Course Details

Previous Page


Implementing Cisco Threat Control Solutions (SITCS) 1.0 Expert Encore


Overview/Description
Target Audience
Expected Duration
Lesson Objectives
Course Number



Overview/Description
Implementing Cisco Threat Control Solutions (SITCS) v1.0 is a newly created instructor-led training course, which is part of the curriculum path leading to the Cisco Certified Network Professional Security (CCNP Security) certification. Additionally, it is designed to prepare security engineers with the knowledge and hands-on experience so that they can deploy Cisco’s Next Generation Firewall (NGFW) as well as Web Security, Email Security and Cloud Web Security. The goal of the course is to provide students with foundational knowledge and the capabilities to implement and managed security on Cisco ASA firewalls utilizing Cisco Next Generation product solution which integrates Cisco Prime Security Manager for managing identity policies. The student will gain hands-on experience with configuring various advanced Cisco security solutions for mitigating outside threats and securing traffic traversing the firewall. At the end of the course, students will be able to reduce the risk to their IT infrastructures and applications using Cisco’s Next Generation Firewall security appliance feature and provide operational support for Intrusion Prevention Systems, Email Security, and Web based security appliances.
Prerequisites
The knowledge and skills that a learner must have before attending this course are as follows:
Valid CCNA Security or CCSP Certification
Any CCIE Certification
Certification
CCNP Security
Exams
300-207 SITCS
Included Labs
Verify the ASA (CX) NGFW Software Module Status
Install and Set Up the ASA (CX) NGFW Software Module (CX is not Installed)
Explore the ASA (CX) NGFW CLI
Explore the On-Box PRSM GUI
Redirect Traffic from the ASA to ASA (CX) NGFW
Configure ASA (CX) NGFW Policy Objects
Configure ASA CX Access Policy to Deny Access to Unacceptable Websites
Configure the ASA CX Access Policy to Deny Any Executable File Download
Configure an ASA CX Access Policy to Deny Access to Any Websites with a Bad Reputation
Configure an ASA CX Identity Policy Using Active Authentication
Configure an ASA CX Identity Policy Using Passive Authentication
Enable Cisco ASA (CX) NGFW Decryption
Verify Basic Cisco WSA Settings
Implement the Cisco WSA in Explicit Proxy Mode
Implement User Authentication with Active Directory using Basic Authentication
Implement User Authentication using Transparent User Identification
Enable the CWS Connector on the Partner ISR G2 Router
Install the Cisco ASA IPS Software Module and Configure the Basic IPS Settings
Verify the IPS Operations
Tune Existing Signature
Create Custom Signature
Implement the Cisco WSA in Transparent Proxy Mode - Part 1
Implement the Cisco WSA in Transparent Proxy Mode - Part 2
Configure the Access Policy
Configure URL Filtering for the Access Policy
Configure Application Visibility Control for the Access Policy
Outline
Implementing Cisco Threat Control Solutions
Module 1 Cisco ASA (CX) NGFW Services
Describe the Cisco ASA (CX) NGFW solution
Describe the Cisco ASA (CX) NGFW management architecture and protocols
Describe how to configure Cisco ASA (CX) NGFW policy objects
Explain how to monitor Cisco ASA (CX) NGFW operations by using Cisco PRSM
Describe how to configure Cisco ASA (CX) NGFW access policies to match security requirements
Describe how to configure Cisco ASA (CX) NGFW identity policies to match security requirements
Describe how to configure Cisco ASA (CX) NGFW decryption policies to match security requirements
Module 2 Cisco Web Security Appliance
Describe the Cisco Web Security Appliance main features
Describe the two Cisco Web Security Appliance integration methods (Explicit Proxy and Transparent Proxy)
Configure identities and user authentication
Configure URL filtering and application visibility and control
Configure inbound and outbound anti-malware controls Configure decryption policies
Configure data security controls to implement data loss prevention
Module 3 Cisco Cloud Web Security
Describe the main features of the Cisco Cloud Web Security
Describe traffic redirection to Cloud Web Security through connectors, how to configure them on Cisco
ASA, Cisco WSA and Cisco IOS, and how to configure AnyConnect web security
Module
Describe how to configure web filtering policy and how to verify web filtering
Module 4 Cisco Email Security Appliance
Illustrate the SMTP flows and conversations and provides a high level overview of the Cisco Email Security Appliance services
Describe the basic configuration components to setup the Cisco ESA, which includes the listener, LDAP queries, HAT, RAT, Mail Flow Policies and SMTP Routes table
Explain how to configure the different features within the incoming and outgoing mail policies (anti- spam, anti-virus, content filters, outbreak filters, data loss prevention)
Module 5 Cisco Intrusion Prevention System
Describe the basic definitions and approaches to traditional intrusion prevention/detection systems and next generation IPS
Configure different Cisco IPS sensor interface modes
Configure the Cisco IPS sensor built-in signatures
Describe some methodologies for tuning a Cisco IPS sensor to properly manage false positive and negative events
Describes the methods and configuration procedures to create custom signatures on a Cisco IPS sensor
Enable the anomaly detection functionality on the Cisco IPS sensor
Enable the reputation-based features on the Cisco IPS sensor


Target Audience
This course is designed to prepare security engineers with the knowledge covering advanced firewall architecture and configuration with the Cisco next-generation firewall, utilizing access and identity policies. In addition, this course covers integration of Intrusion Prevention System (IPS) and context-aware firewall components, as well as Web (Cloud) and Email Security solutions. It is also perfect for students interested in pursuing their Cisco Certified Network Professional Security (CCNP Security) certification.

Expected Duration (hours)
32.0

Lesson Objectives

Implementing Cisco Threat Control Solutions (SITCS) 1.0 Expert Encore

  • Understand Cisco ASA Next-Generation Firewall (NGFW)
  • Deploy Cisco Web Security appliance to mitigate malware
  • Configure Web Security appliance for acceptable use controls
  • Configure Cisco Cloud Web Security Connectors
  • Describe Cisco Email Security Solution
  • Configure Cisco Email Appliance Incoming and Outgoing Policies
  • Describe IPS Threat Controls
  • Configure and Implement Cisco IPS Sensor into a Network.
  • Course Number:
    LLCS0090