Securing Cloud Deployments with Cisco Technologies (SECCLD) v1.0 Training

Download Course Contents

Securing Cloud Deployments with Cisco Technologies (SECCLD) v1.0 Course Overview

The Securing Cloud Deployments with Cisco Technologies (SECCLD) v1.0 course shows you how to implement Cisco® cloud security solutions to secure access to the cloud, workloads in the cloud, and Software as a Service (SaaS) user accounts, applications, and data. Through expert instruction and hands-on labs, you’ll learn a comprehensive set of skills and technologies including: how to use key Cisco cloud security solutions; detect suspicious traffic flows, policy violations, and compromised devices; implement security controls for cloud environments; and implement cloud security management. This course covers usage of Cisco Cloudlock, Cisco Umbrella™, Cisco Cloud Email Security, Cisco Advanced Malware Protection (AMP) for Endpoints, Cisco Stealthwatch® Cloud and Enterprise, Cisco Firepower® NGFW (next-generation firewall), and more.

Course details

Objectives

After taking this course, you should be able to:

  • Contrast the various cloud service and deployment models
  • Implement the Cisco Security Solution for SaaS using Cisco Cloudlock Micro Services
  • Deploy cloud security solutions using Cisco AMP for Endpoints, Cisco Umbrella, and Cisco Cloud Email Security
  • Define Cisco cloud security solutions for protection and visibility using Cisco virtual appliances and Cisco Stealthwatch Cloud
  • Describe the network as a sensor and enforcer using Cisco Identity Services Engine (ISE), Cisco Stealthwatch Enterprise, and Cisco TrustSec®
  • Implement Cisco Firepower NGFW Virtual (NGFWv) and Cisco Stealthwatch Cloud to provide protection and visibility in AWS environments
  • Explain how to protect the cloud management infrastructure by using specific examples, defined best practices, and AWS reporting capabilities

Outline

  • Introducing the Cloud and Cloud Security
    • Describe the Evolution of Cloud Computing
    • Explain the Cloud Service Models
    • Explore the Security Responsibilities Within the Infrastructure as a Service (IaaS) Service Model
    • Explore the Security Responsibilities Within the Platform as a Service (PaaS) Service Model
    • Explore the Security Responsibilities Within the SaaS Service Model
    • Describe Cloud Deployment Models
    • Describe Cloud Security Basics
  • Implementing the Cisco Security Solution for SaaS Access Control
    • Explore Security Challenges for Customers Using SaaS
    • Describe User and Entity Behavior Analytics, Data Loss Prevention (DLP), and Apps Firewall
    • Describe Cloud Access Security Broker (CASB)
    • Describe Cisco CloudLock as the CASB
    • Describe OAuth and OAuth Attacks
  • Deploying Cisco Cloud-Based Security Solutions for Endpoints and Content Security
    • Describe Cisco Cloud Security Solutions for Endpoints
    • Describe AMP for Endpoints Architecture
    • Describe Cisco Umbrella
    • Describe Cisco Cloud Email Security
    • Design Comprehensive Endpoint Security
  • Introducing Cisco Security Solutions for Cloud Protection and Visibility
    • Describe Network Function Virtualization (NFV)
    • Describe Cisco Secure Architectures for Enterprises (Cisco SAFE)
    • Describe Cisco NGFWv/Cisco Firepower Management Center Virtual (FMCv)/Cisco AMP for Networks
    • Describe Cisco ASAv
    • Describe Cisco Services Router 1000V (CSR1Kv)
    • Describe Cisco Stealthwatch Cloud
    • Describe Cisco Tetration Cloud Zero-Trust Model
  • Describing the Network as the Sensor and Enforcer
    • Describe Cisco Stealthwatch Enterprise
    • Describe Cisco ISE Functions and Personas
    • Describe Cisco TrustSec
    • Describe Cisco Stealthwatch and Cisco ISE Integration
    • Describe Cisco Encrypted Traffic Analytics (ETA)
  • Implementing Cisco Security Solutions in AWS
    • Explain AWS Security Offerings
    • Describe AWS Elastic Compute Cloud (EC2) and Virtual Private Cloud (VPC)
    • Discover Cisco Security Solutions in AWS
    • Explain Cisco Stealthwatch Cloud in AWS
  • Describing Cloud Security Management
    • Describe Cloud Management and APIs
    • Explain API Protection
    • Illustrate an API Example: Integrate to ISE Using pxGrid
    • Identify SecDevOps Best Practices
    • Illustrate a Cisco Cloud Security Management Tool Example: Cisco Defense Orchestrator
    • Illustrate a Cisco Cloud Security Management Tool Example: Cisco CloudCenter™
    • Describe Cisco Application Centric Infrastructure (ACI)
    • Describe AWS Reporting Tools

