Course Details

Previous Page


AMP for Endpoints Overview, Architecture, Custom Detection, and AMP Policy


Overview/Description
Target Audience
Prerequisites
Expected Duration
Lesson Objectives
Course Number
Expertise Level



Overview/Description
In order to stop malware incidents, one must mitigate as close to the source as possible. Advanced Malware Solution is industry-leading technology to control malware early in the life cycle. This course is one in a series in the Skillsoft learning path that covers the objectives of the Implementing Cisco Threat Control Solutions (SITCS) 1.5 exam, 300-210.

Target Audience
IT professionals including managers, engineers, and developers evaluating or implementing network and application security using new Cisco technology, as well as CCNP security certification candidates

Prerequisites
None

Expected Duration (hours)
0.9

Lesson Objectives

AMP for Endpoints Overview, Architecture, Custom Detection, and AMP Policy

  • start the course
  • describe modern malware and why defenses fail
  • define AMP for Endpoints
  • describe AMP for Endpoints architecture and AMP Connector architecture
  • install components and Connector component interaction
  • specify the role of the AMP cloud
  • recognize transaction processing
  • work with real-time data mining
  • define private cloud architecture and modes
  • describe detection, application control, DFC options, and IOCs
  • recognize Endpoint Policy
  • define policy modes
  • describe simple custom detections
  • create a simple custom detection
  • describe application blocking
  • work with advanced custom signatures
  • define whitelisting
  • specify Android custom detections
  • describe DFC IP blacklists and whitelists
  • configure exclusions and custom exclusion sets
  • define AMP for Endpoints
  • Course Number:
    cc_stcs_a08_it_enus

    Expertise Level
    Expert