CCNP security stands for Cisco Certified Network professional security training program is specially designed for job role of network security engineers. The person is responsible for switches, security routers, appliances and networking devices along with deploying, choosing, troubleshooting, and supporting firewalls, IDS/IPS, VPNS solutions for environments of networking.
Threat Defense
Implement Firewall, layer 2 security and configure device hardening practices
Cisco Secured CLI management and Security devices like GUIs
Implement RBAC, HTTPS, SNMPV3 access, SSHv2
Describe prime infrastructure of Cisco and CSM
Implement device managers
Cisco Devices Management Servers
Netflow exporter configuring
Implement SNMPV3, NTP
Implement logging on switches, cisco routers, ASA
Report, Monitor, and Troubleshoot Reporting Tools
Architectures of Threat Defense
Security Considerations And Components
Content Security
Describing and implementation of CWS (Cisco cloud web security), WSA (cisco web security appliance), Cisco Email security appliance
Threat Defense Network
Cisco next generation firewall security services (NGFW)
AMP (Cisco advanced malware protection)
FirePower next Generation IPS (NGIPS) Of Cisco
Configurations and deployments
Capture methods and traffic redirection describing
Architectures Of Security
Web security solution designing
Email security solution designing
Designing of Cisco FirePower Solutions
Report, Monitor, And Troubleshoot Tools
Implement, describe and troubleshooting of WSA (Cisco web security appliance), ESA (cisco email security appliance),Cisco Firepower
Secure Access / Identity Management
Implement wired & wireless 802..1x, device administration, MAB, network authorization enforcement, CWA (Central Web Authentication), profiling, guest & posture services, BYOD access
Describing identity management
Threat Defense
About TrustSec Architecture
Report, Monitor, and Troubleshoot Tools
Architecture of Threat Defense – Using ISE High Secure Wireless Solution Designing
Identity Management Architecture – profiling, guest services, posturing services, BYOD access, identity management, device administration
Secure Communications
Remote access VPNs implementation
Firewalls and routers site to site VPNs
Report, Monitor, and troubleshoot Tools – using ASDM and CLI Troubleshoot VPN
Architecture Of Secure Communications
Design remote access and site to site VPN solutions
About hashing, encryption, NGE (Next Generation Encryption)
CCNA stands for Cisco Certified Network Associate Security that is associate level skills and knowledge is needed for Cisco secure networks. The person with CCNA training and certification will acquire skills to security infrastructure development, recognize vulnerabilities and threats networks, and security threats mitigation.
You can acquire job roles like security administrator, network security specialist, and network security support engineer.
Security Concepts
Principles of common security
Threats of common security
Cryptography concepts
About network topologies
Secure Access
Secure management
AAA concepts, 802.1x authentication, and BYOD
Concepts of VPN, remote access VPN, and Site to site VPN
Switching And Routing Securely
Cisco Routers security
Protocols of secure routing
Secure control plane
Attacks of common layer 2
Mitigation procedures
VLAN security
Cisco Firewall Technologies
About operational weakness and strength of various firewall technologies
Comparison of stateless firewalls vs stateful
Implement zone based firewall, NAT on cisco ASA 9.X
Firewall features on cisco ASA (Adaptive security appliance) 9.x
IPS – IPS technology and deployment considerations
End point security and content