Students who attend this advanced course must have experience in configuring Cisco IOS software and have met the following prerequisites: - Certification as a CCNA or the equivalent knowledge. - Basic knowledge of the Windows operating system - Familiarity with the networking and security terms and concepts (the concepts are learned in prerequisite training or by reading industry publications)  

Previous name - SECUR v1.1 SNRS 1.0 is a 5 day, leader-led, lab-intensive course, which will be delivered by HBFITES. This course is aimed at providing network specialists with the knowledge and skills needed to secure Cisco IOS router and switch networks. Successful graduates will be able to secure the network environment using existing Cisco IOS and CatOS security features, configure the three primary components of the Cisco IOS Firewall Feature set (context-based access control (CBAC), intrusion prevention, and authentication proxy), implement secure tunnels(VPNs) using IPSec technology, and implement basic access switch security. In addition, they will complete a security audit using functions embedded in Cisco Security Device Manager

There are 7 modules in SNRS v1.0 covering topics that include: Module 1 - Cisco Secure ACS for Windows configuration Module 2 - Configuring Cisco IOS Security Feature Set including IOS Firewall CBAC(Context-Based Access Control), Authentication Proxy and IPS(Intrusion Prevention System) Module 3 - Layer 2 Security, including Cisco IBNS(Identity Based Network Services), and 802.1x Port-Based Authentication Module 4 - Building Cisco IOS-based VPNs Using Cisco Routers and Pre-Shared Keys Module 5 - Building Cisco IOS-based VPNs Using Cisco Routers and Certificate Authorities Module 6 - Cisco IOS Remote Access Using Cisco Easy VPN Module 7 - Cisco Security Device Manager(SDM).

Students who attend this advanced course must have experience in configuring Cisco IOS software and have met the following prerequisites: - Certification as a CCNA or the equivalent knowledge. - Basic knowledge of the Windows operating system - Familiarity with the networking and security terms and concepts (the concepts are learned in prerequisite training or by reading industry publications)

The SNPA course is a five-day, leader-led, lab-intensive course. The course takes a task-oriented approach to teaching the skills to configure, operate, and manage Cisco PIX 500 Series Security Appliances and Cisco ASA 5500 Series Adaptive Security Appliances.

1. Course Introduction 2. Cisco Security Appliance Technology and Features 3. Cisco PIX Security Appliance and ASA Adaptive Security Appliance Families 4. Getting Started with Cisco Security Appliances 5. Translations and Connections 6. Access Control Lists and Content Filtering 7. Object Grouping 8. Authentication, Authorization, and Accounting 9. Switching and Routing 10. Modular Policy Framework 11. Advanced Protocol Handling 12. Virtual Private Network Configuration 13. Configuring Security Appliance Remote Access Using Cisco Easy VPN 14. Configuring ASA for WebVPN 15. Configuring Transparent Firewall 16. Configuring Security Contexts 17. Failover 18. Cisco Security Appliance Device Manager 19. AIP-Security Services Module-Getting Started 20. Managing Security Appliances 21. Configuring PIX Security Appliance Remote Access Using Cisco Easy VPN 22.Firewall Services Module

Students who attend this advanced course must have experience in configuring Cisco IOS software and have met the following prerequisites: Certification as a CCNA or the equivalent knowledge. Basic knowledge of the Windows operating system Familiarity with the networking and security terms and concepts (the concepts are learned in prerequisite training or by reading industry publications)

Given an example of Cisco's defense in depth, the learner will explain how Cisco IPS protects network devices from attacks. Given an IPS sensor appliance, the learner will install the appliance in the network and initialize it. Use IDM to configure basic sensor settings. The learner will use IDM to configure built-in signatures to meet the requirements of a given security policy. The learner will describe the functions of signature engines and their parameters. The learner will use IDM to tune and create signatures to meet the requirements of a given security policy. Given a scenario, the learner will use IDM to tune a sensor to work optimally in the network. Given a scenario, the learner will use the Monitoring Center for Security and Cisco Threat Response to maximize alarm management efficiency. The learner will explain blocking concepts and use IDM to configure blocking for a given scenario. The learner will install the NM-CIDS in a router and initialize it. The learner will install the module in a Cisco Catalyst 6500 Switch and initialize it. The learner will use a Cisco Catalyst 6500 Switch to capture network traffic for intrusion prevention analysis. The learner will install and recover the sensor software image and perform service pack and signature updates. The learner will use the CLI and IDM to verify system configuration.

Lesson 1:Course Introduction Lesson 2:Security Fundamentals Lesson 3:Intrusion Prevention Overview Lesson 4:Getting Started with the IDS Command Line Interface Lesson 5:Using IDM Lesson 6:Basic Sensor Configuration Lesson 7:Cisco Intrusion Detection System Alarms and Signatures Lesson 8:Signature Engines Lesson 9:Signature Configuration Lesson 10:Sensor Tuning Lesson 11:Alarm Monitoring and Management Lesson 12:Blocking Configuration Lesson 13:Cisco Intrusion Detection System Network Module Lesson 14:Intrusion Detection System Module Configuration Lesson 15:Capturing Network Traffic for Intrusion Detection Systems Lesson 16:Sensor Maintenance Lesson 17:Verifying System Configuration

Students who attend this course must have experience in configuring Cisco IOS software and have met the following prerequisites: - Certification as a CCNA or the equivalent knowledge. - Basic knowledge of the Windows operating system - Familiarity with the networking and security terms and concepts (the concepts are learned in prerequisite training or by reading industry publications

SND v1.0 is a five-day, leader-led course which will be delivered by HBFITES. This course is an entry level network security course offered as a pre-requisite to the Cisco Qualified Specialist curriculum. It provides an opportunity to learn about a broad range of the components embedded in Cisco SAFE. Learners will recognize threats and vulnerabilities to networks and learn how to implement basic mitigation measures. The course provides an introduction to the Cisco products and solutions that form the basis of the Cisco security portfolio. Learners will be able to perform basic task to secure network devices at Layers 2 and 3 using command line interface and web-based GUIs. Devices include routers, switches, access control servers, IPS sensors and VPN Concentrators.

Module 1 Securing a Network with Cisco SAFE Module 2 Securing the Perimeter Module 3 Cisco Security Appliances Module 4 Building IPSec VPNs Module 5 Securing Networks with Host- and Network-based IPS Module 6 Securing Access with Cisco Secure ACS Module 7 Managing Network Security