Description

The Implementing Cisco Threat Control Solutions (SITCS) v1.5 is a 5-day instructor-led course that introduces learners to the implementation of Cisco’s FirePOWER Next-Generation IPS, AMP, as well as Web Security, Email Security, and Cloud Web Security.
Learners gain hands-on experience with configuring various advanced Cisco security solutions for mitigating outside threats and securing traffic traversing the firewall.
The course is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification.

Objectives

Upon completing this course, the learner will be able to meet these overall objectives:
  • Describe and implement Cisco Web Security Appliance
  • Describe and implement Cloud Web Security
  • Describe and implement Cisco Email Security Appliance
  • Describe and implement Advanced Malware Protection
  • Describe and implement Cisco FirePOWER Next-Generation IPS
  • Describe and implement Cisco ASA FirePOWER Services Module

Outline

The course contains these components:
  • Cisco Web Security Appliance
    • Describing the Cisco Web Security Appliance Solutions
    • Integrating the Cisco Web Security Appliance
    • Configuring Cisco Web Security Appliance Identities and User Authentication Controls
    • Lab: Configure Cisco Web Security Appliance Explicit Proxy and User Authentication
    • Configuring Cisco Web Security Appliance Acceptable Use Controls
    • Configuring Cisco Web Security Appliance Anti-Malware Controls
    • Configuring Cisco Web Security Appliance Decryption
    • Lab: Configure Cisco Web Security Appliance Acceptable Use Controls
    • Configuring Cisco Web Security Appliance Data Security Controls
  • Cisco Cloud Web Security
    • Describing the Cisco Cloud Web Security Solutions
    • Configuring Cisco Cloud Web Security Connectors
    • Describing the Web Filtering Policy in Cisco ScanCenter
  • Cisco Email Security Appliance
    • Describing the Cisco Email Security Solutions
    • Describing the Cisco Email Security Appliance Basic Setup Components
    • Configuring Cisco Email Security Appliance Basic Incoming and Outgoing Mail Policies
    • Lab: Configure Cisco Email Security Appliance Basic Policies
  • Advanced Malware Protection for Endpoints
    • AMP for Endpoints Overview and Architecture
    • Lab: Accessing the AMP Public Cloud Console
    • Customizing Detection and AMP Policy
    • Lab: Customizing Detection and AMP Policy
    • IOCs and IOC Scanning
    • Lab: IOCs and IOC Scanning
    • Deploying AMP Connectors
    • Lab: Deploying AMP Connectors
    • AMP Analysis Tools
    • Lab: AMP Analysis Tools
  • Cisco FirePOWER Next-Generation IPS
    • Describing the Cisco FireSIGHT System
    • Configuring and Managing Cisco FirePOWER Devices
    • Lab: Configure Inline Interfaces and Create Objects
    • Implementing an Access Control Policy
    • Lab: Create Access Control Policy Rules
    • Understanding Discovery Technology
    • Lab: Configure Network Discovery Detection
    • Configuring File-Type and Network Malware Detection
    • Lab: Create a File Policy
    • Managing SSL Traffic with Cisco FireSIGHT
    • Describing IPS Policy and Configuration Concepts
    • Lab: Create an Intrusion Policy
    • Describing the Network Analysis Policy
    • Lab: Create a Network Analysis Policy
    • Creating Reports
    • Lab: Compare Trends
    • Describing Correlation Rules and Policies
    • Lab: Create Correlation Policies
    • Understanding Basic Rule Syntax and Usage
  • Cisco ASA FirePOWER Services Module
    • Installing Cisco ASA 5500-X Series FirePOWER Services (SFR) Module

Prerequisite Knowledge

The knowledge and skills that a learner should possess before attending this course are as follows:

Associated certifications