Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS)

 

Course Overview

The Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0 course shows you how to deploy and use Cisco Firepower® Next-Generation Intrusion Prevention System (NGIPS). This hands-on course gives you the knowledge and skills to use the platform features and includes firewall security concepts, platform architecture and key features; in-depth event analysis including detection of network-based malware and file type, NGIPS tuning and configuration including application control, security intelligence, firewall, and network-based malware and file controls; Snort® rules language; file and malware inspection, security intelligence, and network analysis policy configuration designed to detect traffic patterns; configuration and deployment of correlation policies to take action based on events detected; troubleshooting; system and user administration tasks, and more.

Who should attend

This course is designed for technical professionals who need to know how to deploy and manage a Cisco Firepower NGIPS in their network environment.

  • Security administrators
  • Security consultants
  • Network administrators
  • System engineers
  • Technical support personnel
  • Channel partners and resellers

Certifications

This course is part of the following Certifications:

Prerequisites

To fully benefit from this course, you should have the following knowledge and skills:

  • Technical understanding of TCP/IP networking and network architecture.
  • Basic familiarity with the concepts of Intrusion Detection Systems (IDS) and IPS.

Course Objectives

This course will help you:

  • Implement Cisco Firepower Next-Generation IPS to stop threats, address attacks, increase vulnerability prevention against suspicious files, and analyze for not-yet-identified threats
  • Gain leading-edge skills for high-demand responsibilities focused on security

After taking this course, you should be able to:

  • Describe the components of Cisco Firepower Threat Defense and the managed device registration process
  • Detail Next-Generation Firewalls (NGFW) traffic control and configure the Cisco Firepower system for network discovery
  • Implement access control policies and describe access control policy advanced features
  • Configure security intelligences features and the Advanced Malware Protection (AMP) for Networks implementation procedure for file control and advanced malware protection
  • Implement and manage intrusion and network analysis policies for NGIPS inspection
  • Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center
  • Integrate the Cisco Firepower Management Center with an external logging destination
  • Describe and demonstrate the external alerting options available to Cisco Firepower Management Center and configure a correlation policy
  • Describe key Cisco Firepower Management Center software update and user account management features
  • Identify commonly misconfigured settings within the Cisco Firepower Management Center and use basic commands to troubleshoot a Cisco Firepower Threat Defense device

Course Content

  • Cisco Firepower Threat Defense Overview
  • Cisco Firepower NGFW Device Configuration
  • Cisco Firepower NGFW Traffic Control
  • Cisco Firepower Discovery
  • Implementing Access Control Policies
  • Security Intelligence
  • File Control and Advanced Malware Protection
  • Next-Generation Intrusion Prevention Systems
  • Network Analysis Policies
  • Detailed Analysis Techniques
  • Cisco Firepower Platform Integration
  • Alerting and Correlation Policies
  • System Administration
  • Cisco Firepower Troubleshooting
Lab Outline
  • Initial Device Setup
  • Device Management
  • Configuring Network Discovery
  • Implementing and Access Control Policy
  • Implementing Security Intelligence
  • File Control and Advanced Malware Protection
  • Implementing NGIPS
  • Customizing a Network Analysis Policy
  • Detailed Analysis
  • Configuring Cisco Firepower Platform Integration with Splunk
  • Configuring Alerting and Event Correlation
  • System Administration
  • Cisco Firepower Troubleshooting

Prices & Delivery methods

Online Training
Modality: L

Duration 5 days

Price
  • Eastern Europe: 2,625.— €
  • Cisco Learning Credits: 43
Classroom Training
Modality: C

Duration 5 days

Price
  • Eastern Europe: 2,625.— €

  • Cisco Learning Credits: 43
E-Learning
Modality: P

Duration 180 days

Price
  • Eastern Europe: US$ 1,000.—

Schedule

English

Time zone: Central European Time (CET)

Online Training This is a FLEX course. Time zone: Eastern European Time (EET)

1 hour difference

Online Training Time zone: Greenwich Mean Time (GMT)
Online Training This is a FLEX course. Time zone: Eastern European Time (EET)
Online Training Time zone: British Summer Time (BST)
Online Training This is a FLEX course. Time zone: Eastern European Summer Time (EEST)
Online Training Time zone: British Summer Time (BST)
Online Training This is a FLEX course. Time zone: Eastern European Summer Time (EEST)
Online Training This is a FLEX course. Time zone: Eastern European Summer Time (EEST)
Online Training This is a FLEX course. Time zone: Eastern European Time (EET)

2 hours difference

Online Training This is a FLEX course. Time zone: Gulf Standard Time (GST)
Online Training This is a FLEX course. Time zone: Gulf Standard Time (GST)
Online Training This is a FLEX course. Time zone: Gulf Standard Time (GST)
Online Training This is a FLEX course. Time zone: Gulf Standard Time (GST)

3 hours difference

Online Training This is a FLEX course. Time zone: Gulf Standard Time (GST)
Online Training This is a FLEX course. Time zone: Gulf Standard Time (GST)

6 hours difference

Online Training Time zone: Eastern Standard Time (EST) Guaranteed date! CLC Eligible
Online Training Time zone: Eastern Standard Time (EST) Guaranteed date! CLC Eligible
Online Training Time zone: Eastern Daylight Time (EDT)
Online Training Time zone: Eastern Daylight Time (EDT)

7 hours difference

Online Training Time zone: Central Standard Time (CST)
Online Training Time zone: Central Standard Time (CST)
Online Training Time zone: Central Standard Time (CST)
Online Training Time zone: Central Daylight Time (CDT)
Online Training Time zone: Central Daylight Time (CDT)
Online Training Time zone: Central Daylight Time (CDT)
Online Training Time zone: Central Daylight Time (CDT)

9 hours difference

Online Training Time zone: Pacific Daylight Time (PDT)
Online Training Time zone: Pacific Daylight Time (PDT)
Online Training Time zone: Pacific Standard Time (PST)
Online Training Time zone: Pacific Standard Time (PST)
Guaranteed date:   We will carry out all guaranteed training regardless of the number of attendees, exempt from force majeure or other unexpected events, like e.g. accidents or illness of the trainer, which prevent the course from being conducted.
Instructor-led Online Training:   This computer icon in the schedule indicates that this date/time will be conducted as Instructor-Led Online Training.
This is a FLEX course, which is delivered both virtually and in the classroom. All FLEX courses are also Instructor-led Online Trainings (ILO).

Slovenia

Ljubljana Enroll

Poland

Warsaw This is a FLEX course.   Time zone: Europe/Warsaw Enroll:
for online training
for classroom training
Warsaw This is a FLEX course.   Time zone: Europe/Warsaw Enroll:
for online training
for classroom training
Warsaw This is a FLEX course.   Time zone: Europe/Warsaw Enroll:
for online training
for classroom training

Bulgaria

Sofia Enroll

Czech Republic

Prague Enroll

Slovakia

Bratislava Enroll
This is a FLEX course, which is delivered both virtually and in the classroom. All FLEX courses are also Instructor-led Online Trainings (ILO).