Summer of Learn: when booking two courses before July 31, save 50% on the second one.
Bright days ahead: our UK training centre has reopened.

Cisco - CCNA Security (IINS)

Varighed

Varighed:

Kun 4 dage

Metode

Metode:

Klasseværelse / Online / Hybrid

Næste dato

Næste dato:

28/9/2020 (Mandag)

Overview

Firebrand Training Official Cisco Learning Partner

This certification retired on 24th February 2020. Our closest replacement is CCNA.

This accelerated 4-day Cisco CCNA Security course introduces you to core security technologies and concepts.

Through our unique Lecture | Lab | Review technique, you'll be able to develop your own security policies, to protect your IT infrastructure. The course is based on applying security through the features of Cisco's IOS (Internetwork Operating System).

Your expert Firebrand instructor will teach you network security concepts and practices, including how to:

  • Secure routing and switching infrastructure
  • Deploy basic authentication, authorisation and accounting services
  • Deploy basic firewalling services
  • Deploy basic site-to-site and remote access VPN services
  • Describe the use of more advanced security services such as intrusion protection, content security and identity management

The curriculum also covers core security technologies, the installation, troubleshooting and monitoring of network devices in order to maintain integrity, confidentiality and availability of data and devices, and competency in the technologies that Cisco uses in its security structure.

During the course, you'll prepare for and sit exam 210-260 IINS, covered by your Certification Guarantee.

The CCNA Security certification is a required step towards the CCNP Security certification.

Her er 4 gode grunde til at du skal tage CCNA Security hos Firebrand:

  1. Du bliver CCNA Security uddannet og certificeret hurtigere. Du lærer mere på vores 6 dages accelererede kursus og får mindst 12 timers daglig uddannelse i et distraktionsfrit miljø.
  2. Dit CCNA Security kursus er alt-inklusiv. Du får en gennemskuelig pris, der dækker alle kursusmaterialer, eksamen, overnatning og forplejning. Du skal ikke tænke på andet end at lære.
  3. Bestå CCNA Security den første gang eller kom tilbage, gratis. Din instruktør er ekspert, og træner dig ud fra accelererede metoder, så du lærer hurtigere og har de bedste muligheder for at bestå eksamen første gang. Men hvis du mod forventning ikke består, er du dækket af vores Certificeringsgaranti.
  4. Tag CCNA Security hos en prisvindende uddannelsesleverandør. Vi har vundet adskillige udmærkelser heriblandt Microsofts "Årets Learning Partner" hele fem gange og to Børsen Gazelle priser. Firebrand er din hurtigste vej til uddannelse, og vi har sparet 70,000 deltagere for mere end en million spildte timer siden 2001.

Benefits

Use your Cisco Learning Credits (CLCs)

You may be entitled to free training via Cisco Learning Credits (CLCs). If you’ve bought Cisco hardware or software - check the invoice to see if you have credits waiting to be used! If you’re unsure, get in touch with us.

Curriculum

The following are the topics covered on the CCNA Security course:

1.0 Security Concepts

1.1 Common security principles

  • Describe confidentiality, integrity, availability (CIA)
  • Describe SIEM technology
  • Identify common security terms
  • Identify common network security zones

1.2 Common security threats

  • Identify common network attacks
  • Describe social engineering
  • Identify malware
  • Classify the vectors of data loss/exfiltration

1.3 Cryptography concepts

  • Describe key exchange
  • Describe hash algorithm
  • Compare and contrast symmetric and asymmetric encryption
  • Describe digital signatures, certificates, and PKI

1.4 Describe network topologies

  • Campus area network (CAN)
  • Cloud, wide area network (WAN)
  • Data center
  • Small office/home office (SOHO)
  • Network security for a virtual environment

2.0 Secure Access

2.1 Secure management

  • Compare in-band and out-of band
  • Configure secure network management
  • Configure and verify secure access through SNMP v3 using an ACL
  • Configure and verify security for NTP
  • Use SCP for file transfer

2.2 AAA concepts

  • Describe RADIUS and TACACS+ technologies
  • Configure administrative access on a Cisco router using TACACS+
  • Verify connectivity on a Cisco router to a TACACS+ server
  • Explain the integration of Active Directory with AAA
  • Describe authentication and authorisation using ACS and ISE

