MCSEClasses Certification Training Boot Camp MCSE MCSD MCDBA Cisco CIW Linux Oracle Java Security Military Discounts Testimonials About Us Linux/Unix Certification MCSD Certification Home MCSE Certification MCDBA Certification Cisco Certification Security Certification Java Certification Oracle® Certification CIW Certification Jobs Distance Learning Boot Camp Financing Boot Camp Pricing Boot Camp Technical Schedule Contact Us


Cisco CCNA Security & CCSP Dual Certification Boot Camp

Course Length: 16 days
Certifications: CCNA Security
Cisco ASA Specialist
CCSP
Number of Exams: 5
Cisco® Credits: 85

Class Schedule
Call for Class Schedule

CCNA Security Certification meets the needs of IT professionals who are responsible for network security. It confirms an individual's skills for job roles such as Network Security Specialists, Security Administrators, and Network Security Support Engineers. This certification validates skills including installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices and develops competency in the technologies that Cisco uses in its security structure.

The Cisco Certified Security Professional Certification (CCSP) validates advanced knowledge and skills required to secure Cisco networks. With a CCSP, a network professional demonstrates the skills required to secure and manage network infrastructures to protect productivity, mitigate threats, and reduce costs. The CCSP curriculum emphasizes Cisco Router IOS (ISR) and Catalyst Switch security features, Adaptive Security Appliance (ASA), secure VPN connectivity, Intrusion Prevention Systems (IPS), Cisco Security Agent (CSA), Security Enterprise and Device Management, Network Admission Control (NAC) as well as techniques to optimize these technologies in a single, integrated network security solution. In addition, CCSP leverages the new CCNA Security certification as a prerequisite.

Prerequisites:

CCNA Security OR CCNA + SND* OR any CCIE Certification can act as a prerequisite.

*Last day for using this prerequisite is November 17, 2011.


Implementing Cisco IOS Network Security (IINS)

The Implementing Cisco IOS Network Security exam is associated with the CCNA Security certification. This exam tests a candidate's knowledge of securing Cisco routers and switches and their associated networks. It leads to validated skills for installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices and develops competency in the technologies that Cisco uses in its security infrastructure.

Course Outline:

The following topics are general guidelines for the content likely to be included on the Implementing Cisco IOS Network Security exam.

Describe the security threats facing modern network infrastructures
  • Describe and list mitigation methods for common network attacks
  • Describe and list mitigation methods for Worm, Virus, and Trojan Horse attacks
  • Describe the Cisco Self Defending Network architecture
Secure Cisco routers
  • Secure Cisco routers using the SDM Security Audit feature
  • Use the One-Step Lockdown feature in SDM to secure a Cisco router
  • Secure administrative access to Cisco routers by setting strong encrypted passwords, exec timeout, login failure rate and using IOS login enhancements
  • Secure administrative access to Cisco routers by configuring multiple privilege levels
  • Secure administrative access to Cisco routers by configuring role based CLI
  • Secure the Cisco IOS image and configuration file
Implement AAA on Cisco routers using local router database and external ACS
  • Explain the functions and importance of AAA
  • Describe the features of TACACS+ and RADIUS AAA protocols
  • Configure AAA authentication
  • Configure AAA authorization
  • Configure AAA accounting
Mitigate threats to Cisco routers and networks using ACLs
  • Explain the functionality of standard, extended, and named IP ACLs used by routers to filter packets
  • Configure and verify IP ACLs to mitigate given threats (filter IP traffic destined for Telnet, SNMP, and DDoS attacks) in a network using CLI
  • Configure IP ACLs to prevent IP address spoofing using CLI
  • Discuss the caveats to be considered when building ACLs
Implement secure network management and reporting
  • Use CLI and SDM to configure SSH on Cisco routers to enable secured management access
  • Use CLI and SDM to configure Cisco routers to send Syslog messages to a Syslog server
Mitigate common Layer 2 attacks
  • Describe how to prevent layer 2 attacks by configuring basic Catalyst switch security features
Implement the Cisco IOS firewall feature set using SDM
  • Describe the operational strengths and weaknesses of the different firewall technologies
  • Explain stateful firewall operations and the function of the state table
  • Implement Zone Based Firewall using SDM
Implement the Cisco IOS IPS feature set using SDM
  • Define network based vs. host based intrusion detection and prevention
  • Explain IPS technologies, attack responses, and monitoring options
  • Enable and verify Cisco IOS IPS operations using SDM
Implement site-to-site VPNs on Cisco Routers using SDM
  • Explain the different methods used in cryptography
  • Explain IKE protocol functionality and phases
  • Describe the building blocks of IPSec and the security functions it provides
  • Configure and verify an IPSec site-to-site VPN with pre-shared key authentication using SDM

