The CCNA Security exam and training were revised from v2.0 to v3.0. Candidates can choose to take either the 640-554 IINS v2.0 exam or the new 210-260 IINS v3.0 exam. The last day to test for 640-554 IINS v2.0 is November 30, 2015.

Network security remains the largest IT challenge and a high priority for all organizations in all verticals. Cisco has taken note of the evolving role of the network security engineer and its relevance to the industry. In order to continue providing security professionals with up-to-date and job-ready training and skills, Cisco updated its foundational security certification track CCNA Security.

The CCNA Security certification provides the foundational skills for not only IT security specialists but for all IT professionals interested in securing their infrastructure. The curriculum equips students with the know-how for securing information and devices using the latest Cisco security hardware and software solutions.

Updated CCNA Security exam and training

The updated CCNA Security certification better reflects current job roles and job tasks required for positions like Network Security Specialist, Security Administrator, or Network Security Support Engineer. The exam and training were revised from v2.0 to v3.0. During the transition period which ends November 30, 2015 candidates can choose to take either the 640-554 IINS v2.0 exam or the new 210-260 IINS v3.0 exam. After that date the only valid CCNA Security exam will be 210-260 with the respective recommended training Implementing Cisco Network Security (IINS) v3.0.

Major changes:

  • The current exam topics specify Cisco Configuration Pro (CCP) for nearly all router configuration elements. The new exam topics focus on CLI-based configuration for IOS router and switch configuration.
  • The new exam topics include updates to the Intrusion Prevention Systems (IPS) sections, specifying legacy Cisco IPS and Cisco Next Generation IPS terminology side by side. The updated content now includes descriptions of NGIPS technologies such as FirePOWER Services, FireSIGHT Management Center, and Cisco Advanced Malware Protection.
  • Focus on Access Control Lists (ACLs) has been reduced in the new IINS exam topics, since ACLs are covered in the ICND1 prerequisite.
  • Many newer technologies are now expressly included in the course materials:
    • 802.1x
    • Cisco Identity Services Engine (ISE)
    • Bring Your Own Device (BYOD)
    • Cisco Cloud Web Security (CWS)
    • Cloud & Virtualization
  • Updated examples of security risks are now more closely aligned with today’s common security threats
  • References to some standards and technologies have also been brought up to date.
  • DES and MD5 have been replaced with more current algorithms.
  • The curriculum for exam preparation includes all new labs, with dynamic topology based on the subject matter covered in a particular lab exercise.

Current versus new CCNA Security exam topics

The new exam topics combine and adjust the current domains. The overall number of domains has been reduced from nine to seven. Although there are fewer domains, the exam remains the same length. The same number of questions has been spread across the seven domain topics.

Implementing Cisco IOS Network Security (IINS 640-554)

Implementing Cisco Network Security (IINS 210-260)

Common Security Threats (11%)

Security Concepts (12%)

Security and Cisco Routers (8%)

Secure Access (14%)

AAA on Cisco Devices (11%)

VPN (17%)

IOS Access Control Lists (12%)

Secure Routing and Switching (18%)

Secure Network Management & Reporting (10%)

Cisco Firewall Technologies (18%)

Common Layer 2 Attacks (12%)

Intrusion Prevention Systems (IPS) (9%)

Cisco Firewall Technologies (13%)

Content and Endpoint Security (12%)

Cisco IPS (11%)


VPN Technologies (12%)


Overview of the new Implementing Cisco Network Security (IINS) v3.0 course

The course focuses on security principles and technologies, using Cisco security products to provide hands-on examples. Instructor-led discussions, extensive hands-on lab exercises, and supplemental materials allow learners to understand common security concepts, and deploy basic security techniques Using a variety of popular security appliances within a "real-life" network infrastructure. Learn more about the course.

Training availability, registration and pricing

NIL Learning already offers the new IINS v3.0 instructor-led training. Please check out our public training schedule for available dates. You can attend the IINS course at one of our training centers across the EMEAR region or remotely via our TLT solution.

Feel free to contact us for more information about the course, additional dates or on-site delivery.

‹ back