Lab outline

  • Explore the Cisco Cloudlock Dashboard and User Security
  • Explore Cisco Cloudlock Application and Data Security
  • Explore Cisco AMP Endpoints
  • Perform Endpoint Anaylsis Using the AMP Endpoint Console
  • Examine the Umbrella Dashboard
  • Examine Cisco Umbrella Investigate
  • Explore Email Ransomware Protection by Cisco Cloud Email Security
  • DNS Ransomware Protection by Cisco Umbrella
  • Explore File Ransomware Protection by Cisco AMP for Endpoints
  • Explore a Ransomware Execution Example
  • Implement Cisco ASAv in ESXi
  • Configure and Test Basic Cisco ASAv Network Address Translation (NAT)/Access Control List (ACL) Functions
  • Explore Cisco Stealthwatch Cloud
  • Explore Stealthwatch Cloud Alerts Settings, Watchlists, and Sensors
  • Explore the Network as the Sensor and Enforcer
  • Explore Cisco Stealthwatch Enterprise
  • Deploy NGFWv and FMCv in AWS
  • Troubleshoot FTD and FMC in AWS – Scenario 1
  • Troubleshoot FTD and FMC in AWS – Scenario 2
  • Troubleshoot FTD and FMC in AWS – Scenario 3
  • Explore AWS Reporting Capabilities

 

You will learn:

