Securing Cloud Deployments with Cisco Technologies (SECCLD)


Course Description

SECCLD - Securing Cloud Deployments with Cisco Technologies

The Securing Cloud Deployments with Cisco Technologies (SECCLD) v1.0 course shows you how to implement Cisco® cloud security solutions to secure access to the cloud, workloads in the cloud, and Software as a Service (SaaS) user accounts, applications, and data. Through expert instruction and hands-on labs, you’ll learn a comprehensive set of skills and technologies including: how to use key Cisco cloud security solutions; detect suspicious traffic flows, policy violations, and compromised devices; implement security controls for cloud environments; and implement cloud security management. This course covers usage of Cisco Cloudlock, Cisco Umbrella™, Cisco Cloud Email Security, Cisco Advanced Malware Protection (AMP) for Endpoints, Cisco Stealthwatch® Cloud and Enterprise, Cisco Firepower® NGFW (next-generation firewall), and more.
 

Learning Objectives

  • Contrast the various cloud service and deployment models
  • Implement the Cisco Security Solution for SaaS using Cisco Cloudlock Micro Services
  • Deploy cloud security solutions using Cisco AMP for Endpoints, Cisco Umbrella, and Cisco Cloud Email Security
  • Define Cisco cloud security solutions for protection and visibility using Cisco virtual appliances and Cisco Stealthwatch Cloud
  • Describe the network as a sensor and enforcer using Cisco Identity Services Engine (ISE), Cisco Stealthwatch Enterprise, and Cisco TrustSec®
  • Implement Cisco Firepower NGFW Virtual (NGFWv) and Cisco Stealthwatch Cloud to provide protection and visibility in AWS environments
  • Explain how to protect the cloud management infrastructure by using specific examples, defined best practices, and AWS reporting capabilities

Prerequisites

To fully benefit from this course, you should have completed the following course or obtained the equivalent knowledge and skills:

  • Knowledge of cloud computing and virtualization software basics
  • Ability to perform basic UNIX-like OS commands
  • Cisco CCNP® security knowledge or understanding of the following topic areas:
TOPIC AREAS AVAILABLE IN THESE COURSES
Cisco Adaptive Security Appliance (ASA) and Adaptive Security Virtual Appliance (ASAv) deployment, and Cisco IOS® Flexible NetFlow operations
 
Implementing Cisco Edge Network Security Solutions (SENSS)
Cisco NGFW (Cisco Firepower Threat Defense [FTD]), Cisco Firepower, and Cisco Firepower Management Center (FMC) deployment
 
Implementing Cisco Threat Control Solutions (SITCS)
Cisco Content Security operations including Cisco Web Security Appliance (WSA)/ Cisco Email Security Appliance (ESA)/Cisco Cloud Web Security (CWS)
 
 
Cisco AMP for network and endpoints deployment
 
Cisco ISE operations and Cisco TrustSec architecture
Implementing Cisco Secure Access Solutions (SISAS)
VPN operation
Implementing Cisco Secure Mobility Solutions (SIMOS)


 

 

 

 

 

 

 

 

 

 

 

 

Labs

  1. Explore the Cisco Cloudlock Dashboard and User Security
  2. Explore Cisco Cloudlock Application and Data Security
  3. Explore Cisco AMP Endpoints
  4. Perform Endpoint Analysis Using the AMP Endpoint Console
  5. Examine the Umbrella Dashboard
  6. Examine Cisco Umbrella Investigate
  7. Explore Email Ransomware Protection by Cisco Cloud Email Security
  8. DNS Ransomware Protection by Cisco Umbrella
  9. Explore File Ransomware Protection by Cisco AMP for Endpoints
  10. Explore a Ransomware Execution Example
  11. Implement Cisco ASAv in ESXi
  12. Configure and Test Basic Cisco ASAv Network Address Translation (NAT)/Access Control List (ACL) Functions
  13. Explore Cisco Stealthwatch Cloud
  14. Explore Stealthwatch Cloud Alerts Settings, Watchlists, and Sensors
  15. Explore the Network as the Sensor and Enforcer
  16. Explore Cisco Stealthwatch Enterprise
  17. Deploy NGFWv and FMCv in AWS
  18. Troubleshoot FTD and FMC in AWS – Scenario 1
  19. Troubleshoot FTD and FMC in AWS – Scenario 2
  20. Troubleshoot FTD and FMC in AWS – Scenario 3
  21. Explore AWS Reporting Capabilities

For more detailed information about this course, please click here

Course Information

Length: 4 day

Format: Lecture and Lab

Delivery Method: Virtual / Onsite

Max. Capacity: 12



Schedule




Related Training


Implementing Cisco Edge Network Security Solutions (SENSS)
Implementing Cisco Secure Mobility Solutions (SIMOS)
Implementing Cisco Secure Access Solutions (SISAS)
Implementing Cisco Threat Control Solutions (SITCS)


Who Should Attend

Security architects, Cloud architects, Security engineers, Cloud engineers, System engineers, Cisco integrators and partners