Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS)

Seminarinformationen

Seminar - Ziel

After taking this course, you should be able to:

  • Describe the components of Cisco Firepower Threat Defense and the managed device registration process
  • Detail Next-Generation Firewalls (NGFW) traffic control and configure the Cisco Firepower system for network discovery
  • Implement access control policies and describe access control policy advanced features
  • Configure security intelligences features and the Advanced Malware Protection (AMP) for Networks implementation procedure for file control and advanced malware protection
  • Implement and manage intrusion and network analysis policies for NGIPS inspection
  • Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center
  • Integrate the Cisco Firepower Management Center with an external logging destination
  • Describe and demonstrate the external alerting options available to Cisco Firepower Management Center and configure a correlation policy
  • Describe key Cisco Firepower Management Center software update and user account management features
  • Identify commonly misconfigured settings within the Cisco Firepower Management Center and use basic commands to troubleshoot a Cisco Firepower Threat Defense device

Course Benefits

This course will help you:

  • Implement Cisco Firepower Next-Generation IPS to stop threats, address attacks, increase vulnerability prevention against suspicious files, and analyze for not-yet-identified threats
  • Gain leading-edge skills for high-demand responsibilities focused on security

Teilnehmer - Zielgruppe

This course is designed for technical professionals who need to know how to deploy and manage a Cisco Firepower NGIPS in their network environment.

  • Security administrators
  • Security consultants
  • Network administrators
  • System engineers
  • Technical support personnel
  • Channel partners and resellers

Kurs - Voraussetzungen

To fully benefit from this course, you should have the following knowledge and skills:

  • Technical understanding of TCP/IP networking and network architecture
  • Basic familiarity with the concepts of Intrusion Detection Systems (IDS) and IPS

Seminardauer

  • 5 Tage
  • 09:00 Uhr bis 17:00 Uhr

Schulungsunterlagen

  • nach Absprache

Seminar-Inhalt / Agenda

  • Cisco Firepower Threat Defense Overview
  • Cisco Firepower NGFW Device Configuration
  • Cisco Firepower NGFW Traffic Control
  • Cisco Firepower Discovery
  • Implementing Access Control Policies
  • Security Intelligence
  • File Control and Advanced Malware Protection
  • Next-Generation Intrusion Prevention Systems
  • Network Analysis Policies
  • Detailed Analysis Techniques
  • Cisco Firepower Platform Integration
  • Alerting and Correlation Policies
  • Performing System Administration
  • Troubleshooting Cisco Firepower

Lab Outline

  • Initial Device Setup
  • Device Management
  • Implementing Network Discovery
  • Implementing an Access Control Policy
  • Implementing Security Intelligence
  • File Control and Advanced Malware Protection
  • Implementing NGIPS
  • Customizing a Network Analysis Policy
  • Detailed Analysis
  • Configuring Cisco Firepower Platform Integration with Splunk
  • Configuring Alerting and Event Correlation
  • Performing System Administration
  • Troubleshooting Cisco Firepower
Tags: Cisco

Weitere Schulungen zu Thema Cisco

Cisco Digital Network Architecture Implementation Workshop (DNAIW)

- u.a. in Nürnberg, Berlin, Stuttgart, München, Köln

Dieser Praxisworkshop gibt den Teilnehmern einen umfassenden Einblick in die Cisco Digital Network Architecture (DNA) und ihre Lösungskomponenten. Der Kurs hebt die Notwendigkeit der Digitalisierung in Netzwerken und die Leitprinzipien der DNA hervor. Der Kurs konzentriert ...

Cisco ASA Firewall Deployment (ASAFW)

- u.a. in Nürnberg, Berlin, Stuttgart, München, Köln

Dieser fünftägige Kurs versetzt Security Administratoren in die Lage, grundlegende und fortgeschrittene Securitylösungen mit der Cisco ASA zu implementieren. Er vertieft bestehende Kenntnisse und erweitert diese durch Erläuterung des breiten Funktionsspektrums der Cisco ...

Configuring BGP on Cisco Routers (BGP)

- u.a. in Hannover, Köln, Düsseldorf, Darmstadt, Offenbach

This course provides students with in-depth knowledge of BGP, the routing protocol that is one of the underlying foundations of the Internet and new-world technologies such as Multiprotocol Label Switching (MPLS). This curriculum covers the theory of BGP, configuration of BGP ...

Implementing Cisco Enterprise Wireless Networks (ENWLSI)

- u.a. in Hannover, Nürnberg, Zürich, Dresden, Koblenz

The Implementing Cisco Enterprise Wireless Networks (ENWLSI) v1.0 course gives you the knowledge and skills needed to secure wireless network infrastructure and troubleshoot any related issues. You’ll learn how to implement and secure a wireless network infrastructure and use ...