Module 1: Introducing the Cloud and Cloud Security
  • Describe the Evolution of Cloud Computing
  • Explain the Cloud Service Model
  • Explore the Security Responsibilities Within the Infrastructure as a Service (IaaS) Service Model
  • Explore the Security Responsibilities Within the Platform as a Service (PaaS) Service Model
  • Explore the Security Responsibilities Within the SaaS Service Model
  • Describe Cloud Deployment Models
  • Describe Cloud Security Basics
  • Explore Security Challenges for Customers Using SaaS
  • Describe User and Entity Behavior Analytics, Data Loss Prevention (DLP), and Apps Firewall
  • Describe Cloud Access Security Broker (CASB)
  • Describe Cisco CloudLock as the CASB
  • Describe OAuth and OAuth Attacks
  • Describe Cisco Cloud Security Solutions for Endpoints
  • Describe AMP for Endpoints Architecture
  • Describe Cisco Umbrella
  • Describe Cisco Cloud Email Security
  • Design Comprehensive Endpoint Security
  • Describe Network Function Virtualization (NFV)
  • Describe Cisco Secure Architectures for Enterprises (Cisco SAFE)
  • Describe Cisco NGFWv/Cisco Firepower Management Center Virtual (FMCv)/Cisco AMP for Networks
  • Describe Cisco ASAv
  • Describe Cisco Services Router 1000V (CSR1Kv)
  • Describe Cisco Stealthwatch Cloud
  • Describe Cisco Tetration Cloud Zero-Trust Model
  • Describe Cisco Stealthwatch Enterprise
  • Describe Cisco ISE Functions and Personas
  • Describe Cisco TrustSec
  • Describe Cisco Stealthwatch and Cisco ISE Integration
  • Describe Cisco Encrypted Traffic Analytics (ETA)
  • Explain AWS Security Offerings
  • Describe AWS Elastic Compute Cloud (EC2) and Virtual Private Cloud (VPC)
  • Discover Cisco Security Solutions in AWS
  • Explain Cisco Stealthwatch Cloud in AWS
  • Describe Cloud Management and APIs
  • Describe Cloud Management and APIs
  • Describe Cloud Management and APIs
  • Describe Cloud Management and APIs
  • Illustrate a Cisco Cloud Security Management Tool Example: Cisco Defense Orchestrator
  • Illustrate a Cisco Cloud Security Management Tool Example: Cisco CloudCenter™
  • Describe Cisco Application Centric Infrastructure (ACI)
  • Describe AWS Reporting Tools
  • Explore the Cisco Cloudlock Dashboard and User Security
  • Explore Cisco Cloudlock Application and Data Security
  • Explore Cisco AMP Endpoints
  • Perform Endpoint Anaylsis Using the AMP Endpoint Console
  • Examine the Umbrella Dashboard
  • Examine Cisco Umbrella Investigate
  • Explore Email Ransomware Protection by Cisco Cloud Email Security
  • DNS Ransomware Protection by Cisco Umbrella
  • Explore File Ransomware Protection by Cisco AMP for Endpoints
  • Explore a Ransomware Execution Example
  • Implement Cisco ASAv in ESXi
  • Configure and Test Basic Cisco ASAv Network Address Translation (NAT)/Access Control List (ACL) Functions
  • Explore Cisco Stealthwatch Cloud
  • Explore Stealthwatch Cloud Alerts Settings, Watchlists, and Sensors
  • Explore the Network as the Sensor and Enforcer
  • Explore Cisco Stealthwatch Enterprise
  • Deploy NGFWv and FMCv in AWS
  • Troubleshoot FTD and FMC in AWS – Scenario 1
  • Troubleshoot FTD and FMC in AWS – Scenario 2
  • Troubleshoot FTD and FMC in AWS – Scenario 3
  • Explore AWS Reporting Capabilities
Live Online Training (Duration : 32 Hours)
Group Training 2150 Per Participant Incl. Official Courseware
Online
15 - 18 Aug GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)
05 - 08 Sep GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)
03 - 06 Oct GTR 09:00 AM - 05:00 PM CST
(8 Hours/Day)
We Offer :
  • 1-on-1 Public - Select your own start date. Other students can be merged.
  • 1-on-1 Private - Select your own start date. You will be the only student in the class.
2450 + If you accept merging of other students. Incl. Official Courseware
8 Hours
Week Days
Weekend

Start Time : At any time

12 AM
12 PM

1-On-1 Training is Guaranteed to Run (GTR)
Physical Classroom Training with 4 hours /8 hours option is available. Enquire Now!
Ultra-Fast Track

If you can't spare 32 hours. We can offer you an Ultra-Fast Track for 16 hours for only USD 1,960
Enquire Now!

Course Prerequisites

Who should enroll

This course is open to engineers, administrators, and security-minded users of public, private, and hybrid cloud infrastructures responsible for implementing security in cloud environments:

  • Security architects
  • Cloud architects
  • Security engineers
  • Cloud engineers
  • System engineers
  • Cisco integrators and partners

Prerequisites

To fully benefit from this course, you should have completed the following course or obtained the equivalent knowledge and skills:

  • Knowledge of cloud computing and virtualization software basics
  • Ability to perform basic UNIX-like OS commands
  • Cisco CCNP® security knowledge or understanding of the following topic areas:

How you’ll benefit

This class will help you:

  • Learn how to deploy and troubleshoot Cisco cloud security solutions to protect your cloud, users, data, and applications; prevent breaches and quickly detect and mitigate attacks; improve security and incident response, and more
  • Learn skills that can be applied to both public and private solutions including Amazon Web Services (AWS), Google Cloud Platform (GCP), IBM Cloud, Microsoft Azure, Dimension Data Cloud, Alibaba Cloud, VMware Cloud, and other cloud solutions
  • Gain leading-edge skills for high-demand jobs focused on enterprise security

Technology areas

  • Cloud
  • Security

 

Request More Information

Add Name and Email Address of participant (If different from you)