[ back to top ]


Securing Networks with Cisco Routers and Switches (SNRS)

The Securing Networks with Cisco Routers and Switches exam (SNRS 642-504) is one of the exams associated with the Cisco Certified Security Professional certification. This exam includes simulations and tests a candidate's knowledge and ability to secure networks using Cisco routers and switches.

Course Outline:

The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.

Implement Cisco Layer 2 security
  • Utilize Cisco IOS commands to mitigate Layer 2 attacks
  • Implement Cisco Identity-Based Networking Services on Cisco Catalyst Switches
  • Implement Identity Management using ACS as the Authentication Server
Configure Cisco IOS Firewalls to mitigate network threats
  • Identify and describe the advanced capabilities of the IOS firewall feature set
  • Configure Classic IOS Firewall (CBAC) and NAT to dynamically mitigate identified threats to the network
  • Verify Classic IOS Firewall (CBAC) configuration and operation
  • Configure IOS Zone-Based Firewalls including advanced application inspections and URL filtering
  • Verify Zone-Based Firewall operations
Configure Cisco IOS-IPS to identify and mitigate threats to network resources
  • Identify and describe the advanced capabilities of the Cisco IOS-IPS feature set including Signature Event Action Processing
  • Configure Cisco IOS-IPS features to identify threats and dynamically block them from entering the network
  • Verify Cisco IOS-IPS operations
  • Maintain, update and tune Cisco IOS-IPS signatures
Configure Cisco VPNs to provide secure connectivity for site-to-site and remote access communications
  • Describe IPsec features and functionality
  • Describe GRE/IPsec features and functionality
  • Configure secure connectivity for site-to-site VPN using certificate authorities
  • Describe DMVPN features and functionality
  • Configure secure connectivity for site-to-site VPN using DMVPN
  • Verify secure site-to-site VPN operations
  • Implement IOS SSL VPN
  • Configure Cisco IOS Easy VPN Server with Dynamic Virtual Tunnel Interface (DVTI)
  • Configure Cisco IOS Easy VPN remote using both router and VPN software clients
  • Verify Cisco IOS Easy VPN implementations
  • Implement IOS GET VPN operations
  • Describe High Availability IPsec VPNs
Implement Network Foundation Protection using the CLI
  • Describe NFP features and functionality
  • Secure the management plane using Cisco IOS security features
  • Secure the data plane using Cisco IOS security features
  • Secure the control plane using Cisco IOS security features

[ back to top ]


Securing Networks with ASA Foundation (SNAF)

The Securing Networks with ASA Foundation exam (SNAF 642-524) is one of the exams associated with the Cisco Certified Security Professional and the Cisco Firewall Specialist certifications. This exam includes simulations and tests a candidate's knowledge and ability to describe, configure, verify and manage the Cisco ASA Security Appliance product.

Course Outline:

