> > > SSFIPS

Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS)

Course Description Schedule Course Outline
 

Course Content

This course is a lab-intensive course which introduces you to the basic next-generation intrusion prevention system (NGIPS) and firewall security concepts, and the Cisco Firepower system components and features. The course then leads you through the powerful features of the Cisco Firepower system, in-depth event analysis, NGIPS tuning and configuration, Snort® rules language overview, and the latest platform features including File & Malware inspection, Security Intelligence, Domain Awareness, and more. The course begins by introducing the system architecture, the latest key features, and the role of policies when implementing the solution. You also learn how to manage deployed devices and perform basic Cisco Firepower discovery before moving on to describe how to use and configure Cisco NGIPS technology, including application control, security intelligence, firewall, and network-based malware and file controls. You also learn to properly tune systems for better performance and greater network intelligence while taking advantage of powerful tools for more efficient event analysis, including file type and network-based malware detection. The course finishes with system and user administration tasks. This course combines lecture materials and hands-on labs throughout to make sure you are able to successfully deploy and manage the Cisco Firepower system.

Who should attend

This course is designed for technical professionals who need to know how to deploy and manage a Cisco Firepower NGIPS in their network environment. Targeted roles include:

  • Security administrators
  • Security consultants
  • Network administrators
  • System engineers
  • Technical support personnel
  • Channel partners and resellers

Prerequisites

  • Technical understanding of TCP/IP networking and network architecture
  • Basic familiarity with the concepts of intrusion detection systems (IDS) and IPS

Course Objectives

  • Describe the key features and concepts of NGIPS and firewall security
  • Describe the Cisco Firepower system components, features, and high-level implementation steps
  • Navigate the Cisco Firepower Management Center GUI and understand the role of policies when configuring the Cisco Firepower system
  • Deploy and manage Cisco Firepower managed devices
  • Perform an initial Cisco Firepower discovery and basic event analysis to identify hosts, applications, and services
  • Identify and create the objects required as prerequisites to implementing access control policies
  • Identify the features and functionality of access control policies and the implementation procedures
  • Describe the concepts and implementation procedures of security intelligence
  • Describe the concepts and implementation procedures of file control and advanced malware protection
  • Use Cisco Firepower recommendations to implement IPS policies
  • Explain the use of network analysis policies and the role of preprocessor technology in processing network traffic for NGIPS inspection
  • Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center
  • Describe major Cisco Firepower Management Center system administration and user account management features

Outline: Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS)

Course Outline
  • Module 1: Security Technology Overview
  • Module 2: Cisco Firepower System Components and Features
  • Module 3: Introducing the Cisco Firepower Management Center
  • Module 4: Deploying Cisco Firepower Managed Devices
  • Module 5: Cisco Firepower Discovery
  • Module 6: Access Control Policy Prerequisites
  • Module 7: Implementing Access Control Policies
  • Module 9: File Control and Advanced Malware Protection
  • Module 10: Next-Generation Intrusion Prevention Systems
  • Module 11: Network Analysis Policies
  • Module 12: Detailed Analysis Techniques
Lab Outline
  • Lab 1: Connect to the Lab Environment
  • Lab 2: Navigate the Cisco Firepower Management Center GUI
  • Lab 3: Device Management
  • Lab 4: Cisco Firepower Discovery
  • Lab 5: Access Control Policy Prerequisites
  • Lab 6: Implementing an Access Control Policy
  • Lab 7: Security Intelligence
  • Lab 8: File Control and Advanced Malware Protection
  • Lab 9: Implementing NGIPS
  • Lab 10: Detailed Analysis
  • Lab 11: System Administration
Classroom Training
Modality: G

Duration 4 days

Price
  • United States: US$ 4,000
  • Cisco Learning Credits: 40 CLC
Enroll now
Online Training
Modality: U

Duration 5 days

Enroll now
 
Click City Name To Book Schedule
This is an Instructor-Led Classroom course
This is an Instructor-Led Online (ILO) course. These sessions are conducted via WebEx in a VoIP environment and require an Internet Connection and headset with microphone connected to your computer or laptop.
  *   This class is delivered by a partner.
United States
Jan 7-11, 2019 Online Training 09:00 US/Pacific * Enroll
Feb 12-15, 2019 Research Triangle Park, NC 09:00 US/Eastern * Enroll
Feb 25-Mar 1, 2019 Online Training 09:00 US/Mountain * Enroll
Mar 11-15, 2019 Online Training 09:00 US/Central * Enroll
Europe
Netherlands
Feb 25-28, 2019 Amsterdam Zuidoost Course language: English * Enroll
United Kingdom
Jan 21-25, 2019 Online Training Time zone: Europe/London * Enroll
Apr 29-May 3, 2019 Online Training Time zone: Europe/London * Enroll
Latin America
Peru
Feb 18-22, 2019 Online Training Time zone: America/Lima * Enroll