1­-855­-778­-7246
> > > SSFAMP

Protecting against Malware Threats with Cisco AMP for Endpoints (SSFAMP)

 

Course Content

The Identifying Modern Threats and Protecting against Malware with Cisco® AMP for Endpoints is an instructor-led, lab-based, hands-on course offered by Cisco Learning Services. It is a lab-intensive course that introduces students to the powerful features of Cisco AMP for Endpoints software. Day one of this 3-day virtual class covers modern threats, vulnerabilities, and Cisco Advanced Malware Protection (AMP) technologies. Days two and three detail the Cisco AMP for Endpoints product architecture and how it can be used to protect against malware.

You learn how to build and manage a Cisco AMP for Endpoints deployment, create policies for endpoint groups, and deploy connectors. You also analyze malware detections using powerful tools available in the AMP for Endpoints console. This course combines lecture materials and hands-on labs throughout to make sure that you are able to successfully deploy and manage an AMP for Endpoints deployment.

Who should attend

The primary audience for this course is security administrators, security consultants, network administrators, systems engineers, technical support personnel, and channel partners and resellers.

Prerequisites

Cisco recommends that you have the following prerequisite knowledge and skills:

  • TCP/IP experience including the major protocols, common services, and basic network traffic routing
  • General information security fundamentals
  • Fundamentals of how operating systems work, including OS configuration structures, file system I/O and basic OS usage and management

Course Objectives

  • Identify the key components and methodologies of Cisco Advanced Malware Protection (AMP)
  • Recognize the key features and concepts of the AMP for Endpoints product
  • Navigate the AMP for Endpoints console interface and perform first-use setup tasks
  • Identify and use the primary analysis features of AMP for Endpoints
  • Use the AMP for Endpoints tools to analyze a compromised host
  • Describe malware terminology and recognize malware categories
  • Analyze files and events by using the AMP for Endpoints console and be able to produce threat reports
  • Use the AMP for Endpoints tools to analyze a malware attack and a ZeroAccess infection
  • Configure and customize AMP for Endpoints to perform malware detection
  • Create and configure a policy for AMP protected endpoints
  • Plan, deploy, and troubleshoot an AMP for Endpoints installation
  • Describe the AMP Representational State Transfer (REST) API and the fundamentals of its use
  • Describe all the features of the Accounts menu for both public and private cloud installations

Outline: Protecting against Malware Threats with Cisco AMP for Endpoints (SSFAMP)

  • Module 1: Introduction to Cisco AMP Technologies
  • Module 2: AMP for Endpoints Overview and Architecture
  • Module 3: Console Interface and Navigation
  • Module 4: Using AMP for Endpoints
  • Module 5: Detecting an Attacker— A Scenario
  • Module 6: Modern Malware
  • Module 7: Analysis
  • Module 8: Analysis Case Studies
  • Module 9: Outbreak Control
  • Module 10: Endpoint Policies
  • Module 11: Groups and Deployment
  • Module 12: AMP REST API
  • Module 13: Accounts

Labs
  • Lab 1: Accessing AMP for Endpoints
  • Lab 2: Attack Scenario
  • Lab 3: Attack Analysis
  • Lab 4: Analysis Tools and Reporting
  • Lab 5: Zbot Analysis
  • Lab 6: Outbreak Control
  • Lab 7: Endpoint Policies
  • Lab 8: Groups and Deployment
  • Lab 9: Testing Your Policy Configuration
  • Lab 10: REST API
  • Lab 11: User Accounts
Classroom Training

Duration 3 days

Price
  • United States: US$ 3,000
  • Cisco Learning Credits: 30 CLC
Enroll now
Online Training

Duration 3 days

Price
  • United States: US$ 3,000
  • Cisco Learning Credits: 30 CLC
Enroll now

Duration 365 days

Price
  • United States: US$ 1,000
  • Cisco Learning Credits: 10 CLC
Buy E-Learning
 
Click City Name To Book Schedule
This is an Instructor-Led Classroom course
This green checkmark in the Upcoming Schedule below indicates that this session is Guaranteed to Run.
This is an Instructor-Led Online (ILO) course. These sessions are conducted via WebEx in a VoIP environment and require an Internet Connection and headset with microphone connected to your computer or laptop.
This is a FLEX course, which is delivered simultaneously in two modalities. Choose to attend the Instructor-Led Online (ILO) virtual session or Instructor-Led Classroom (ILT) session.
  *   This class is delivered by a partner.
United States
 Feb 25-27, 2020 Guaranteed to Run Online Training 10:00 US/Eastern * Enroll
Mar 11-13, 2020 Online Training 09:00 US/Pacific * Enroll

Fast Lane Flex™ Classroom If you can't find a suitable date, don't forget to check our world-wide FLEX™ training schedule.

Europe
United Kingdom
 Apr 20-22, 2020 This is a FLEX event London, City Enroll
Online Training Time zone: Europe/London Enroll
Jul 6-8, 2020 This is a FLEX event London, City Enroll
Online Training Time zone: Europe/London Enroll
Oct 5-7, 2020 This is a FLEX event London, City Enroll
Online Training Time zone: Europe/London Enroll