Cisco/CCIE Security Lab (v6.0)/352-001 CCDE (LAB)

CCIE Security Lab (v6.0) Certification Training Course Overview

Introducing the new CCIE Security certification

Distinguish yourself as a leader in Security technologies

Achieving CCIE Security certification proves your skills with complex security solutions. To earn CCIE Security certification, you pass two exams: a qualifying exam that covers core security technologies, and a hands-on lab exam that covers security technologies and solutions through the entire network lifecycle, from designing and deploying to operating and optimizing.

Exams and recommended training

To earn CCIE Security, you pass two exams: a qualifying exam and hands-on lab exam.

Step 1: Pass the qualifying exam

Implementing and Operating Cisco Security Core Technologies (SCOR 350-701)

The qualifying exam, Implementing and Operating Cisco Security Core Technologies, focuses on your knowledge of data center infrastructure.

The qualifying exam earns a specialist certification, so you can get recognized for your accomplishments along the way.

Recommended training: Implementing and Operating Cisco Security Core Technologies (SCOR)

Step 2: Pass the lab exam

CCIE Security v6.0

First date to test: April 27, 2020

This 8-hour hands-on lab exam covers the end-to-end lifecycle of complex security solutions and technologies, from designing and deploying to operating and optimizing.

 

 

This course prepares you for Exam 352-001 CCDE (LAB). Test your current knowledge Qubits42

CCIE Security Lab (v6.0) (280 Hours) Download Course Contents

Live Virtual Classroom
Group Training 21300
29 Nov - 02 Jan GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)

13 Dec - 16 Jan 09:00 AM - 05:00 PM CST
(8 Hours/Day)

1-on-1 Training (GTR) 24500
4 Hours
8 Hours
Week Days
Weekend

Start Time : At any time

12 AM
12 PM

GTR=Guaranteed to Run
Classroom Training (Available: London, Dubai, India, Sydney, Vancouver)
Duration : On Request
Fee : On Request
On Request
Special Solutions for Corporate Clients! Click here
Hire Our Trainers! Click here

Course Modules

Module 1: Perimeter Security and Intrusion Prevention
  • Deployment modes on Cisco ASA and Cisco FTD
  • Firewall features on Cisco ASA and Cisco FTD
  • Security features on Cisco IOS/IOS-X
  • Cisco Firepower Management Center (FMC) features
  • NGIPS deployment modes
  • Next Generation Firewall (NGFW) features
  • Detect, and mitigate common types of attacks
  • Clustering/HA features on Cisco ASA and Cisco FTD
  • Policies and rules for traffic control on Cisco ASA and Cisco FTD
  • Routing protocols security on Cisco IOS, Cisco ASA and Cisco FTD
  • Network connectivity through Cisco ASA and Cisco FTD
  • Correlation and remediation rules on Cisco FMC
Module 2: Secure Connectivity and Segmentation
  • AnyConnect client-based remote access VPN technologies on Cisco ASA, Cisco FTD, and Cisco Routers.
  • Cisco IOS CA for VPN authentication
  • FlexVPN, DMVPN, and IPsec L2L Tunnels
  • Uplink and downlink MACsec (802.1AE)
  • VPN high availability using
  • Infrastructure segmentation methods
  • Micro-segmentation with Cisco TrustSec using SGT and SXP
Module 3: Infrastructure Security
  • Device hardening techniques and control plane protection methods
  • Management plane protection techniques
  • Data plane protection techniques
  • Layer 2 security techniques
  • Wireless security technologies
  • Monitoring protocols
  • Security features to comply with organizational security policies, procedures, and standards BCP 38
  • Cisco SAFE model to validate network security design and to identify threats to different Places in the Network (PINs)
  • Interaction with network devices through APIs using basic Python scripts
  • Cisco DNAC Northbound APIs use cases
Module 4: Identity Management, Information Exchange, and Access Control
  • ISE scalability using multiple nodes and personas.
  • Cisco switches and Cisco Wireless LAN Controllers for network access AAA with ISE.
  • Cisco devices for administrative access with ISE
  • AAA for network access with 802.1X and MAB using ISE.
  • Guest lifecycle management using ISE and Cisco Wireless LAN controllers
  • BYOD on-boarding and network access flows
  • ISE integration with external identity sources
  • Provisioning of AnyConnect with ISE and ASA
  • Posture assessment with ISE
  • Endpoint profiling using ISE and Cisco network infrastructure including device sensor
  • Integration of MDM with ISE
  • Certificate-based authentication using ISE
  • Authentication methods
  • Identity mapping on ASA, ISE, WSA, and FTD
  • pxGrid integration between security devices WSA, ISE, and Cisco FMC
  • Integration of ISE with multi-factor authentication
  • Access control and single sign-on using Cisco DUO security technology
Module 5: Advanced Threat Protection and Content Security
  • AMP for networks, AMP for endpoints, and AMP for content security (ESA, and WSA)
  • Detect, analyze, and mitigate malware incidents
  • Perform packet capture and analysis using Wireshark, tcpdump, SPAN, ERSPAN, and RSPAN
  • DNS layer security, intelligent proxy, and user identification using Cisco Umbrella
  • Web filtering, user identification, and Application Visibility and Control (AVC) on Cisco FTD and WSA.
  • WCCP redirection on Cisco devices
  • Email security features
  • HTTPS decryption and inspection on Cisco FTD, WSA and Umbrella
  • SMA for centralized content security management
  • Cisco advanced threat solutions and their integration: Stealthwatch, FMC, AMP, Cognitive Threat Analytics (CTA), Threat Grid, Encrypted Traffic Analytics (ETA), WSA, SMA, CTR, and Umbrella
Download Course Contents

Request More Information

Course Prerequisites

Prerequisites

There are no formal prerequisites for CCIE Security, but you should have a good understanding of the exam topics before taking the exam.

CCIE candidates are recommended to have five to seven years of experience with designing, deploying, operating and optimizing security technologies and solutions prior to taking the exam.

 

Benefits

Take your place as a technical leader in the fast-paced world of security

Combine your technical expertise with design skills to position your organization for digital transformation

Distinguish yourself as the best of the best from deploying to operating and optimizing complex security solutions

Add security automation skills to your areas of expertise

Earn a Specialist certification for passing the qualifying exam

Put that CCIE certification badge on all your social media profiles