Cisco CCNA Security (IINS)

- Only 4 Days
Firebrand Training Official Cisco Learning Partner

This certification will retire on 23rd February 2020. Get the CCNA Security (IINS) certification before it retires and you'll also receive the new CCNA. Find out more.

This accelerated 4-day Cisco CCNA Security course introduces you to core security technologies and concepts.

Through our unique Lecture | Lab | Review technique, you'll be able to develop your own security policies, to protect your IT infrastructure. The course is based on applying security through the features of Cisco's IOS (Internetwork Operating System).

Read more...

Your expert Firebrand instructor will teach you network security concepts and practices, including how to:

  • Secure routing and switching infrastructure
  • Deploy basic authentication, authorisation and accounting services
  • Deploy basic firewalling services
  • Deploy basic site-to-site and remote access VPN services
  • Describe the use of more advanced security services such as intrusion protection, content security and identity management

The curriculum also covers core security technologies, the installation, troubleshooting and monitoring of network devices in order to maintain integrity, confidentiality and availability of data and devices, and competency in the technologies that Cisco uses in its security structure.

During the course, you'll prepare for and sit exam 210-260 IINS, covered by your Certification Guarantee.

The CCNA Security certification is a required step towards the CCNP Security certification.

See Benefits...

See prices now to find out how much you could save when you train at twice the speed.

Seven reasons why you should sit your course with Firebrand Training

  1. You'll be CCNA Security certified in just 4 days. With us, you’ll be CCNA Security trained in record time
  2. Our CCNA Security course is all-inclusive. A one-off fee covers all course materials, exams, accommodation and meals. No hidden extras
  3. Pass CCNA Security first time or train again for free. This is our guarantee. We’re confident you’ll pass your course first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  4. You’ll learn more. A day with a traditional training provider generally runs from 9am – 5pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day quality learning time, with your instructor
  5. You’ll learn CCNA Security faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  6. You’ll be studying CCNA Security with the best. We’ve been named in Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified 72,589 professionals, and we’re partners with all of the big names in the business
  7. You'll do more than study Firebrand's courseware. We use practical exercises to make sure you can apply your new knowledge to the work environment. Our instructors use demonstrations and real-world experience to keep the day interesting and engaging

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

Use your Cisco Learning Credits (CLCs)

You may be entitled to free training via Cisco Learning Credits (CLCs). If you’ve bought Cisco hardware or software - check the invoice to see if you have credits waiting to be used! If you’re unsure, get in touch with us.

Other accelerated training providers rely heavily on lecture and independent self-testing and study.

Effective technical instruction must be highly varied and interactive to keep attention levels high, promote camaraderie and teamwork between the students and instructor, and solidify knowledge through hands-on learning.

Firebrand Training provides instruction to meet every learning need:

  • Intensive group instruction
  • One-on-one instruction attention
  • Hands-on labs
  • Lab partner and group exercises
  • Question and answer drills
  • Independent study

This information has been provided as a helpful tool for candidates considering training. Courses that include certification come with a Certification Guarantee. Pass first time or train again for free (just pay for accommodation, exams and incidental costs). We do not make any guarantees about personal successes or benefits of obtaining certification. Benefits of certification determined through studies do not guarantee any particular personal successes.

See Curriculum...

The following are the topics covered on the CCNA Security course:

1.0 Security Concepts

1.1 Common security principles

  • Describe confidentiality, integrity, availability (CIA)
  • Describe SIEM technology
  • Identify common security terms
  • Identify common network security zones

1.2 Common security threats

  • Identify common network attacks
  • Describe social engineering
  • Identify malware
  • Classify the vectors of data loss/exfiltration

1.3 Cryptography concepts

  • Describe key exchange
  • Describe hash algorithm
  • Compare and contrast symmetric and asymmetric encryption
  • Describe digital signatures, certificates, and PKI

1.4 Describe network topologies

  • Campus area network (CAN)
  • Cloud, wide area network (WAN)
  • Data center
  • Small office/home office (SOHO)
  • Network security for a virtual environment

2.0 Secure Access

2.1 Secure management

  • Compare in-band and out-of band
  • Configure secure network management
  • Configure and verify secure access through SNMP v3 using an ACL
  • Configure and verify security for NTP
  • Use SCP for file transfer

