Securing Email with Cisco Email Security Appliance (SESA)

Course Description

Securing Email with Cisco Email Security Appliance (SESA)

The Securing Email with Cisco Email Security Appliance (SESA) v3.1 course shows you how to deploy and use Cisco® Email Security Appliance to establish protection for your email systems against phishing, business email compromise, and ransomware, and to help streamline email security policy management.

Securing Email with Cisco Email Security Appliance (SESA) is one of the concentration electives you can take to certify for the CCNP Security Certification. To complete CCNP Security you will need to pass the Implementing and Operating Cisco Security Core Technologies (350-701 SCOR) exam or its equivalent.

This course prepares you for the Cisco Certified Specialist - Email Content Security Certification.  

Required Exam and recommended training
300-720 SESA Securing Email with Cisco Web Email Security Appliance (SESA)

Certification track - CCNP Security Certification
​SCOR (Core) + SESA (Concentration elective) = CCNP Security Certification

Who Should Attend

  • Describe the Cisco Email Security Appliance Administer the Cisco Email Security Appliance Control sender and recipient domains
  • Control spam with Talos SenderBase and anti-spam Use anti-virus and outbreak filters
  • Use mail policies
  • Use content filters
  • Use message filters to enforce email policies Prevent data loss
  • Perform LDAP queries
  • Authenticate SMTP sessions
  • Authenticate email
  • Encrypt email
  • Use system quarantines and delivery methods Perform centralized management using clusters Test and troubleshoot

Who Should Attend

  • Network or security technicians, administrators, engineers or managers responsible for web and email security
  • Security architects and system designers
  • Network administrators and operations engineers
  • Cisco partners, resellers, or employees responsible for supporting Cisco email security solutions
  • Cisco channel partners who are seeking to maintain, optimize, and troubleshoot a Cisco ESA
  • Channel partner field engineers who are seeking to be trained and certified on the Email Security for Field Engineer (700-280 ESFE) exam


A student must possess one or more of the following basic technical competencies

  • Cisco certification (Cisco CCENT certification or higher)
  • Relevant industry certification, such as (ISC)2
  • Cisco Networking Academy letter of completion (CCNA 1 and CCNA 2)
  • Windows expertise: Microsoft (Microsoft Specialist, MCSA, MCSE), CompTIA (A+, Network+, Server+)

The knowledge and skills that a student must have before attending this course are as follows:

  • TCP/IP services, including DNS, SSH, FTP, SNMP, HTTP, and HTTPs, is assumed
  • Experience with IP routing is assumed


  1. Verify and Test Cisco ESA Configuration
  2. Perform Basic Administration
  3. Advanced Malware in Attachments (Macro Detection)
  4. Protect against Malicious or Undesirable URLs Beneath Shortened URLs
  5. Protect Against Malicious or Undesirable URLs Inside Attachments
  6. Intelligently Handle Unscannable Messages
  7. Leverage AMP Cloud Intelligence Via Pre-Classification Enhancement
  8. Integrate Cisco ESA with AMP Console
  9. Prevent Threats with Anti-Virus Filters
  10. Applying Content and Outbreak Filters
  11. Configure attachment Scanning
  12. Configure Outbound Data Loss Prevention
  13. Integrate Cisco ESA with LDAP and Enable the LDAP Accept Query
  14. DomainKeys Identified Mail (DKIM)
  15. Sender Policy Framework (SPF)
  16. Forged Email Detection
  17. Configure the Cisco SMA for Tracking and Reporting

Course Information

Length: 4 day

Format: Lecture and Lab

Delivery Method: Virtual / Onsite

Max. Capacity: 16


Contact Us

Do you have more questions? We're delighted to assist you!