FAQ's


Yes, fee excludes local taxes.
Yes, we do.
The Fee includes:
  • Official courseware
Yes, Koenig Solutions is a Cisco Learning Partner
Schedule for Group Training is decided by Koenig. Schedule for 1-on-1 is decided by you.
In 1-on-1 you can select your own schedule, other students can be merged but you select the schedule. Choose 1-on-1 if published schedule do not meet your requirement. If you also want a private session, opt for 1-on-1 Public.
Yes.
No, it is not included.
In both, you choose the schedule. In public, other participants can join, Private other participants want to join.
Yes, course requiring practical include hands-on labs.
You can buy online from the page by clicking on "Buy Now". You can view alternate payment method on payment options page.
Yes, you can pay from the course page and flexi page.
Yes, the site is secure by utilizing Secure Sockets Layer (SSL) Technology. SSL technology enables the encryption of sensitive information during online transactions. We use the highest assurance SSL/TLS certificate, which ensures that no unauthorized person can get to your sensitive payment data over the web.
We use the best standards in Internet security. Any data retained is not shared with third parties.
You can request a refund if you do not wish to enroll in the course.
To receive an acknowledgment of your online payment, you should have a valid email address. At the point when you enter your name, Visa, and other data, you have the option of entering your email address. Would it be a good idea for you to decide to enter your email address, confirmation of your payment will be emailed to you.
After you submit your payment, you will land on the payment confirmation screen. It contains your payment confirmation message. You will likewise get a confirmation email after your transaction is submitted.
We do accept all major credit cards from Visa, Mastercard, American Express, and Discover.
Credit card transactions normally take 48 hours to settle. Approval is given right away; however, it takes 48 hours for the money to be moved.
Yes, we do accept partial payments, you may use one payment method for part of the transaction and another payment method for other parts of the transaction.
Yes, if we have an office in your city.
Yes, we do offer corporate training More details
Yes, we do.
Yes, we also offer weekend classes.
Yes, Koenig follows a BYOL(Bring Your Own Laptop) policy.
It is recommended but not mandatory. Being acquainted with the basic course material will enable you and the trainer to move at a desired pace during classes. You can access courseware for most vendors.
Yes, this is our official email address which we use if a recipient is not able to receive emails from our @koenig-solutions.com email address.
Buy-Now. Pay-Later option is available using credit card in USA and India only.
You will receive the digital certificate post training completion via learning enhancement tool after registration.
Yes you can.
Yes, we do. For details go to flexi
You can pay through debit/credit card or bank wire transfer.
Dubai, Goa, Delhi, Bangalore.
Yes you can request your customer experience manager for the same.
Yes of course. 100% refund if training not upto your satisfaction.

Prices & Payments

Yes of course.
Yes, We are

Travel and Visa

Yes we do after your registration for course.

Food and Beverages

Yes.

Others

Says our CEO-
“It is an interesting story and dates back half a century. My father started a manufacturing business in India in the 1960's for import substitute electromechanical components such as microswitches. German and Japanese goods were held in high esteem so he named his company Essen Deinki (Essen is a well known industrial town in Germany and Deinki is Japanese for electric company). His products were very good quality and the fact that they sounded German and Japanese also helped. He did quite well. In 1970s he branched out into electronic products and again looked for a German name. This time he chose Koenig, and Koenig Electronics was born. In 1990s after graduating from college I was looking for a name for my company and Koenig Solutions sounded just right. Initially we had marketed under the brand of Digital Equipment Corporation but DEC went out of business and we switched to the Koenig name. Koenig is difficult to pronounce and marketeers said it is not a good choice for a B2C brand. But it has proven lucky for us.” – Says Rohit Aggarwal (Founder and CEO - Koenig Solutions)
All our trainers are fluent in English . Majority of our customers are from outside India and our trainers speak in a neutral accent which is easily understandable by students from all nationalities. Our money back guarantee also stands for accent of the trainer.
Medical services in India are at par with the world and are a fraction of costs in Europe and USA. A number of our students have scheduled cosmetic, dental and ocular procedures during their stay in India. We can provide advice about this, on request.
Yes, if you send 4 participants, we can offer an exclusive training for them which can be started from Any Date™ suitable for you.