COURSE OBJECTIVE:
After completing this course you should be able to:
• Contrast the various cloud service and deployment models.
• Implement the Cisco Security Solution for SaaS using Cisco Cloudlock Micro Services.
• Deploy cloud security solutions using Cisco AMP for Endpoints, Cisco Umbrella, and Cisco Cloud Email Security.
• Define Cisco cloud security solutions for protection and visibility using Cisco virtual appliances and Cisco Stealthwatch Cloud.
• Describe the network as a sensor and enforcer using Cisco Identity Services Engine (ISE), Cisco Stealthwatch Enterprise, and Cisco TrustSec.
• Implement Cisco Firepower NGFW Virtual (NGFWv) and Cisco Stealthwatch Cloud to provide protection and visibility in AWS environments.
• Explain how to protect the cloud management infrastructure by using specific examples, defined best practices, and AWS reporting capabilities.
TARGET AUDIENCE:
Engineers and administrators responsible for implementing security in a cloud environment whether that be a public, private or hybrid cloud infrastructure.
COURSE PREREQUISITES:
Attendees should meet the following prerequisites:
• Knowledge of cloud computing and virtualization software basics
• Ability to perform basic UNIX-like OS commands
Cisco CCNP security knowledge or an understanding of the following topic areas:
• Cisco Adaptive Security Appliance (ASA) and Adaptive Security Virtual Appliance (ASAv) deployment
• Cisco IOS Flexible NetFlow operations
• Cisco NGFW (Cisco Firepower Threat Defense [FTD]), Cisco Firepower, and Cisco Firepower Management Center (FMC) deployment
• Cisco Content Security operations including Cisco Web Security Applicance (WSA)/Cisco Email Security Applicance (ESA)/Cisco Cloud Web Security(CWS)
• Cisco AMP for network and endpoints deployment
• Cisco ISE operations and Cisco TrustSec architecture
• VPN operation
COURSE CONTENT:
Introducing the Cloud and Cloud Security
• Describe the Evolution of Cloud Computing
• Explain the Cloud Service Models
• Explore the Security Responsibilities Within the Infrastructure as a Service (IaaS) Service Model
• Explore the Security Responsibilities Within the Platform as a Service (PaaS) Service Model
• Explore the Security Responsibilities Within the SaaS Service Model
• Describe Cloud Deployment Models
• Describe Cloud Security Basics
Implementing the Cisco Security Solution for SaaS Access Control
• Explore Security Challenges for Customers Using SaaS
• Describe User and Entity Behavior Analytics, Data Loss Prevention (DLP), and Apps Firewall
• Describe Cloud Access Security Broker (CASB)
• Describe Cisco CloudLock as the CASB
• Describe OAuth and OAuth Attacks
Deploying Cisco Cloud-Based Security Solutions for Endpoints and Content Security
• Describe Cisco Cloud Security Solutions for Endpoints
• Describe AMP for Endpoints Architecture
• Describe Cisco Umbrella
• Describe Cisco Cloud Email Security
• Design Comprehensive Endpoint Security
Introducing Cisco Security Solutions for Cloud Protection and Visibility
• Describe Network Function Virtualization (NFV)
• Describe Cisco Secure Architectures for Enterprises (Cisco SAFE)
• Describe Cisco NGFWv/Cisco Firepower Management Center Virtual
• Describe Cisco ASAv
• Describe Cisco Services Router 1000V
• Describe Cisco Stealthwatch Cloud
• Describe Cisco Tetration Cloud Zero-Trust Model
Describing the Network as the Sensor and Enforcer
• Describe Cisco Stealthwatch Enterprise
• Describe Cisco ISE Functions and Personas
• Describe Cisco TrustSec
• Describe Cisco Stealthwatch and Cisco ISE Integration
• Describe Cisco Encrypted Traffic Analytics (ETA)
Implementing Cisco Security Solutions in AWS
• Explain AWS Security Offerings
• Describe AWS Elastic Compute Cloud (EC2) and Virtual Private Cloud (VPC)
• Discover Cisco Security Solutions in AWS
• Explain Cisco Stealthwatch Cloud in AWS
Describing Cloud Security Management
• Describe Cloud Management and APIs
• Explain API Protection
• Illustrate an API Example: Integrate to ISE Using pxGrid
• Identify SecDevOps Best Practices
• Illustrate a Cisco Cloud Security Management Tool Example: Cisco Defense Orchestrator
• Illustrate a Cisco Cloud Security Management Tool Example: Cisco CloudCenter™
• Describe Cisco Application Centric Infrastructure (ACI)
• Describe AWS Reporting Tools
Labs
• Lab1: Explore the Cisco Cloudlock Dashboard and User Security
• Lab 2: Explore Cisco Cloudlock Application and Data Security
• Lab 3: Explore Cisco AMP Endpoints
• Lab 4: Perform Endpoint Anaylsis Using the AMP Endpoint Console
• Lab 5: Examine the Umbrella Dashboard
• Lab 6: Examine Cisco Umbrella Investigate
• Lab 7: Explore Email Ransomware Protection by Cisco Cloud Email Security
• Lab 8: DNS Ransomware Protection by Cisco Umbrella
• Lab 9: Explore File Ransomware Protection by Cisco AMP for Endpoints
• Lab 10: Explore a Ransomware Execution Example
• Lab 11: Implement Cisco ASAv in ESXi
• Lab 12: Configure and Test Basic Cisco ASAv Network Address Translation (NAT)/Access Control List (ACL) Functions
• Lab 13: Explore Cisco Stealthwatch Cloud
• Lab 14: Explore Stealthwatch Cloud Alerts Settings, Watchlists, and Sensors
• Lab 15: Explore the Network as the Sensor and Enforcer
• Lab 16; Explore Cisco Stealthwatch Enterprise
• Lab 17: Deploy NGFWv and FMCv in AWS
• Lab 18: Troubleshoot FTD and FMC in AWS – Scenario 1
• Lab 19: Troubleshoot FTD and FMC in AWS – Scenario 2
• Lab 20: Troubleshoot FTD and FMC in AWS – Scenario 3
• Lab 30: Explore AWS Reporting Capabilities
FOLLOW ON COURSES:
Not available. Please contact.