The following topics are general guidelines for the content likely to be included. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Configure Security Appliances for secured network connectivity
  • Configure and verify network and interface settings using ASDM and CLI
  • Configure and verify NAT globals, statics, NAT exemption, and Identity NAT using ASDM
  • Configure and verify access-lists with or without object groups using ASDM
Configure and verify routing and switching on Security Appliances
  • Describe the routing capabilities of the Security Appliance
  • Use ASDM to configure VLANs on a Security Appliance interface
  • Use ASDM to configure the passive RIP routing functionality of the Security Appliance
Configure and verify Authentication, Authorization, & Accounting services for Security Appliances
  • Configure ACS for Security Appliance support
  • Use ASDM to configure the Security Appliance AAA features
  • Configure and verify Auth-Proxy (cut-through proxy) using ASDM
Configure and verify Layer 3 & 4 protocol inspection, Modular Policy Framework, and threat detection for Security Appliances
  • Configure and verify Layer 3 and Layer 4 protocol inspection using ASDM
  • Configure and verify Modular Policy Framework using ASDM
  • Use ASDM to configure and verify threat detection
Configure and verify secure connectivity using VPNs
  • Configure and verify remote access VPNs using ASDM
  • Configure and verify IPsec VPN clients with preshared keys using ASDM
  • Configure and verify site-to-site VPNs with preshared keys using ASDM
  • Verify IKE and IPsec using ASDM and CLI
  • Configure and verify clientless SSL VPN using ASDM
Configure and verify active/standby and active/active failover features on Security Appliances
  • Configure and verify active/standby failover using ASDM
  • Configure and verify active/active failover using ASDM
  • Configure and verify redundant Interface using ASDM
Configure transparent firewall and virtual firewall features on a Security Appliance
  • Explain the purpose of virtual & transparent firewalls
  • Configure and verify the transparent firewall feature of the Security Appliance using CLI
  • Configure and verify the virtual firewall feature of the Security Appliance using ASDM
Monitor and manage installed Security Appliances
  • Update, backup, and restore configurations and software images using ASDM and CLI
  • Install and verify Licensing using ASDM
  • Configure and verify Console and SSH/Telnet access
  • Configure and utilize Logging using ASDM

[ back to top ]


Securing Networks with ASA Advanced (SNAA)

The Securing Networks with ASA Advanced exam (SNAA 642-515) is one of the exams associated with the Cisco Certified Security Professional certification. This exam includes simulations and tests a candidate's knowledge and ability to describe, configure, verify and manage the Cisco ASA Security Appliance product.

Course Outline:

The following topics are general guidelines for the content likely to be included. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Configure and verify NAT, dynamic routing, and switching on Security Appliances
  • Configure and verify VLANS using ASDM
  • Configure and verify dynamic routing protocols and route redistribution using ASDM
  • Configure and verify policy NAT using ASDM
Configure and verify application layer protocol inspection and Modular Policy Framework for Security Appliances
  • Describe the Layer 7 advanced protocol handling capabilities of the Security Appliance
  • Configure and verify Layer 7 application layer protocol inspection using ASDM
  • Configure and verify Modular Policy Framework using ASDM
Configure and verify secure connectivity using IPsec VPNs
  • Describe the features and capabilities of digital certificates
  • Describe how to use digital certificate enrollment with the Security Appliance and Cisco VPN client
  • Configure and verify remote access VPNs with digital certificates using ASDM
  • Configure and verify IPsec VPN clients with digital certificates using ASDM
  • Configure and verify site-to-site VPNs with digital certificates using ASDM
  • Configure and verify advanced remote access features using ASDM
  • Configure and verify the ASA 5505 as a remote access client using ASDM
  • Configure and verify QoS for tunnel traffic using ASDM
Configure and verify secure connectivity using SSL VPNs
  • Describe the features and capabilities of SSL VPNs
  • Configure and verify the local certificate authority using ASDM
  • Configure and verify clientless access including smart tunnels, plug-ins and bookmarks using ASDM
  • Configure and verify port forwarding using ASDM
  • Configure the Security Appliance for SSL VPN client access using ASDM
  • Configure and verify the AnyConnect VPN client
  • Configure and verify CSD using ASDM
  • Configure and verify DAP using ASDM
Configure and verify AIP-SSM and CSC-SSM modules
  • Explain the function that AIP-SSM and CSC-SSM perform within a network
  • Configure and verify AIP-SSM
  • Configure and verify CSC-SSM

[ back to top ]


Implementing Cisco Intrusion Prevention Systems (IPS)

The IPS Implementing Cisco Intrusion Prevention Systems exam (IPS 642-533) is associated with the Cisco Certified Security Professional and the Cisco IPS Specialist certifications. This exam tests a candidate's knowledge of implementing the Cisco IPS product.

Course Outline:

The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.

