Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS)

Print Friendly, PDF & Email
Introduction

Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) Course Description

In this Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course, you will learn about basic next-generation intrusion prevention system (NGIPS) and firewall security concepts. You will learn about the Cisco Firepower system, its powerful features:

• In-depth event analysis
• NGIPS tuning and configuration
• Snort® rules language

You’ll also become familiar with the latest platform features: file and malware inspection, security intelligence, domain awareness, and more.

The Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course begins by introducing the system architecture, the latest major features, and the role of policies in implementing the solution. You learn how to manage deployed devices and perform basic Cisco Firepower discovery. You’ll be able to describe how to use and configure Cisco NGIPS technology, including application control, security intelligence, firewall, and network-based malware and file controls.

You’ll learn how to take advantage of powerful tools so you can carry out more efficient event analysis, including the detection of file type and network-based malware. And you’ll learn how to properly tune systems for better performance and greater network intelligence. The course finishes with system and user administration tasks.

This Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course combines lecture materials and hands-on labs that will give you practice in deploying and managing the Cisco Firepower system.

Duration: 5 days

Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) Related Courses

Customize It!

• We can adapt this Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course to your group’s background and work requirements at little to no added cost.
• If you are familiar with some aspects of this Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course in manner understandable to lay audiences.

Audience / Target Group

This course is designed for technical professionals who need to know how to deploy and/or manage a Cisco FireSIGHT system in a network environment. The primary audience for this Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course includes:

• Security administrators
• Security consultants
• Network administrators
• System engineers
• Technical support personnel
• Channel partners and resellers

Prerequisites

• Technical understanding of TCP/IP networking and network architecture
• Basic familiarity with the concepts of intrusion detection systems (IDS) and IPS
• TCP/IP Networking
• Security+ Certification Prep Course

Objectives:

After completing this Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training v3.0 (SSFIPS) course, attendees will be able to:

• Key features and concepts of NGIPS and firewall security
• Cisco Firepower system components, features, and high-level implementation steps
• Cisco Firepower Management Center GUI and understand the role of policies when configuring the Cisco Firepower system
• Deploy and manage Cisco Firepower managed devices
• Perform an initial Cisco Firepower discovery and basic event analysis to identify hosts, applications, and services
• Create the objects required as prerequisites to implementing access control policies
• Features and functionality of access control policies and the implementation procedures
• Concepts and implementation procedures of security intelligence
• Concepts and implementation procedures of file control and advanced malware protection
• Use Cisco Firepower recommendations to implement IPS policies
• Use of network analysis policies and the role of preprocessor technology in processing network traffic for NGIPS inspection
• Demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center

Securing Cisco Networks with Sourcefire FireSIGHT Intrusion Prevention System Training -Course Content:

1. Security Technology Overview
2. Cisco Firepower System Components and Features
3. Introducing the Cisco Firepower Management Center
4. Deploying Cisco Firepower Managed Devices
5. Cisco Firepower Discovery
6. Access Control Policy Prerequisites
7. Implementing Access Control Policies
8. Security Intelligence
9. File Control and Advanced Malware Protection
10. Next-Generation Intrusion Prevention Systems
11. Network Analysis Policies
12. Detailed Analysis Techniques
13. System Administration

Labs

Lab 1: Connect to the Lab Environment
Lab 2: Navigate the Cisco Firepower Management Center GUI
Lab 3: Device Management
Lab 4: Cisco Firepower Discovery
Lab 5: Access Control Policy Prerequisites
Lab 6: Implementing an Access Control Policy
Lab 7: Security Intelligence
Lab 8: File Control and Advanced Malware Protection
Lab 9: Implementing NGIPS
Lab 10: Detailed Analysis
Lab 11: System Administration

Request More Information

Time Frame: 0-3 Months4-12 Months

No Comments Yet.

Leave a comment

0