CCNP Security

CCNP Security Course + Exam

CCNP Security Certification

Cisco Certified Network Professional Security validates advanced knowledge and skills required to secure Cisco networks. With a CCNP Security certification, a network professional demonstrates the skills required to secure and manage network infrastructures to protect productivity, mitigate threats, and reduce costs.

Cisco Certified Network Associate Security (CCNA Security) certification is a pre-requisite to CCNP Security certification.

The CCNP Security Certification course covers vast aspects of Security from implementing Cisco Layer 2 security, and Network Foundation Protection using the CLI to configuring Cisco IOS Firewalls to mitigate network threats, Cisco IOS-IPS to identify and mitigate threats to network resources, Cisco VPNs to provide secure connectivity for site-to-site and remote access, Cisco IOS Easy VPN Server with Dynamic Virtual Tunnel Interface (DVTI), Security Appliances for secured network connectivity, routing and switching on Security Appliances, Authentication, Authorization, and Accounting services, Layer 3 & 4 protocol inspection, secure connectivity using VPNs, active/standby and active/active failover features, and transparent firewall and virtual firewall features on a Security Appliance.

  • Training: get practical technical skills
  • Receive a certificate of course attendance
  • Small class size: increased instructor interaction
  • Authorised test centre: exams taken at our premises
  • More hands-on: 6 weeks remote lab access included
  • Expert trainers: imparting real world experience

Candidates can achieve this certification by passing following exam(s).

  1. 300-208 SISAS
  2. 300-206 SENSS
  3. 300-209 SIMOS
  4. 300-207 SITCS

The certification exam if included in your course can be registered and attempted within 3 months of course/module completion at Logitrain training centre on weekdays during normal business hours (excludes public holidays)

Ciscopress – Course Material

  • Implement Cisco Layer 2 security
  • Configure Cisco IOS Firewalls to mitigate network threats
  • Configure Cisco IOS-IPS to identify and mitigate threats to network resources
  • Configure Cisco VPNs to provide secure connectivity for site-to-site and remote access
  • Configure Cisco IOS Easy VPN Server with Dynamic Virtual Tunnel Interface (DVTI)
  • Implement Network Foundation Protection using the CLI
  • Configure Security Appliances for secured network connectivity
  • Configure and verify routing and switching on Security Appliances
  • Configure and verify Authentication, Authorization, and Accounting services
  • Configure and verify Layer 3 & 4 protocol inspection
  • Configure and verify secure connectivity using VPNs
  • Configure and verify active/standby and active/active failover features
  • Configure transparent firewall and virtual firewall features on a Security Appliance
  • Describe how Cisco IPS sensors are used to mitigate network security threats
  • Install Cisco IPS sensors/modules and configure essential system parameters
  • Describe Cisco IPS sensor advanced system parameters
  • Tune Cisco IPS sensor advanced system parameters to optimize attack mitigation
  • Analyze Cisco IPS sensor events to determine the appropriate response
  • Upgrade and maintain Cisco IPS sensors
  • Configure and verify NAT, dynamic routing, and switching on Security Appliances
  • Configure and verify application layer protocol inspection and Modular Policy Framework  for Security Appliances
  • Configure and verify secure connectivity using IPsec VPNs
  • Configure and verify secure connectivity using SSL VPNs
  • Configure and verify AIP-SSM and CSC-SSM modules
  • Network engineers
  • System engineers
  • Individuals seeking CCNP-Security, CCIE certification

 Key Topics: Securing Networks with Cisco Routers and Switches – SECURE (642-637)

  • Choose Cisco IOS technologies to implement HLD
  • Choose Cisco products to implement HLD
  • Choose Cisco IOS features to implement HLD 2
  • Integrate Cisco network security solutions with other security technologies
  • Create and test initial Cisco IOS configurations for new devices/services
  • Optimize Cisco IOS security infrastructure device performance
  • Create complex network security rules to meet the security policy requirements
  • Optimize security functions, rules, and configuration
  • Configure & verify NAT to dynamically mitigate identified threats to the network
  • Configure & verify IOS Zone Based Firewalls including advanced application inspections and URL filtering
  • Configure & verify the IPS features to identify threats and dynamically block them from entering the network
  • Maintain, update and tune IPS signatures
  • Configure & verify IOS VPN features
  • Configure & verify Layer 2 and Layer 3 security features
  • Advanced Cisco IOS security software configuraiton fault finding and repairing
  • Advanced Cisco routers and switches hardware fault finding and repairing

Key Topics: Deploying Cisco ASA Firewall Solutions – FIREWALL v1.0 (642-617)

