# # # #

Service Center

Cisco CCNP Security Boot Camp Training Classes for Certification    

The goal of this fourteen-day accelerated boot camp class for Cisco Certified Network Professional Security Certification is to provide network security professionals with the knowledge and skills necessary to design and implement highly secure networked business systems. The CCNP Security Certification provides an individual with professional level recognition in designing and implementing Cisco security solutions using Cisco IOS technologies, Cisco Secure ACS, ASA and PIX® security appliances, and 4200 IPS sensors.

CCNP Security certification program is aligned specifically to the job role of the Cisco Network Security Engineer responsible for Security in Routers, Switches, Networking devices and appliances, as well as choosing, deploying, supporting and troubleshooting Firewalls, VPNS, and IDS/IPS solutions for their networking environments. This Certification replaces the CCSP certification track.

Our CCNP Security Classes Includes

  • Intensive Hands-on Training Utilizing our (Lecture | Lab | Review)™ Delivery
  • Comprehensive Study Materials and Pre-Class Mentoring, Program Courseware, and Self-Testing Software
  • Deluxe Package of Seven (7) Days of Hotel Accommodations, Breakfast and Lunch, Unlimited Beverages, Snacks, and Freshly-brewed Coffee
  • 24-Hour Lab and Instructor Access
  • Examination Voucher & On-site Certification Testing
  • Examination Passing Policy

Boot Camp Course Outline
Days 1-3 IINS  Implementing Cisco IOS Network  Security  Exam 640-553

  • Network Security Principles I
  • Network Security Principles II
  • Perimeter Security
  • Network Security Using Cisco IOS Firewalls
  • Cryptography, Encryption, and Digital Signatures
  • IP Security Site-to-Site Virtual Private Networks
  • Network Security Using Cisco IOS IPS
  • LAN, SAN, Voice, and Endpoint Security
  • Mitigating Layer 2 Attacks

Days 4-6 SECURE Securing Networks with Cisco Routers and Switches Exam 642-637

  • Optimize Cisco IOS security infrastructure device performance
  • Create complex network security rules to meet the security policy requirements
  • Optimize security functions, rules, and configuration
  • Configure & verify NAT to dynamically mitigate identified threats to the network
  • Configure & verify IOS Zone Based Firewalls including advanced application inspections and URL filtering
  • Configure & verify the IPS features to identify threats and dynamically block them from entering the network
  • Maintain, update and tune IPS signatures
  • Configure & verify IOS VPN features
  • Configure & verify Layer 2 and Layer 3 security features   
  • Advanced Troubleshooting
  • Advanced Cisco IOS security software configuraiton fault finding and repairing
  • Advanced Cisco routers and switches hardware fault finding and repairing 

Days 6-9 FIREWALL  Deploying Cisco ASA Firewall Solutions  Exam 642-618

  • The ASA product family
  • Manage the ASA boot process
  • ASA interface settings
  • ASA management features
  • ASA access control features
  • Implement Network Address Translation (NAT) on the ASA
  • Implement ASDM public server feature
  • Implementing quality of service (QoS) settings
  • Transparent firewall
  • ASA Routing Features
  • Static routing
  • Dynamic routing
  • ASA Inspection Policy
  • ASA Advanced Network Protections
  • Implement ASA Botnet traffic filter
  • ASA High Availability
  • Implement Interface redundancy and load sharing features
  • Virtualization feature
  • Stateful failover

Days 10-12  VPN Deploying Cisco ASA VPN Solutions Exam 642-648

  • Common Cisco ASA adaptive security appliance VPN Configurations Components
  • The components and features of AnyConnect 3.0 Mobility (VPN, NAM, Web Sec (ScanSafe), an Telemetry)
  • Implement ASA VPN connection profiles, group policies, and user policies
  • Implement Simple Certificate Enrollment Protocol (SCEP) proxy operations using Cisco Adaptive Security Device Manager (ASDM)
  • Implement local and external VPN authorization using ASDM
  • Implement VPN session accounting using ASDM
  • Implement Cisco Secure Desktop and Independent Host Scan operations using ASDM 
    Implement DAP operations using ASDM
  • Implement LOCAL CA operations for Secure Sockets Layer (SSL) VPNs using ASDM
    Implement certificate maps using ASDM
  • Identify the ASA IPv6 VPN capabilities
  • Monitor and verify the resulting CLI commands resulting from the various VPN configurations on the ASA
  • Implement a security high-level design according to policy and environmental requirements by identifying Cisco ASA IPSec S2S VPN features and supporting technologies
  • Implement basic IPSEC S2S VPN operations with PSK and digital certificates using ASDM 
    Implement basic IKEv2 based IPSEC S2S VPN operations using ASDM
  • Troubleshoot the initial provisioning IPSec S2S VPN applications due to misconfiguration
  • Implement a security high level design according to policy and environmental requirements by identifying Cisco ASA VPN client features and supporting technologies
    Implement basic EZVPN server operations on the ASA using ASDM
  • Basic EZVPN remote operations on the ASA 5505 using ASDM
  • Implement AnyConnect 3.0 IKEv2 RA VPN operations
  • Implement Client Services Server (CSS) feature
  • Troubleshoot the initial provisioning IPSec RA VPN applications due to misconfiguration
  • Implement a security high-level design according to policy and environmental
  • Implement DTLS operations using ASDM
  • Implement basic AnyConnect 3.0 full tunnel SSL VPN operations
  • Troubleshoot AnyConnect SSL VPN operations using DART
  • Implement basic Clientless SSL VPN operations using ASDM
  • Implement SSL and IPSEC VPN high availability features

 Days 12-14 IPS v7.0 Implementing Cisco Intrusion Prevention System Exam  642-627

  • Introduction to Intrusion Prevention and Detection Systems
  • IPS Traffic Analysis, Countermeasures, and Deployment Architecture
  • Performing the Cisco IPS Sensor Initial Setup
  • Managing Cisco IPS Devices
  • Implementing Cisco Unity Express in CUCM Express Environment
  • Configuring Cisco IPS Signature Engines and Anomaly Detection
  • Adapting Traffic Analysis and Response to the Environment
  • False Positives, Negatives and Response Improvement
  • Managing and Analyzing Events
  • Virtualization, High-Availability, and High-Performance Solutions
  • Configuring and Maintaining Cisco IPS Hardware