COURSE OBJECTIVE:
After completing this course you should be able to:
• Describe the overall architecture of the Cisco security solutions and how APIs help enable security
• Know how to use Cisco Firepower APIs
• Explain how pxGrid APIs function and their benefits
• Demonstrate what capabilities the Cisco Stealthwatch APIs offer and construct API requests to them for configuration changes and auditing purposes
• Describe the features and benefits of using Cisco Stealthwatch Cloud APIs
• Learn how to use the Cisco Umbrella Investigate API
• Explain the functionality provided by Cisco AMP and its APIs
• Describe how to use Cisco Threat Grid APIs to analyze, search, and dispose of threats
TARGET AUDIENCE:
Individuals looking to use automation and programmability to design more efficient networks, increase scalability and protect against cyberattacks.
COURSE PREREQUISITES:
Attendees should meet the following prerequisites:
• Basic programming language concepts
• Basic understanding of virtualization
• Ability to use Linux and Command Line Interface (CLI) tools, such as Secure Shell (SSH) and bash
• CCNP level core networking knowledge
• CCNP level security networking knowledge
COURSE CONTENT:
Introducing Cisco Security APIs
• Role of APIs in Cisco Security Solutions
• Cisco Firepower, Cisco ISE, Cisco pxGrid and Cisco Stealthwatch APIs
• Use Cases and Security Workflow
Consuming Cisco Advanced Malware Protection APIs
• Cisco AMP Overview
• Cisco AMP Endpoint API
• Cisco AMP Use Cases and Workflows
Using Cisco ISE
• Introducing Cisco Identity Services Engine
• Cisco ISE Use Cases
• Cisco ISE APIs
Using Cisco pxGrid APIs
• Cisco pxGrid Overview
• WebSockets and STOMP Messaging Protocol
Using Cisco Threat Grid APIs
• Cisco Threat Grid Overview
• Cisco Threat Grid API
• Cisco Threat Grid Use Cases and Workflows
Investigating Cisco Umbrella Security Data Programmatically
• Cisco Umbrella Investigate API Overview
• Cisco Umbrella Investigate API: Details
Exploring Cisco Umbrella Reporting and Enforcement APIs
• Cisco Umbrella Reporting and Enforcement APIs Overview
• Cisco Umbrella Reporting and Enforcement APIs: Deep Dive
Automating Security with Cisco Firepower APIs
• Review Basic Constructs of Firewall Policy Management
• Design Policies for Automation
• Cisco FMC APIs in Depth
• Cisco FTD Automation with Ansible
• Cisco FDM API In Depth
Operationalizing Cisco Stealthwatch and the API Capabilities
• Cisco Stealthwatch Overview
• Cisco Stealthwatch APIs: Details
Using Cisco Stealthwatch Cloud APIs
• Cisco Stealthwatch Cloud Overview
• Cisco Stealthwatch Cloud APIs Deep DIve
Describing Cisco Security Management Appliance APIs
• Cisco SMA APIs Overview
• Csico SMA API
Labs
• Query Cisco AMP Endpoint APIs for Veerifying Compliance
• Use the REST API and Cisco pxGrid with Cisco Identity Services Engine
• Construct a Python Script Using the Cisco Threat Grid API
• Query Security Data with the Cisco Umbrella Investigate API
• Generate Reports Using the Cisco Umbrella Reporting API
• Explore the Cisco Firepower Management Center API
• Use Ansible to Automate Cisco Firepower Threat Defense Configuartion
• Automate Firewall policies Using the Cisco Firepower Device Manager API
• Automate Alarm Policies and Create Reports Using the Cisco Stalthwatch APIs
• Construct a Report Using Cisco Stealthwatch Cloud APIs
• Construct Reports Using Cisco SMA APIs
FOLLOW ON COURSES:
Not available. Please contact.