Securing Networks with Cisco Firepower Next Generation IPS v4.0

Schedule

Start End Duration Location Details

Course Details

Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0

Course code: SSFIPS

Duration: 5 Days

Prerequisite:

To fully benefit from this course, you should have the following knowledge and skills:

•    Technical understanding of TCP/IP networking and network architecture
•    Basic familiarity with the concepts of Intrusion Detection Systems (IDS) and IPS

Course Description:

The Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0 course shows you how to deploy and use Cisco Firepower® Next-Generation Intrusion Prevention System (NGIPS). This hands-on course gives you the knowledge and skills to use the platform features and includes firewall security concepts, platform architecture and key features; in-depth event analysis including detection of network-based malware and file type, NGIPS tuning and configuration including application control, security intelligence, firewall, and network-based malware and file controls; Snort® rules language; file and malware inspection, security intelligence, and network analysis policy configuration designed to detect traffic patterns; configuration and deployment of correlation policies to take action based on events detected; troubleshooting; system and user administration tasks, and more.

Course Objectives:

After taking this course, you should be able to:
•    Describe the components of Cisco Firepower Threat Defense and the managed device registration process
•    Detail Next-Generation Firewalls (NGFW) traffic control and configure the Cisco Firepower system for network discovery
•    Implement access control policies and describe access control policy advanced features
•    Configure security intelligences features and the Advanced Malware Protection (AMP) for Networks implementation procedure for file control and advanced malware protection

•    Implement and manage intrusion and network analysis policies for NGIPS inspection
•    Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center
•    Integrate the Cisco Firepower Management Center with an external logging destination
•    Describe and demonstrate the external alerting options available to Cisco Firepower Management Center and configure a correlation policy
•    Describe key Cisco Firepower Management Center software update and user account management features
•    Identify commonly misconfigured settings within the Cisco Firepower Management Center and use basic commands to troubleshoot a Cisco Firepower Threat Defense deviceDescribe IPv6 main features and addresses, and configure and verify basic IPv6 connectivity
•    Describe the operation, benefits, and limitations of static routing

Intended Audience:

This course is designed for technical professionals who need to know how to deploy and manage a Cisco Firepower NGIPS in their network environment.

•    Security administrators
•    Security consultants
•    Network administrators
•    System engineers
•    Technical support personnel
•    Channel partners and resellers

Course Outlines:

•    Cisco Firepower Threat Defense Overview
•    Cisco Firepower NGFW Device Configuration
•    Cisco Firepower NGFW Traffic Control
•    Cisco Firepower Discovery
•    Implementing Access Control Policies
•    Security Intelligence
•    File Control and Advanced Malware Protection
•    Next-Generation Intrusion Prevention Systems
•    Network Analysis Policies
•    Detailed Analysis Techniques
•    Cisco Firepower Platform Integration
•    Alerting and Correlation Policies
•    Performing System Administration

•    Firepower Troubleshooting

Lab Outlines:

•    Perform Initial Device Setup
•    Perform Device Management
•    Configure Network Discovery
•    Implement an Access Control Policy
•    Implement Security Intelligence
•    Implement Control and Advanced Malware Protection
•    Implement NGIPS
•    Customize a Network Analysis Policy
•    Perform Analysis
•    Configure Firepower Platform Integration with Splunk
•    Configure Alerting and Event Correlation
•    Perform System Administration
•    Troubleshoot Firepower