2.2 AAA concepts

  • Describe RADIUS and TACACS+ technologies
  • Configure administrative access on a Cisco router using TACACS+
  • Verify connectivity on a Cisco router to a TACACS+ server
  • Explain the integration of Active Directory with AAA
  • Describe authentication and authorisation using ACS and ISE

2.3 802.1X authentication

  • Identify the functions 802.1X components

2.4 BYOD

  • Describe the BYOD architecture framework
  • Describe the function of mobile device management (MDM)

3.0 VPN

3.1 VPN concepts

  • Describe IPsec protocols and delivery modes (IKE, ESP, AH, tunnel mode, transport mode)
  • Describe hairpinning, split tunneling, always-on, NAT traversal

3.2 Remote access VPN

  • Implement basic clientless SSL VPN using ASDM
  • Verify clientless connection
  • Implement basic AnyConnect SSL VPN using ASDM
  • Verify AnyConnect connection
  • Identify endpoint posture assessment

3.3 Site-to-site VPN

  • Implement an IPsec site-to-site VPN with pre-shared key authentication on Cisco routers and ASA firewalls
  • Verify an IPsec site-to-site VPN

4.0 Secure Routing and Switching

4.1 Security on Cisco routers

  • Configure multiple privilege levels
  • Configure Cisco IOS role-based CLI access
  • Implement Cisco IOS resilient configuration

4.2 Securing routing protocols

  • Implement routing update authentication on OSPF

4.3 Securing the control plane

  • Explain the function of control plane policing

4.4 Common Layer 2 attacks

  • Describe STP attacks
  • Describe ARP spoofing
  • Describe MAC spoofing
  • Describe CAM table (MAC address table) overflows
  • Describe CDP/LLDP reconnaissance
  • Describe VLAN hopping
  • Describe DHCP spoofing

4.5 Mitigation procedures

  • Implement DHCP snooping
  • Implement Dynamic ARP Inspection
  • Implement port security
  • Describe BPDU guard, root guard, loop guard
  • Verify mitigation procedures

4.6 VLAN security

  • Describe the security implications of a PVLAN
  • Describe the security implications of a native VLAN

5.0 Cisco Firewall Technologies

5.1 Describe operational strengths and weaknesses of the different firewall technologies

  • Proxy firewalls
  • Application firewall
  • Personal firewall

5.2 Compare stateful vs. stateless firewalls

  • Operations
  • Function of the state table

5.3 Implement NAT on Cisco ASA 9.x

  • Static
  • Dynamic
  • PAT
  • Policy NAT
  • Verify NAT operations

5.4 Implement zone-based firewall

  • Zone to zone
  • Self zone

5.5 Firewall features on the Cisco Adaptive Security Appliance (ASA) 9.x

  • Configure ASA access management
  • Configure security access policies
  • Configure Cisco ASA interface security levels
  • Configure default Cisco Modular Policy Framework (MPF)
  • Describe modes of deployment (routed firewall, transparent firewall)
  • Describe methods of implementing high availability
  • Describe security contexts
  • Describe firewall services

6.0 IPS

6.1 Describe IPS deployment considerations

  • Network-based IPS vs. host-based IPS
  • Modes of deployment (inline, promiscuous - SPAN, tap)
  • Placement (positioning of the IPS within the network)
  • False positives, false negatives, true positives, true negatives

6.2 Describe IPS technologies

  • Rules/signatures
  • Detection/signature engines
  • Trigger actions/responses (drop, reset, block, alert, monitor/log, shun)
  • Blacklist (static and dynamic)

7.0 Content and Endpoint Security

7.1 Describe mitigation technology for email-based threats

  • SPAM filtering, anti-malware filtering, DLP, blacklisting, email encryption

7.2 Describe mitigation technology for web-based threats

  • Local and cloud-based web proxies
  • Blacklisting, URL filtering, malware scanning, URL categorisation, web application filtering, TLS/SSL decryption

7.3 Describe mitigation technology for endpoint threats

  • Anti-virus/anti-malware
  • Personal firewall/HIPS
  • Hardware/software encryption of local data

See Exam Track...

You'll sit the following CCNA Security exam

  • Cisco 210-260 IINS - Implementing Cisco Network Security (IINS)
    • Duration: 90 minutes
    • Number of questions: 60-70 questions
    • Languages: English, Japanese

This is a Cisco Concentration exam, which renews your CCNA and any other Associate certifications for a further three years.

See What's Included...