2.3 802.1X authentication

  • Identify the functions 802.1X components

2.4 BYOD

  • Describe the BYOD architecture framework
  • Describe the function of mobile device management (MDM)

3.0 VPN

3.1 VPN concepts

  • Describe IPsec protocols and delivery modes (IKE, ESP, AH, tunnel mode, transport mode)
  • Describe hairpinning, split tunneling, always-on, NAT traversal

3.2 Remote access VPN

  • Implement basic clientless SSL VPN using ASDM
  • Verify clientless connection
  • Implement basic AnyConnect SSL VPN using ASDM
  • Verify AnyConnect connection
  • Identify endpoint posture assessment

3.3 Site-to-site VPN

  • Implement an IPsec site-to-site VPN with pre-shared key authentication on Cisco routers and ASA firewalls
  • Verify an IPsec site-to-site VPN

4.0 Secure Routing and Switching

4.1 Security on Cisco routers

  • Configure multiple privilege levels
  • Configure Cisco IOS role-based CLI access
  • Implement Cisco IOS resilient configuration

4.2 Securing routing protocols

  • Implement routing update authentication on OSPF

4.3 Securing the control plane

  • Explain the function of control plane policing

4.4 Common Layer 2 attacks

  • Describe STP attacks
  • Describe ARP spoofing
  • Describe MAC spoofing
  • Describe CAM table (MAC address table) overflows
  • Describe CDP/LLDP reconnaissance
  • Describe VLAN hopping
  • Describe DHCP spoofing

4.5 Mitigation procedures

  • Implement DHCP snooping
  • Implement Dynamic ARP Inspection
  • Implement port security
  • Describe BPDU guard, root guard, loop guard
  • Verify mitigation procedures

4.6 VLAN security

  • Describe the security implications of a PVLAN
  • Describe the security implications of a native VLAN

5.0 Cisco Firewall Technologies

5.1 Describe operational strengths and weaknesses of the different firewall technologies

  • Proxy firewalls
  • Application firewall
  • Personal firewall

5.2 Compare stateful vs. stateless firewalls

  • Operations
  • Function of the state table

5.3 Implement NAT on Cisco ASA 9.x

  • Static
  • Dynamic
  • PAT
  • Policy NAT
  • Verify NAT operations

5.4 Implement zone-based firewall

  • Zone to zone
  • Self zone

5.5 Firewall features on the Cisco Adaptive Security Appliance (ASA) 9.x

  • Configure ASA access management
  • Configure security access policies
  • Configure Cisco ASA interface security levels
  • Configure default Cisco Modular Policy Framework (MPF)
  • Describe modes of deployment (routed firewall, transparent firewall)
  • Describe methods of implementing high availability
  • Describe security contexts
  • Describe firewall services

6.0 IPS

6.1 Describe IPS deployment considerations

  • Network-based IPS vs. host-based IPS
  • Modes of deployment (inline, promiscuous - SPAN, tap)
  • Placement (positioning of the IPS within the network)
  • False positives, false negatives, true positives, true negatives

6.2 Describe IPS technologies

  • Rules/signatures
  • Detection/signature engines
  • Trigger actions/responses (drop, reset, block, alert, monitor/log, shun)
  • Blacklist (static and dynamic)

7.0 Content and Endpoint Security

7.1 Describe mitigation technology for email-based threats

  • SPAM filtering, anti-malware filtering, DLP, blacklisting, email encryption

7.2 Describe mitigation technology for web-based threats

  • Local and cloud-based web proxies
  • Blacklisting, URL filtering, malware scanning, URL categorisation, web application filtering, TLS/SSL decryption

7.3 Describe mitigation technology for endpoint threats

  • Anti-virus/anti-malware
  • Personal firewall/HIPS
  • Hardware/software encryption of local data

Exam Track

You'll sit the following CCNA Security exam

  • Cisco 210-260 IINS - Implementing Cisco Network Security (IINS)
    • Duration: 90 minutes
    • Number of questions: 60-70 questions
    • Languages: English, Japanese

This is a Cisco Concentration exam, which renews your CCNA and any other Associate certifications for a further three years.

