Designing Cisco Security Infrastructure

Designing Cisco Security InfrastructureSDSICICiscoCI-SDSI1.0<ul> <li>Identify and explain the fundamental concepts of security architecture and how they support the design, building, and maintenance of a secure infrastructure</li><li>Identify the layers of security infrastructure, core security technologies, and infrastructure concepts</li><li>Explain how security designs principles contribute to secure infrastructure</li><li>Identify and discuss security design and management frameworks that can be used for infrastructure security design</li><li>Explain the importance of and methods for enforcement of regulatory compliance in security design</li><li>Identify tools that enable detection and response to infrastructure security incidents</li><li>Explain various strategies that can be implemented to modify traditional security architectures to meet the technical requirements of modern enterprise networks</li><li>Implement secure network access methods, such as 802.1X, MAC Authentication Bypass (MAB), and web-based authentication</li><li>Describe security technologies that can be applied to enterprise Wide Area Network (WAN) connections</li><li>Compare methods to secure network management and control plane traffic</li><li>Compare the differences between traditional firewalls and next-gen firewalls (NGFWs) and identify the advanced features that NGFWs provide</li><li>Explain how web application firewalls (WAFs) secure web applications from threats</li><li>Describe the key features and best practices for deploying intrusion detection system (IDS) and intrusion prevention system (IPS) as part of the enterprise infrastructure security design</li><li>Explain how endpoints and services in cloud-native or microservice environments can be protected with host-based or distributed firewalls</li><li>Discuss security technologies that address application data and data that is in transit</li><li>Identify several security solutions for cloud-native applications, microservices, and containers</li><li>Explain how technology advancements allow for improvements in today’s infrastructure security</li><li>Identify tools that enable detection and response to infrastructure security incidents</li><li>Describe frameworks and controls to access and mitigate security risks for infrastructure</li><li>Explain how to make security adjustments following a security incident</li><li>Identify DevSecOps integrations that improve security management and response</li><li>Discuss how to ensure that automated services are secure</li><li>Discuss how AI can aid in threat detection and response</li></ul><p>There are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are: </p> <ul> <li>Cisco CCNP Security or equivalent knowledge</li><li>Familiarity with Microsoft Windows Operating Systems</li><li>Familiarity with the Cisco Security portfolio</li></ul><p>These skills can be found in the following Cisco Learning Offerings: </p> <ul> <li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-scor"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Implementing and Operating Cisco Security Core Technologies <span class="fl-prod-pcode">(SCOR)</span></a></span></li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-sfwipf"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Fundamentals of Cisco Firewall Threat Defense and Intrusion Prevention <span class="fl-prod-pcode">(SFWIPF)</span></a></span></li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-sise"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Implementing and Configuring Cisco Identity Services Engine <span class="fl-prod-pcode">(SISE)</span></a></span></li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-scazt"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Designing and Implementing Secure Cloud Access for Users and Endpoints <span class="fl-prod-pcode">(SCAZT)</span></a></span></li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-sfwipa"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Advanced Techniques for Cisco Firewall Threat Defense and Intrusion Prevention <span class="fl-prod-pcode">(SFWIPA)</span></a></span></li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-svpn"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Implementing Secure Solutions with Virtual Private Networks <span class="fl-prod-pcode">(SVPN)</span></a></span></li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-csau"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Introducing Automation for Cisco Solutions <span class="fl-prod-pcode">(CSAU)</span></a></span></li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-sesa"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Securing Your Email with Cisco IronPort C-Series <span class="fl-prod-pcode">(SESA)</span></a></span></li><li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/cisco-swsa"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Securing the Web with Cisco Web Security Appliance <span class="fl-prod-pcode">(SWSA)</span></a></span></li></ul><ul> <li>Cisco and Partner’s Systems Engineers</li><li>Customer Network & Infrastructure Engineers</li><li>Customer Security/NOC Engineers</li></ul><ul> <li>Definition and Purpose of Security Architecture</li><li>Components of Security Infrastructure</li><li>Security Design Principles</li><li>Security and Design