  • BYOD on-boarding and network access flows
  • ISE integration with external identity sources
  • Provisioning of AnyConnect with ISE and ASA

Day 8

  • Posture assessment with ISE
  • Endpoint profiling using ISE and Cisco network infrastructure including device sensor
  • Integration of MDM with ISE
  • Certificate-based authentication using ISE
  • Authentication methods
  • Identity mapping on ASA, ISE, WSA, and FTD
  • pxGrid integration between security devices WSA, ISE, and Cisco FMC
  • Integration of ISE with multi-factor authentication
  • Access control and single sign-on using Cisco DUO security technology

Day 9

  • Advanced Threat Protection and Content Security
  • AMP for networks, AMP for endpoints, and AMP for content security (ESA, and WSA)
  • Detect, analyze, and mitigate malware incidents
  • Perform packet capture and analysis using Wireshark, tcpdump, SPAN, ERSPAN, and RSPAN
  • DNS layer security, intelligent proxy, and user identification using Cisco Umbrella
  • Web filtering, user identification, and Application Visibility and Control (AVC) on Cisco FTD and WSA.

Day 10

  • WCCP redirection on Cisco devices
  • Email security features
  • HTTPS decryption and inspection on Cisco FTD, WSA, and Umbrella
  • SMA for centralized content security management
  • Cisco advanced threat solutions and their integration