Describe how Cisco IPS sensors are used to mitigate network security threats
  • List sensor requirements for inline operations
  • Explain the difference between inline and promiscuous mode sensor operations
  • Explain how Cisco IPS protects network devices from attacks (Describe signatures, alerts, and actions)
  • Explain the evasive techniques used by hackers and how Cisco IPS defeats those techniques
  • Describe the considerations necessary for selection, placement, and deployment of a network intrusion prevention system
  • Explain the Cisco IPS signature features
Install Cisco IPS sensors/modules and configure essential system parameters
  • Explain AIP-SSM functionalities
  • Use the CLI to initialize the sensor
  • Configure user accounts and explain the different user roles
  • Configure management access to the sensor appliance
  • Explain how allowed hosts are used and how they are configured
  • Describe sensor interfaces, interface pairs, VLAN-pairs, and VLAN-groups
  • Use the Cisco IDM to configure sensor interfaces (enable, create pairs, assign to virtual sensors)
  • Describe and configure software bypass
  • Describe sensor communications with external management and monitoring systems
  • Launch, navigate, and use the Cisco IDM to manage and monitor the sensor
  • Describe the various CLI configuration modes and sub modes and navigate between them
  • List the tasks for installing and configuring the IDSM-2 and AIP-SSM
Describe Cisco IPS sensor advanced system parameters
  • Plan the mitigation of specific network vulnerabilities and exploits
  • Describe sensor tuning
  • Explain IP fragment and TCP stream reassembly options
  • Explain how IP logging should be used and how it is configured
  • Explain the use of Event Variables
  • Describe signature engines and their functionality
  • Determine which response actions need to be configured for a given scenario
  • Describe the purpose of the Meta Event Generator
  • Explain Target Value Ratings and how they are used
  • Determine the need for Event Action Rules in a given scenario
  • Explain event Risk Ratings and how they are used
Tune Cisco IPS sensor advanced system parameters to optimize attack mitigation performance
  • Use the IDM to tune the sensor to work optimally in the network
  • Use the IDM to tune signatures to provide maximum protection for a network
  • Given a scenario, use the IDM to create custom signature to meet the requirements
  • Configure response actions for a signature
  • Configure the sensor to take response actions based on a risk rating
  • Use the Cisco IDM to create a Meta signature and disable alert production for the component signatures
  • Configure Event Action Filters
  • Configure Target Value Ratings
  • Configure general settings for Event Action Rules
  • Configure Event Variables
  • Use the sensor application policy enforcement feature
  • Configure passive OS fingerprinting (POSFP)
  • Explain the External Product Interface, its benefits, and specifications
  • Configure a virtual sensor
  • Configure anomaly detection
  • Use IDM/CLI to monitor advanced features such as POSFP and AD
Analyze Cisco IPS sensor events to determine the appropriate response to network attacks
  • Use the CLI and the Cisco IDM and IEV to monitor events
Upgrade and maintain Cisco IPS sensors
  • Move software images/upgrades and configuration files via HTTP, HTTPS, SCP, and FTP
  • Apply the appropriate system image to the sensor
  • Perform sensor password recovery
  • Explain sensor licensing and how to install a license
  • Describe service pack and signature update file names and how to install them

[ back to top ]


*Cisco Credits can not be used for travel or expense costs.

CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, Cisco IOS, Cisco Systems, the Cisco Systems logo, and Networking Academy are registered trademarks or trademarks of Cisco Systems® and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned in this web site are the property of their respective owners.


Cisco Training

CED Solutions is sponsored by Element K, a Cisco Learning (Solutions) Partner
Institute of Professional Learning is sponsored by Element K, a Cisco Learning (Solutions) Partner


MCSEClasses.com is your best choice for Cisco CCNA CCSP, Cisco CCNA CCSP training, Cisco CCNA CCSP certification, Cisco CCNA CCSP certification boot camp, Cisco CCNA CCSP boot camp, Cisco CCNA CCSP certification training, Cisco CCNA CCSP boot camp training, Cisco CCNA CCSP boot camp certification, Cisco CCNA CCSP certification course, Cisco CCNA CCSP course, training Cisco CCNA CCSP, certification Cisco CCNA CCSP, boot camp Cisco CCNA CCSP, certification Cisco CCNA CCSP boot camp, certification Cisco CCNA CCSP training, boot camp Cisco CCNA CCSP training, certification Cisco CCNA CCSP course.



