Course Description
Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0
The Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0 course shows you how to deploy and use Cisco Firepower® Next-Generation Intrusion Prevention System (NGIPS). This hands-on course gives you the knowledge and skills to use the platform features and includes firewall security concepts, platform architecture and key features; in-depth event analysis including detection of network-based malware and file type, NGIPS tuning and configuration.
This course is one of the concentration electives you can take to certify for the CCNP Security Certification. To complete CCNP Security you will need to pass the Implementing and Operating Cisco Security Core Technologies (350-701 SCOR) exam or its equivalent.
This course prepares you for the Cisco Certified Specialist - Network Security Firepower Certification.
Required exam and recommended training
300-710 SNCF
- Securing Networks with Firepower Next-Generation Firewall (SSNGFW)
- Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS)
Certification track - CCNP Security Certification
SCOR (Core) + SSNGFW + SSFIPS (Concentration electives) = CCNP Security Certification
This course also earns you 32 Continuing Education (CE) credits towards recertification.
Learning Objectives
- Describe the components of Cisco Firepower Threat Defense and the managed device registration process
- Detail Next-Generation Firewalls (NGFW) traffic control and configure the Cisco Firepower system for network discovery
- Implement access control policies and describe access control policy advanced features
- Configure security intelligences features and the Advanced Malware Protection (AMP) for Networks implementation procedure for file control and advanced malware protection
- Implement and manage intrusion and network analysis policies for NGIPS inspection
- Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center
- Integrate the Cisco Firepower Management Center with an external logging destination
- Describe and demonstrate the external alerting options available to Cisco Firepower Management Center and configure a correlation policy
- Describe key Cisco Firepower Management Center software update and user account management features
- Identify commonly misconfigured settings within the Cisco Firepower Management Center and use basic commands to troubleshoot a Cisco Firepower Threat Defense device
Prerequisites
- Technical understanding of TCP/IP networking and network architecture
- Basic familiarity with the concepts of Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS)
Labs
- Initial Device Setup
- Device Management
- Configuring Network Discovery
- Implementing and Access Control Policy
- Implementing Security Intelligence
- File Control and Advanced Malware Protection
- Implementing NGIPS
- Customizing a Network Analysis Policy
- Detailed Analysis
- Configuring Cisco Firepower Platform Integration with Splunk
- Configuring Alerting and Event Correlation
- System Administration
- Cisco Firepower Troubleshooting
Course Information
Length: 5 day
Format: Lecture and Lab
Delivery Method: Onsite
Max. Capacity: 12
Schedule
Contact Us
Do you have more questions? We're delighted to assist you!
Related Training
Securing Networks with Firepower Next Generation Firewall (SSNGFW)
Who Should Attend
Security administrators, Security consultants, Network administrators, System engineers, Technical support personnel, Channel partners and resellers
