MY ACCOUNT

IT Pro

>

MS Office

>

Management

>

Multimedia

>

Development

>

Collaborative tools

>

Soft skills

>

Digital Marketing

>

ALL TRAININGS

Training: Securing Networks with Cisco Firepower Next-Generation IPS

Ref. CIS-SSFIPS

Download PDF

Duration:
5
 days
Exam:
Optional
Level:
Advanced
Funding:
Temptraining

Description

This course shows you how to deploy and use Cisco Firepower® Next-Generation Intrusion Prevention System (NGIPS). This hands-on course gives you the knowledge and skills to use the platform features and includes firewall security concepts, platform architecture and key features; in-depth event analysis including detection of network-based malware and file type, NGIPS tuning and configuration including application control, security intelligence, firewall, and network-based malware and file controls; Snort® rules language; file and malware inspection, security intelligence, and network analysis policy configuration designed to detect traffic patterns; configuration and deployment of correlation policies to take action based on events detected; troubleshooting; system and user administration tasks, and more.

Participant profiles

  • Security administrators
  • Security consultants
  • Network administrators
  • System engineers
  • Technical support personnel
  • Channel partners and resellers

Objectives

  • Describe the components of Cisco Firepower Threat Defense and the managed device registration process
  • Detail Next-Generation Firewalls (NGFW) traffic control and configure the Cisco Firepower system for network discovery
  • Implement access control policies and describe access control policy advanced features
  • Configure security intelligences features and the Advanced Malware Protection (AMP) for Networks implementation procedure for file control and advanced malware protection
  • Implement and manage intrusion and network analysis policies for NGIPS inspection
  • Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center
  • Integrate the Cisco Firepower Management Center with an external logging destination
  • Describe and demonstrate the external alerting options available to Cisco Firepower Management Center and configure a correlation policy
  • Describe key Cisco Firepower Management Center software update and user account management features
  • Identify commonly misconfigured settings within the Cisco Firepower Management Center and use basic commands to troubleshoot a Cisco Firepower Threat Defense device

Prerequisites

  • Technical understanding of TCP/IP networking and network architecture
  • Basic familiarity with the concepts of Intrusion Detection Systems (IDS) and IPS

Course content

  • Cisco Firepower Threat Defense Overview
  • Cisco Firepower NGFW Device Configuration
  • Cisco Firepower NGFW Traffic Control
  • Cisco Firepower Discovery
  • Implementing Access Control Policies
  • Security Intelligence
  • File Control and Advanced Malware Protection
  • Next-Generation Intrusion Prevention Systems
  • Network Analysis Policies
  • Detailed Analysis Techniques
  • Cisco Firepower Platform Integration
  • Alerting and Correlation Policies
  • Performing System Administration
  • Firepower Troubleshooting

Documentation

  • Official digital CISCO courseware

Lab / Exercises

Official CISCO Labs:

  • Perform Initial Device Setup
  • Perform Device Management
  • Configure Network Discovery
  • Implement an Access Control Policy
  • Implement Security Intelligence
  • Implement Control and Advanced Malware Protection
  • Implement NGIPS
  • Customize a Network Analysis Policy
  • Perform Analysis
  • Configure Firepower Platform Integration with Splunk
  • Configure Alerting and Event Correlation
  • Perform System Administration
  • Troubleshoot Firepower

Exam

  • This course helps you prepare to take the exam “Securing Networks with Cisco Firepower (300-710 SNCF)” which leads to “CCNP Security and Cisco Certified Specialist – Network Security Firepower” certifications. The 300-710 SNCF exam has a second preparation course as well “Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW)”. You can take these courses in any order.

Complementary courses

Temptraining funding

ITTA is a partner of Temptraining, the continuing education fund for temporary workers. This training fund can subsidize continuing education for anyone who works for an employer subject to the Collective Work Agreement (CCT) Rental of services.
Prix de l'inscription
CHF 4'350.-
Inclus dans ce cours
  • Official Cisco Training Program
  • Training provided by a certified Cisco CCSI trainer
  • Official documentation in digital format
  • Achievement Badge

Session scheduled on demand, please contact us to open a session

  • ITTA
    Route des jeunes 33 Bis, Entrée B,
    1227 Carouge, Suisse

Horaires d’ouverture

Du lundi au vendredi, de 8:30 à 18:00.

Contactez-nous

  • ITTA
    Route des jeunes 33 Bis, Entrée B,
    1227 Carouge, Suisse

Votre demande

Opening hours

Monday to Friday, from 8:30 am to 06:00 pm.

Contact us

  • ITTA
    Route des jeunes 33B,
    1227 Carouge, Suisse

Your request

X
X
X
X