CCNA Security

Cisco Certified Network Associate Security (CCNA® Security) validates associate-level knowledge and skills required to secure Cisco networks. With a CCNA Security certification, a network professional demonstrates the skills required to develop a security infrastructure, recognize threats and vulnerabilities to networks, and mitigate security threats.

PREREQUISITES:

Valid CCNA Security Certification or any CCIE Certification can act as a prerequisite.

IMPLEMENTING CISCO SECURE ACCESS SOLUTIONS (SISAS)

This five-day course prepares network security engineers with the skills and knowledge needed to deploy the Cisco Identity Services Engine (ISE) and 802.1X secure network access and to implement and manage network access security by using the Cisco ISE appliance product solution.

  • 300-208 SISAS – the Implementing Cisco Secure Access Solutions (SISAS) (300-208) exam challenges your knowledge of the components and architecture of secure access utilizing 802.1X and Cisco TrustSec. This exam is 90 minutes and consists of 65-75 questions. The main sections you need to be ready for are:
  • Identity Management and Secure Access – 33% of your exam is in this area. Topics are TACACS+, RADIUS, Native AD, LDAP, identity management, 802.1X, MAB, network authorization enforcement, Central Web Authentication, profiling, guest services, posture services, and BYOD access.
  • Threat Defense – 10% of your exam is in this area. The topic is the TrustSec architecture.
  • Troubleshooting, Monitoring and Reporting Tools – 7% of your exam is in this area. The topic is troubleshooting the ISE and AAA solutions.
  • Threat Defense Architectures – 17% of your exam is in this area. The topic is designing a highly secure wireless solution with ISE.
  • Design Identity Management Architectures – 33% of your exam is in this area. Topics are device administration, identity management, profiling, guest services, posturing services, and BYOD access.

IMPLEMENTING CISCO EDGE NETWORK SECURITY SOLUTIONS (SENSS)

This five-day course prepares network security engineers with the skills and knowledge needed to configure Cisco perimeter edge security solutions utilizing Cisco switches, Cisco routers, and Cisco Adaptive Security Appliance (ASA) firewalls and to implement and manage security on Cisco ASA firewalls, Cisco routers with the firewall feature set, and Cisco switches.

  • 300-206 SENSS – the Implementing Cisco Edge Network Security (SENSS) (300-206) focuses on Cisco network perimeter edge devices such as Cisco switches, Cisco routers, and Cisco ASA firewalls. The exam is 90 total minutes and consists of 65-75 questions.The main sections and content you need to be ready for are:
  • Threat Defense – 25% of your exam is this area. It covers ASA firewalls, Layer 2 security, and the hardening of Cisco devices like routers and switches..
  • Cisco Security Devices GUIs and Secured CLI Management – 25% of your exam is in this area. Topics in this area are SSHv2, HTTPS, SNMPv3, RBAC in ASA and IOS, Cisco Prime, Cisco Security Manager, and the ASA’s ASDM GUI.
  • Management Services on Cisco Devices – 12% of your exam is in this area. Topics are the NetFlow exporter, logging best practices, NTP, CDP, DNS, SCP, SFTP, and DHCP.
  • Troubleshooting, Monitoring and Reporting Tools – 10% of your exam is in this area. Topics are monitoring firewalls using analysis of packet tracer, packet capture, and syslog data.
  • Threat Defense Architectures – 16% of your exam is in this area.Topics are the design of firewall solutions as well as additional Layer 2 security mechanisms.
  • Security Components and Considerations – 12% of your exam is in this area.Topics are security operations management architectures, Data Center security components and considerations, collaboration security components and considerations, and common IPv6 security considerations.

IMPLEMENTING CISCO SECURE MOBILITY SOLUTIONS (SIMOS)

This five-day course prepares network security engineers with the knowledge and skills needed to protect data traversing a public or shared infrastructure such as the Internet by implementing and maintaining Cisco VPN solutions and troubleshooting remote-access and site-to-site VPN solutions, using Cisco ASA adaptive security appliances and Cisco IOS routers.

  • 300-209 SIMOS – the Implementing Cisco Secure Mobility Solutions (SIMOS) (300-209) exam challenges you on the variety of Virtual Private Network (VPN) solutions that Cisco has available on the Cisco ASA firewall and Cisco IOS software platforms. The exam is 90 minutes and consists of 65-75 questions. The topics are:
  • Secure Communications – 32% of your exam is in this area. The topics are site-to-site VPNs and remote access VPNs.
  • Troubleshooting, Monitoring and Reporting Tools – 38% of your exam is in this area. The topic is the troubleshooting of all of the VPN variants.
  • Secure Communications Architectures – 30% of your exam is in this area. The topics are designing site-to-site and remote access VPN solutions, and encryption, hashing, and Next Generation Encryption (NGE).

IMPLEMENTING CISCO THREAT CONTROL SOLUTIONS (SITCS)

This five-day course prepares network security engineers with the knowledge and skills needed to deploy the Cisco ASA Next-Generation Firewall (NGFW), as well as web security, email security, and cloud web security, and with the capability to implement and manage security on Cisco ASA firewalls utilizing the Cisco Next-Generation product solution.

  • 300-207 SITCS – the Implementing Cisco Threat Control Solutions (SITCS) (300-207) exam seeks to challenge you on advanced firewall architecture and configuration with the Cisco next-generation firewall, utilizing access and identity policies. The exam is 90 minutes and consists of 65-75 questions. Topics include:
  • Content Security – 22% of your exam is in this area. The topics are the Cisco ASA 5500-X NGFW Security Services, Cisco Cloud Web Security, Cisco WSA, and Cisco ESA.
  • Threat Defense – 23% of your exam is in this area. The topic is the configuration of Cisco IPS.
  • Devices GUIs and Secured CLI – 16% of your exam is in this area. The topic is content security.
  • Troubleshooting, Monitoring and Reporting Tools – 19% of your exam is in this area. Topics are IME and IP logging for IPS, content security, and Cisco Security IntelliShield.
  • Threat Defense Architectures – 8% of your exam is in this area. The topic is the design of an IPS solution.
  • Content Security Architectures – 12% of your exam is in this area. Topics are the design of Web, email, and application security solutions.

Cisco Professional-level certifications (CCNP, CCNP Wireless, CCDP, CCSP, CCNP Security, CCNP Voice, CCIP, CCNP Service Provider, CCNP Service Provider Operations, and CCNP Data Center) are valid for three years. To recertify, pass ONE of the following before the certification expiration date:

  • Pass any current 642-XXX Professional-level or any 300-XXX Professional-level exam, or
  • Pass any current CCIE Written Exam, or
  • Pass the current CCDE Written Exam OR current CCDE Practical Exam, or
  • Pass the Cisco Certified Architect (CCAr) interview AND the CCAr board review to extend lower certifications.

Additional information

Reviews

There are no reviews yet.

Be the first to review “CCNA Security”

Your email address will not be published. Required fields are marked *

three × three =

15,000.00

Exam Format

The CCNA Security curriculum emphasizes core security technologies, the installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices, and competency in the technologies that Cisco uses in its security structure.

  • Course Duration: 70hrs.
  • Eligibility: Knowledge of CCNA.

Want your team to be trained ? We have special offering for businesses
0

Your Cart