  • Choose ASA Perimeter Security technologies/features to implement HLD based on given security requirements
  • Choose the correct ASA model to implement HLD based on given performance requirements
  • Create and test initial ASA appliance configurations using CLI
  • Determine which ASA licenses will be required based on given requirements
  • Optimize ASA Perimeter Security features performance, functions, and configurations
  • Create complex ASA security perimeter policies such as ACLs, NAT/PAT, L3/L4/L7 stateful inspections
  • Perform initial setup on the AIP-SSM and CSC-SSM using CLI and/or ASDM
  • Configure, verify and troubleshoot High Availability ASAs (A/S and A/A FO) operations using CLI and/or ASDM
  • Configure, verify and troubleshoot static routing and dynamic routing protocols on the ASA using CLI and/or ASDM
  • Configure, verify and troubleshoot ASA transparent firewall operations using CLI
  • Configure, verify and troubleshoot management access/protocols on the ASA using CLI and/or ASDM
  • Advanced ASA security perimeter configuration/software/hardware troubleshooting using CLI and/or ASD fault finding and repairing

Key Topics: Deploying Cisco ASA VPN Solutions – VPN v1.0 (642-647)

  • Choose ASA VPN technologies to implement HLD based on given requirements
  • Choose the correct ASA model and license to implement HLD based on given performance requirements
  • Choose the correct ASA VPN features to implement HLD based on given corporate security policy and network requirements
  • Integrate ASA VPN solutions with other security technology domains (CSD, ACS, Device managers, Cert servers, etc.)
  • Optimize ASA VPN performance, functions, and configurations
  • Configure and verify complex ASA VPN networks using features such as DAP, CSD, Smart tunnels, Anyconnect SSLVPN
  • Create complex ASA network security rules using such features as ACLs, DAP, VPN profiles, certificates, MPF, etc, to meet the corporate security policy
  • Perform advanced ASA VPN configuration and troubleshooting

Key Topics: Implementing Cisco Intrusion Prevention System – IPS v7.0 (642-627)

  • Choose Cisco IPS technologies to implement HLD
  • Choose Cisco products  to implement HLD
  • Choose Cisco IPS features to implement HLD
  • Integrate Cisco network security solutions with other security technologies
  • Create and test initial Cisco IPS configurations for new devices/services
  • Optimize Cisco IPS security infrastructure device performance
  • Create complex network security rules, to meet the security policy requirements
  • Configure and verify the IPS features to identify threats and dynamically block them from entering the network
  • Maintain, update and tune IPS signatures
  • Use CSM and MARS for IPS management, deployment, and advanced event correlation.
  • Optimize security functions, rules, and configuration
  • Advanced Cisco IPS security software configuration fault finding and repairing
  • Advanced Cisco IPS sensor and module hardware fault finding and repairing

Learn More

  • This field is for validation purposes and should be left unchanged.

“We have helped thousands achieve Cisco Certifications, let us help you”

– Murad Tanvir, Double CCIE #17081
Founder and CEO Logitrain

What is included with the CCNP Security Course?

Includes 100% Pass Guarantee

Walk away with the certification. Included in full-time courses. Click here for more Info

Includes Career Counselling

Career Counselling is an integral part of job hunting, it is included with this course

Includes Trainer & Lab Support

6 month support with full-time courses, 3 month support with part-time courses

Includes Official Exam Fee

Take the certification exam within 3 months of course / module completion

Includes Mock & Test Questions

Mock tests included in full-time courses for 3 months from course completion

Includes Books & Meals

Course material in hardcopy included for you to keep. Full-time courses include meals

Includes Course Retake

Sit through the entire course again to clear any doubts. Included in full-time courses

Authorized VUE Test Center

Take the official vendor certification exam at the Logitrain training center

Upgrade Your Course Benefits

Add Pass Guarantee, extra support, retake in part-time course with a full-time fee

Our Price Beat Guarantee

We will beat competitor’s advertised price. Our course has no extra costs

Our Flexible Training Options

Attend classroom courses weekdays, weeknights, weekends or join from anywhere

Delivering Training Since 2004

There is no substitute for experience, we have trained 3000+ students. Train with the best

DATES, LOCATIONS & PRICES

CAN’T MAKE IT TO CLASS? GET CLASSROOM EXPERIENCE THROUGH OUR LIVE ONLINE TRAINING

LocationTypeDurationPriceDates
LocationTypeDurationPriceDates

Accreditations

OUR SATISFIED CUSTOMERS

Learn More

  • This field is for validation purposes and should be left unchanged.