1­-855­-778­-7246

Protecting against Malware Threats with Cisco AMP for Endpoints (SSFAMP)

 

Course Overview

The Protecting Against Malware Threats with Cisco AMP for Endpoints (SSFAMP) v5.0 course shows you how to deploy and use Cisco® AMP for Endpoints, a next-generation endpoint security solution that prevents, detects, and responds to advanced threats. Through expert instruction and hands-on lab exercises, you will learn how to implement and use this powerful solution through a number of step-by-step attack scenarios. You’ll learn how to build and manage a Cisco AMP for Endpoints deployment, create policies for endpoint groups, and deploy connectors. You will also analyze malware detections using the tools available in the AMP for Endpoints console.

Who should attend

  • Security administrators
  • Security consultants
  • Network administrators
  • Systems engineers
  • Technical support personnel
  • Cisco integrators, resellers, and partners

Prerequisites

To fully benefit from this course, you should have the following knowledge and skills:

  • Technical understanding of TCP/IP networking and network architecture
  • Technical understanding of security concepts and protocols

Course Objectives

After taking this course, you should be able to:

  • Identify the key components and methodologies of Cisco Advanced Malware Protection (AMP)
  • Recognize the key features and concepts of the AMP for Endpoints product
  • Navigate the AMP for Endpoints console interface and perform first-use setup tasks
  • Identify and use the primary analysis features of AMP for Endpoints
  • Use the AMP for Endpoints tools to analyze a compromised host
  • Describe malware terminology and recognize malware categories
  • Analyze files and events by using the AMP for Endpoints console and be able to produce threat reports
  • Use the AMP for Endpoints tools to analyze a malware attack and a ZeroAccess infection
  • Configure and customize AMP for Endpoints to perform malware detection
  • Create and configure a policy for AMP-protected endpoints
  • Plan, deploy, and troubleshoot an AMP for Endpoints installation
  • Describe the AMP Representational State Transfer (REST) API and the fundamentals of its use
  • Describe all the features of the Accounts menu for both public and private cloud installations

Course Benefits

This class will help you:

  • Learn how to deploy and manage Cisco AMP for Endpoints
  • Succeed in today’s high-demand security operations roles

Outline: Protecting against Malware Threats with Cisco AMP for Endpoints (SSFAMP)

  • Introduction to Cisco AMP Technologies
  • AMP for Endpoints Overview and Architecture
  • Console Interface and Navigation
  • Using AMP for Endpoints
  • Detecting an Attacker — A Scenario
  • Modern Malware
  • Analysis
  • Analysis Case Studies
  • Outbreak Control
  • Endpoint Policies
  • AMP REST API
  • Accounts

Lab Outline

  • Request Cisco AMP for Endpoints User Account (e-learning version only)
  • Accessing AMP for Endpoints
  • Attack Scenario
  • Attack Analysis
  • Analysis Tools and Reporting
  • Zbot Analysis
  • Outbreak Control
  • Endpoint Policies
  • Groups and Deployment
  • Testing Your Policy Configuration
  • REST API
  • User Accounts (optional)
Online Training

Duration 3 days

Price
  • US$ 2,995
  • Cisco Learning Credits: 30 CLC
Enroll now
Classroom Training

Duration 3 days

Price
  • United States: US$ 2,995
  • Cisco Learning Credits: 30 CLC
Enroll now
E-Learning Cisco Digital Learning

Duration 180 days

Price
  • United States: US$ 1,000
  • Cisco Learning Credits: 10 CLC
Fast Lane Live Buy E-Learning
 
Click City Name To Book Schedule
This is an Instructor-Led Classroom course
This green checkmark in the Upcoming Schedule below indicates that this session is Guaranteed to Run.
This is an Instructor-Led Online (ILO) course. These sessions are conducted via WebEx in a VoIP environment and require an Internet Connection and headset with microphone connected to your computer or laptop.
This is a FLEX course, which is delivered simultaneously in two modalities. Choose to attend the Instructor-Led Online (ILO) virtual session or Instructor-Led Classroom (ILT) session.
  *   This class is delivered by a partner.
United States
 Aug 18-20, 2020 Guaranteed to Run Online Training 09:00 US/Pacific * Enroll
Sep 15-17, 2020 Online Training 09:00 US/Eastern * Enroll
Sep 15-17, 2020 Online Training 09:00 US/Eastern Enroll
Oct 19-21, 2020 Guaranteed to Run Online Training 09:00 US/Pacific Enroll
Nov 16-18, 2020 Online Training 09:00 US/Central Enroll
Nov 17-19, 2020 Online Training 09:00 US/Central * Enroll
Dec 14-16, 2020 Guaranteed to Run Online Training 09:00 US/Eastern Enroll
Dec 15-17, 2020 Online Training 09:00 US/Eastern * Enroll
Canada
 Sep 15-17, 2020 Online Training 09:00 Canada/Eastern Enroll
Oct 19-21, 2020 Guaranteed to Run Online Training 09:00 Canada/Pacific Enroll
Nov 16-18, 2020 Online Training 09:00 Canada/Central Enroll
Dec 14-16, 2020 Guaranteed to Run Online Training 09:00 Canada/Eastern Enroll

Fast Lane Flex™ Classroom If you can't find a suitable date, don't forget to check our world-wide FLEX™ training schedule.