...

CCNP Security

Category:
الأمن السيبراني
Enroll

Course Description

The CCNP Security course is designed for IT professionals who wish to advance their skills in securing enterprise networks. This course covers key security technologies, including firewall protection, intrusion prevention, VPNs, and secure network access. Participants will gain hands-on experience with Cisco security solutions and learn how to implement, manage, and troubleshoot security measures in a network environment. This course prepares learners for the CCNP Security certification exams, validating their expertise in designing and securing modern network infrastructures.

Course Outline

Explain common threats against on-premises and cloud environments
Describe functions of the cryptography components such as hashing, encryption, PKI, SSL, IPsec, NAT-T IPv4 for IPsec, pre-shared key and certificate based authorization
Explain the role of the endpoint in protecting humans from phishing and social engineering attacks
Explain North Bound and South Bound APIs in the SDN architecture
Compare network security solutions that provide intrusion prevention and firewall capabilities
Describe the components, capabilities, and benefits of NetFlow and Flexible NetFlow records
Configure and verify network infrastructure security methods (router, switch, wireless)
Implement management options for network security solutions such as intrusion prevention and perimeter security (Single vs. multidevice manager, in-band vs. out-of-band, CDP, DNS, SCP, SFTP, and DHCP security and risks)
Congure AAA for device and network access (authentication and authorization, TACACS+, RADIUS and RADIUS ows, accounting, and dACL)
Configure secure network management of perimeter security and infrastructure devices (secure device management, SNMPv3, views, groups, users, authentication, and encryption, secure logging, and NTP with authentication)
Configure and verify site-to-site VPN and remote access VPN
Describe web proxy identity and authentication including transparent user identification
Compare the components, capabilities, and benefits of local and cloud-based email and web solutions (ESA, CES, WSA)
Configure and verify web and email security deployment methods to protect on-premises and remote users (inbound and outbound controls and policy management)
Configure and verify email security features such as SPAM filtering, antimalware filtering, DLP, black- listing, and email encryption
Confiure and verify secure internet gateway and web security features such as blacklisting, URL filtering, malware scanning, URL categorization, web application ltering, and TLS decryption
Describe identity management and secure network access concepts such as guest services, profiling, posture assessment and BYOD
Configure and verify network access device functionality such as 802.1X, MAB, WebAuth
Describe network access with CoA
Describe the benefits of device compliance and application control
Describe the components, capabilities, and benefits of these security products and solutions ( Cisco Stealthwatch and Cisco pxGrid)

Course Schedule