Frameworks</li><li>Compliance and Regulatory Requirements</li><li>Security Approaches to Protect Against Threats</li><li>Modify the Security Architecture to Meet Technical Requirements</li><li>Network Access Security</li><li>VPN and Tunneling Solutions</li><li>Secure Infrastructure Management and Control Planes</li><li>Nextgen Firewalls</li><li>Web Application Firewall (WAF)</li><li>IPS/IDS Deployment</li><li>Host-Based Firewalls and Distributed Firewalls</li><li>Security Solutions Based on Application and Flow Data</li><li>Security for Cloud-Native Applications, Microservices, and Containers</li><li>Emerging Technologies in Application Security</li><li>SOC Tools for Incident Handling and Response</li><li>Modify Design to Mitigate Risk</li><li>Incident-Driven Security Adjustments</li><li>DevSecOps Integration</li><li>Secure Automated Workflows and Pipelines</li><li>AI’s Role in Securing Infrastructure</li></ul>- Identify and explain the fundamental concepts of security architecture and how they support the design, building, and maintenance of a secure infrastructure - Identify the layers of security infrastructure, core security technologies, and infrastructure concepts - Explain how security designs principles contribute to secure infrastructure - Identify and discuss security design and management frameworks that can be used for infrastructure security design - Explain the importance of and methods for enforcement of regulatory compliance in security design - Identify tools that enable detection and response to infrastructure security incidents - Explain various strategies that can be implemented to modify traditional security architectures to meet the technical requirements of modern enterprise networks - Implement secure network access methods, such as 802.1X, MAC Authentication Bypass (MAB), and web-based authentication - Describe security technologies that can be applied to enterprise Wide Area Network (WAN) connections - Compare methods to secure network management and control plane traffic - Compare the differences between traditional firewalls and next-gen firewalls (NGFWs) and identify the advanced features that NGFWs provide - Explain how web application firewalls (WAFs) secure web applications from threats - Describe the key features and best practices for deploying intrusion detection system (IDS) and intrusion prevention system (IPS) as part of the enterprise infrastructure security design - Explain how endpoints and services in cloud-native or microservice environments can be protected with host-based or distributed firewalls - Discuss security technologies that address application data and data that is in transit - Identify several security solutions for cloud-native applications, microservices, and containers - Explain how technology advancements allow for improvements in today’s infrastructure security - Identify tools that enable detection and response to infrastructure security incidents - Describe frameworks and controls to access and mitigate security risks for infrastructure - Explain how to make security adjustments following a security incident - Identify DevSecOps integrations that improve security management and response - Discuss how to ensure that automated services are secure - Discuss how AI can aid in threat detection and responseThere are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are: - Cisco CCNP Security or equivalent knowledge - Familiarity with Microsoft Windows Operating Systems - Familiarity with the Cisco Security portfolio These skills can be found in the following Cisco Learning Offerings: - Implementing and Operating Cisco Security Core Technologies (SCOR) - Fundamentals of Cisco Firewall Threat Defense and Intrusion Prevention (SFWIPF) - Implementing and Configuring Cisco Identity Services Engine (SISE) - Designing and Implementing Secure Cloud Access for Users and Endpoints (SCAZT) - Advanced Techniques for Cisco Firewall Threat Defense and Intrusion Prevention (SFWIPA) - Implementing Secure Solutions with Virtual Private Networks (SVPN) - Introducing Automation for Cisco Solutions (CSAU) - Securing Your Email with Cisco IronPort C-Series (SESA) - Securing the Web with Cisco Web Security Appliance (SWSA)- Cisco and Partner’s Systems Engineers - Customer Network & Infrastructure Engineers - Customer Security/NOC Engineers- Definition and Purpose of Security Architecture - Components of Security Infrastructure - Security Design Principles - Security and Design Frameworks - Compliance and Regulatory Requirements - Security Approaches to Protect Against Threats - Modify the Security Architecture to Meet Technical Requirements - Network Access Security - VPN and Tunneling Solutions - Secure Infrastructure Management and Control Planes - Nextgen Firewalls - Web Application Firewall (WAF) - IPS/IDS Deployment - Host-Based Firewalls and Distributed Firewalls - Security Solutions Based on Application and Flow Data - Security for Cloud-Native Applications, Microservices, and Containers - Emerging Technologies in Application Security - SOC Tools for Incident Handling and Response - Modify Design to Mitigate Risk - Incident-Driven Security Adjustments - DevSecOps Integration - Secure Automated Workflows and Pipelines - AI’s Role in Securing Infrastructure5 days3305.004400.006070.002990.003495.004400.0044.0044.0044.0044.0044.0044.0044.0044.0044.0044.0044.0044.00