Included:

  • Official Cisco courseware: Implementing Cisco Network Security (IINS) 3.0

Firebrand Training offers top-quality technical education and certification training in an all-inclusive course package specifically designed for the needs and ease of our students. We attend to every detail so our students can focus solely on their studies and certification goals.

Our Accelerated Learning Programmes include:

  • Intensive Hands-on Training Utilising our (Lecture | Lab | Review)TM Delivery
  • Comprehensive Study Materials, Program Courseware and Self-Testing Software including MeasureUp *
  • Fully instructor-led program with 24 hour lab access
  • Examination vouchers **
  • On site testing ***
  • Accommodation, all meals, unlimited beverages, snacks and tea / coffee****
  • Transportation to/from designated local railway stations
  • Examination Passing Policy

Our instructors teach to accommodate every student's learning needs through individualised instruction, hands-on labs, lab partner and group exercises, independent study, self-testing, and question/answer drills.

Firebrand Training has dedicated, well-equipped educational facilities where you will attend instruction and labs and have access to comfortable study and lounging rooms. Our students consistently say our facilities are second-to-none.

Firebrand goes digital

We’re currently migrating from printed to digital courseware. Some courseware is already available in digital, while other books remain in printed form. To find out if this course is digital, call us on 080 80 800 888.

There are several benefits of easy-to-use digital courseware: downloads are immediate, and you’ll always have your courseware available wherever you are. You won’t need to wait for a printed book to be delivered before you start learning – and it’s better for the environment. You can choose to download the courseware to your own device, or borrow one of ours.

Considering a Microsoft course? Always have the most up-to-date Microsoft digital courseware with ‘Fresh Editions’. This gives you access to all versions of digital courseware – you’ll receive updates and revisions of your textbook, at no charge, for the life of that course.

Examination Passing Policy

Should a student complete a Firebrand Training Program without having successfully passed all vendor examinations, the student may re-attend that program for a period of one year.  Students will only be responsible for accommodations and vendor exam fees.

Please note

  • * Not on all courses
  • ** Examination vouchers are not included for the following courses: GIAC, CREST and CISSP CBK Review. Exam vouchers may also not be included for Apprentices and will require a separate purchase by an employer due to Education and Skills Funding Agency guidelines.
  • *** On site testing is not included for our GIAC, CREST or ITIL Managers and Revision Certification Courses
  • **** Accommodation not included on the CISSP CBK Review Seminar

See Prerequisites...

Before attending this course, you must have a valid CCENT, CCNA Routing and Switching or any CCIE certification. It is also recommended you have a working knowledge of the Windows operating system and of Cisco IOS networking and concepts.

Unsure whether you meet the prerequisites?

Don’t worry - we’ll discuss your technical background, experience and qualifications to determine whether this accelerated course suits you.

Just call us on 080 80 800 888 and speak to one of our enrolment consultants.

Firebrand is an immersive environment and requires commitment. Some prerequisites are simply guidelines; you may find your unique experience, attitude and determination enables you to succeed on your accelerated course.

See Dates...

Cisco CCNA Security Course Dates

Cisco - CCNA Security (IINS)

Start

Finish

Status

Book now

11/2/2020 (Tuesday)

14/2/2020 (Friday)

Open

Book now

4/5/2020 (Monday)

7/5/2020 (Thursday)

Open

Book now

17/8/2020 (Monday)

20/8/2020 (Thursday)

Open

Book now

Here's the Firebrand Training review section. Since 2001 we've trained exactly 72,589 students and asked them all to review our Accelerated Learning. Currently, 96.77% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.


"I've been in many other training centers before, but Firebrand is different and professional. where you can get knowledge and have good times. The instructor was very good and has provided valuable experience that you can gain understandable and clear concepts about network security. I will come back again to Firebrand."
Anonymous. (2019.2.11 to 2019.2.14)

"The instructor was very good, he explains things in an easy to understand manner and the facilities are very good."
Peter Tanser. (2019.2.11 to 2019.2.14)

"The best way to take these exams/courses. Hard work but means you don't have to stress for weeks/months at a time."
John Noonan, Storm Technologies Ltd. (2018.10.30 to 2018.11.2)

"The best way to take these exams/courses. Hard work but means you dont have to stress for weeks/months at a time."
John Noonan, Storm Technologies Ltd. (2018.10.30 to 2018.11.2)

"Good environment to work in, but be prepared to work hard when you get here."
Mark Stevens, JEM Solutions IT Ltd.. (2018.5.8 to 2018.5.11)

Latest Reviews from our students