Description

The Securing Networks with Cisco Firepower Next-Generation Intrusion Prevention System (SSFIPS) v3.0 is a 4-day instructor-led, lab-intensive course that introduces learners to the basic next-generation intrusion prevention system (NGIPS) and firewall security concepts. The course then leads learners through the Cisco Firepower system. Among other powerful features, learners become familiar with in-depth event analysis, NGIPS tuning and configuration, as well as Snort rules language.
By the end of this course learners become familiar with the latest platform features, such as file and malware inspection, security intelligence, domain awareness, and more.
The course begins by introducing the system architecture, the latest major features, and the role of policies in implementing the solution. Learners learn how to manage deployed devices and perform basic Cisco Firepower discovery, and can describe how to use and configure Cisco NGIPS technology, including application control, security intelligence, firewall, and network-based malware and file controls. Learners can also take advantage of powerful tools so that they can carry out more efficient event analysis, including the detection of file type and network-based malware, and learn how to properly tune systems for better performance and greater network intelligence.
The course finishes with system and user administration tasks.

This course is part of a portfolio of security courses designed to help businesses support and maintain their Cisco Firepower systems.

This course can be delivered in a classroom as well as virtually. When delivered virtually the length of the course is extended to 5 days.

Choose date

Date
Lang.
Location
Price chage currency
Date: from 13.11.2017 to 16.11.2017
Language: English
Location: Europe/Africa
4000 $ Book now
Date: from 13.11.2017 to 17.11.2017 (Guaranteed date)
Language: English
Location: Online (BST, UTC+01:00)
4000 $ Book now
Date: from 27.11.2017 to 1.12.2017 (Guaranteed date)
Language: English
Location: Online (EST, UTC-05:00)
4000 $ Book now

Objectives

Upon completing this course, the learner will be able to meet these overall objectives:
  • Describe the key features and concepts of NGIPS and firewall security
  • Describe the Cisco Firepower system components, features, and high-level implementation steps
  • Navigate the Cisco Firepower Management Center GUI and understand the role of policies when configuring the Cisco Firepower system
  • Deploy and manage Cisco Firepower-managed devices
  • Perform an initial Cisco Firepower discovery and basic event analysis to identify hosts, applications, and services
  • Identify and create the objects required as prerequisites to implementing access control policies
  • Identify the features and functionality of access control policies and the implementation procedures
  • Describe the concepts and implementation procedures of security intelligence
  • Describe the concepts and implementation procedures of file control and advanced malware protection
  • Use Cisco Firepower recommendations to implement IPS policies
  • Explain the use of network analysis policies and the role of preprocessor technology in processing network traffic for NGIPS inspection
  • Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center
  • Describe major Cisco Firepower Management Center system administration and user account management features

Outline

The course contains these components:
  • Security Technology Overview
  • Cisco Firepower System Components and Features
  • Introducing the Cisco Firepower Management Center
    • Lab: Connect to the Lab Environment
    • Lab: Navigate the Cisco Firepower Management Center GUI
  • Deploying Cisco Firepower Managed Devices
    • Lab: Device Management
  • Cisco Firepower Discovery
    • Lab: Cisco Firepower Discovery
  • Access Control Policy Prerequisites
    • Lab: Access Control Policy Prerequisites
  • Implementing Access Control Policies
    • Lab: Implementing an Access Control Policy
  • Security Intelligence
    • Lab: Security Intelligence
  • File Control and Advanced Malware Protection
    • Lab: File Control and Advanced Malware Protection
  • Next-Generation Intrusion Prevention Systems
    • Lab: Implementing NGIPS
  • Network Analysis Policies
  • Detailed Analysis Techniques
    • Lab: Detailed Analysis
  • System Administration
    • Lab: System Administration

Prerequisite Knowledge

The knowledge and skills that a learner should possess before attending this course are as follows:
  • Technical understanding of TCP/IP networking and network architecture
  • Basic familiarity with the concepts of intrusion detection systems (IDS) and IPS