What's Included

Included:

  • Official Cisco courseware: Implementing Cisco Network Security (IINS) 3.0

Det hele er inkluderet! Du får en alt-inklusiv kursuspakke, som er målrettet til dine behov. Vi tager os af enhver detalje, så det eneste du skal fokusere på er dine lærings- og certificeringsmål.

  • Transport til/fra specifikke afhentningssteder
  • Overnatninger, samtlige måltider samt adgang til forfriskninger, snacks, kaffe og the.
  • Intensiv Hands-on uddannelse med vores unikke (Lecture | Lab | Review)TM metode
  • Omfattende kursusmaterialer og labmanualer
  • Et helt igennem instruktørstyret program
  • 24 timers adgang til både undervisningslokale og instruktøren
  • Samtlige måltider samt adgang til forfriskninger, snacks, kaffe og the.
  • Certificeringsgaranti

Prerequisites

Before attending this course, you must have a valid CCENT, CCNA Routing and Switching or any CCIE certification. It is also recommended you have a working knowledge of the Windows operating system and of Cisco IOS networking and concepts.

Er du klar til dit Firebrand Kursus?

Vi interviewer alle potentielle deltagere angående deres baggrund, uddannelser, certificeringer og personlig indstilling. Hvis du kommer igennem denne screeningsprocedure, betyder det, at du har rigtig gode chancer for at bestå.

Firebrand Training tilbyder et ambitiøst uddannelsesmiljø, som forudsætter at du dedikerer dig til kurset. Ovenstående forkundskaber er vejledende; mange deltagere med mindre erfaring, men med en anden baggrund eller færdigheder, har haft succes med accelereret uddannelse hos Firebrand Training.

Hvis du funderer på hvorvidt du opfylder de anbefalede forkundskaber, er du meget velkommen til at ringe til os på 78 79 16 53 og tale med en af vores uddannelsesrådgivere, som kan hjælpe dig.

Kundereferencer

Vi har uddannet over 75.956 personer i løbet af 12 år. Vi har bedt dem alle om at bedømme vores accelererede kurser. Aktuelt har 96,75% sagt, at Firebrand oversteg deres forventninger:

"I''ve been in many other training centers before, but Firebrand is different and professional. where you can get knowledge and have good times. The instructor was very good and has provided valuable experience that you can gain understandable and clear concepts about network security. I will come back again to Firebrand."
Anonymous. (11/2/2019 (Mandag) til 14/2/2019 (Torsdag))

"The instructor was very good, he explains things in an easy to understand manner and the facilities are very good."
Peter Tanser. (11/2/2019 (Mandag) til 14/2/2019 (Torsdag))

"The best way to take these exams/courses. Hard work but means you don''t have to stress for weeks/months at a time."
John Noonan, Storm Technologies Ltd. (30/10/2018 (Tirsdag) til 2/11/2018 (Fredag))

"The best way to take these exams/courses. Hard work but means you dont have to stress for weeks/months at a time."
John Noonan, Storm Technologies Ltd. (30/10/2018 (Tirsdag) til 2/11/2018 (Fredag))

"Good environment to work in, but be prepared to work hard when you get here."
Mark Stevens, JEM Solutions IT Ltd.. (8/5/2018 (Tirsdag) til 11/5/2018 (Fredag))

Kursusdatoer

Starter

Slutter

Tilgængelighed

Sted

Tilmelding

25/5/2020 (Mandag)

28/5/2020 (Torsdag)

Afsluttet

-

 

28/9/2020 (Mandag)

1/10/2020 (Torsdag)

Venteliste

Landsdækkende

 

9/11/2020 (Mandag)

12/11/2020 (Torsdag)

Begrænsede pladser

Landsdækkende

 

21/12/2020 (Mandag)

24/12/2020 (Torsdag)

Tilgængelige pladser

Landsdækkende

 

1/2/2021 (Mandag)

4/2/2021 (Torsdag)

Tilgængelige pladser

Landsdækkende

 

15/3/2021 (Mandag)

18/3/2021 (Torsdag)

Tilgængelige pladser

Landsdækkende

 

Seneste anmeldelser fra vores studerende