home | technical schedule | application schedule | class outlines | mcse, mcdba, mcsd training | microsoft .net | cisco certification | security training | alabama training solutions oracle® certification training | linux, unix | comptia certification | web development | pricing | locations | financing | instructors needed | e-mail us





Search classes by keyword:
Search classes by category:
mcse training
MCSE boot camp MCSE Training MCSE Certification MCSE Bootcamp MCSE Boot Camp MCSE Course MCSE Training MCSE Certification MCSE Bootcamp MCSE Boot Camp MCSE MCSA Training MCSA Certification MCSA Bootcamp MCSA Boot Camp MCSA Course MCSA Training MCSA Certification MCSA Bootcamp MCSA Boot Camp MCSA Course MCSA MCSE 2003 MCSE Training 2003 MCSE Certification 2003 MCSE Boot Camp 2003 MCSE Course 2003 MCSE 2003 Training MCSE 2003 Certification MCSE 2003 Boot Camp MCSE 2003 Course Training MCSE 2003 Certification MCSE 2003 Boot Camp MCSE 2003 Course MCSE 2003 MCSE Training Course MCSE Training Boot Camp MCSE training
MCSE certification MCSE Training Certification
Training MCSE Certification Training MCSE Boot Camp Training MCSE Course MCSE Certification Training MCSE Certification Boot Camp MCSE Certification Course MCSE Boot Camp Training MCSE Boot Camp Course MCSE Course Training MCSE Course Certification MCSD MCSD Training MCSD Certification MCSD Course Certification Training Training Certification Microsoft Certification Certification Microsoft Microsoft Training

Copyright © 2010 CED Solutions. CED Solutions Refund Policy. All Rights Reserved.

CCNA certification boot camps and courses are offered in these select cities: Albany CCNA, Albuquerque CCNA, Alexandria CCNA, Atlanta CCNA, Austin CCNA, Billings CCNA, Birmingham CCNA, Bismarck CCNA, Boise CCNA, Boston CCNA, Charleston CCNA, Charlotte CCNA, Cheyenne CCNA, Chicago CCNA, Cincinnati CCNA, Cleveland CCNA, Columbia CCNA, Columbus CCNA, Dallas CCNA, Denver CCNA, Des Moines CCNA, Detroit CCNA, Hartford CCNA, Houston CCNA, Indianapolis CCNA, Jackson CCNA, Kansas City CCNA, Las Cruces CCNA, Lincoln CCNA, Little Rock CCNA, Los Angeles CCNA, Louisville CCNA, Madison CCNA, Milwaukee CCNA, Minneapolis CCNA, Montpelier CCNA, New Orleans CCNA, New York City CCNA, Norfolk CCNA, Oklahoma City CCNA, Omaha CCNA, Philadelphia CCNA, Phoenix CCNA, Pierre CCNA, Pittsburgh CCNA, Portland CCNA, Princeton CCNA, Providence CCNA, Raleigh CCNA, Richmond CCNA, Sacramento CCNA, Salt Lake City CCNA, San Antonio CCNA, San Diego CCNA, San Francisco CCNA, San Jose CCNA, Seattle CCNA, Stamford CCNA, Tulsa CCNA, Washington CCNA, Wilmington CCNA.

Alabama Computer Solutions offers MCSD certification boot camps and courses in the United States: CCNA Alabama, CCNA Arizona, CCNA Arkansas, CCNA California, CCNA Colorado, CCNA Connecticut, CCNA District of Columbia, CCNA Delaware, CCNA Georgia, CCNA Idaho, CCNA Illinois, CCNA Indiana, CCNA Iowa, CCNA Kansas, CCNA Kentucky, CCNA Louisiana, CCNA Maine, CCNA Massachusetts, CCNA Michigan, CCNA Minnesota, CCNA Mississippi, CCNA Missouri, CCNA Montana, CCNA Nebraska, CCNA New Jersey, CCNA New Mexico, CCNA New York, CCNA North Carolina, CCNA North Dakota, CCNA Ohio, CCNA Oklahoma, CCNA Oregon, CCNA Pennsylvania, CCNA Rhode Island, CCNA South Carolina, CCNA South Dakota, CCNA Texas, CCNA Utah, CCNA Vermont, CCNA Virginia, CCNA Washington, CCNA West Virginia, CCNA Wisconsin, CCNA Wyoming.