SECCLD - Securing Cloud Deployments with Cisco Technologies v1.0 - On-Demand Course

The Securing Cloud Deployments with Cisco Technologies (SECCLD) v1.0 course is a 4-day course that is designed to teach students how to implement Cisco cloud security solutions to secure access to the cloud, workloads in the cloud, and software as a service (SaaS) user accounts, applications, and data. Via expert instruction and hands-on labs, students will learn a comprehensive set of skills and technologies including: how to use key Cisco cloud security solutions; detect suspicious traffic flows, policy violations, and compromised devices; implement security controls for cloud environments; and implement cloud security management.

The course discusses the usage of Cisco Cloudlock, Cisco Umbrella, Cisco Cloud Email Security, Cisco Advanced Malware Protection (AMP) for Endpoints, Cisco Stealthwatch Cloud and Enterprise, Cisco Firepower NGFW (next-generation firewall), and more.

• Contrast the various cloud service and deployment models.
• Implementing a Cisco Security Solution for SaaS using Cisco Cloudlock Micro Services.
• Deploying cloud security solutions using Cisco AMP for Endpoints, Cisco Umbrella, and Cisco Cloud Email Security.
• Defining Cisco cloud security solutions for protection and visibility using Cisco virtual appliances and Cisco Stealthwatch Cloud.
• Describing the network as a sensor and enforcer using Cisco Identity Services Engine (ISE), Cisco Stealthwatch Enterprise, and Cisco TrustSec.
• Implementing Cisco Firepower NGFW Virtual (NGFWv) and Cisco Stealthwatch Cloud to provide protection and visibility in AWS environments.
• Explaining how to protect the cloud management infrastructure by using specific examples, defined best practices, and AWS reporting capabilities.

This course is open to engineers, administrators, and security-minded users of public, private, and hybrid cloud infrastructures responsible for implementing security in cloud environments:

• Security architects
• Cloud architects
• Security engineers
• Cloud engineers
• System engineers
• Cisco integrators and partners

To fully benefit from this course, you should have completed the following courses or obtained the equivalent knowledge and skills listed below:

• Knowledge of cloud computing and virtualization software basics
• Ability to perform basic UNIX-like OS commands

Cisco CCNP Security or understanding of the following topic areas:

• Cisco Adaptive Security Appliance (ASA) and Adaptive Security Virtual Appliance (ASAv) deployment
• Cisco IOS Flexible NetFlow operations
• Cisco NGFW (Cisco Firepower Threat Defense [FTD]), Cisco Firepower, and Cisco Firepower Management Center (FMC) deployment
• Cisco Content Security operations including Cisco Web Security Applicance (WSA)/Cisco Email
• Security Applicance (ESA)/Cisco Cloud Web Security (CWS)
• Cisco AMP for network and endpoints deployment
• Cisco ISE operations and Cisco TrustSec architecture VPN operation

• User and Entity Behavior Analytics, Data Loss Prevention (DLP), and Apps Firewall
• Cloud Access Security Broker (CASB)
• Cisco CloudLock as the CASB
• OAuth and OAuth Attacks
• Deploying Cisco Cloud-Based Security Solutions for Endpoints and Content Security
• Cisco Cloud Security Solutions for Endpoints
• AMP for Endpoints Architecture
• Cisco Umbrella
• Cisco Cloud Email Security
• Design Comprehensive Endpoint Security
• Introducing Cisco Security Solutions for Cloud Protection and Visibility
• Network Function Virtualization (NFV)
• Cisco Secure Architectures for Enterprises (Cisco SAFE)
• Cisco NGFWv/Cisco Firepower Management Center Virtual
• Cisco ASAv
• Cisco Services Router 1000V
• Cisco Stealthwatch Cloud
• Cisco Tetration Cloud Zero-Trust Model
• The Network as the Sensor and Enforcer
• Cisco Stealthwatch Enterprise
• Cisco ISE Functions and Personas
• Cisco TrustSec
• Cisco Stealthwatch and Cisco ISE Integration
• Cisco Encrypted Traffic Analytics (ETA)
• Implementing Cisco Security Solutions in AWS
• Explain AWS Security Offerings
• AWS Elastic Compute Cloud (EC2) and Virtual Private Cloud (VPC)
• Discover Cisco Security Solutions in AWS
• Cisco Stealthwatch Cloud in AWS
• Cloud Security Management
• Cloud Management and APIs
• API Protection
• An API Example: Integrate to ISE Using pxGrid
• Identify SecDevOps Best Practices
• Cisco Cloud Security Management Tool Example: Cisco Defense Orchestrator
• Cisco Cloud Security Management Tool Example: Cisco CloudCenter
• Cisco Application Centric Infrastructure (ACI)
• AWS Reporting Tools

• Explore the Cisco Cloudlock Dashboard and User Security
• Explore Cisco Cloudlock Application and Data Security
• Explore Cisco AMP Endpoints
• Perform Endpoint Anaylsis Using the AMP Endpoint Console
• Examine the Umbrella Dashboard
• Examine Cisco Umbrella Investigate
• Explore Email Ransomware Protection by Cisco Cloud Email Security
• DNS Ransomware Protection by Cisco Umbrella
• Explore File Ransomware Protection by Cisco AMP for Endpoints
• Explore a Ransomware Execution Example
• Implement Cisco ASAv in ESXi
• Configure and Test Basic Cisco ASAv Network Address Translation (NAT)/Access Control List (ACL) Functions
• Explore Cisco Stealthwatch Cloud
• Explore Stealthwatch Cloud Alerts Settings, Watchlists, and Sensors
• Explore the Network as the Sensor and Enforcer
• Explore Cisco Stealthwatch Enterprise
• Deploy NGFWv and FMCv in AWS
• Troubleshoot FTD and FMC in AWS – Scenario 1
• Troubleshoot FTD and FMC in AWS – Scenario 2
• Troubleshoot FTD and FMC in AWS – Scenario 3
• Explore AWS Reporting Capabilities

To fully benefit from this course, you should have completed the following courses or obtained the equivalent knowledge and skills listed below:

• Knowledge of cloud computing and virtualization software basics
• Ability to perfo" 1396,1509,,5277,ENC9K - Implementing Cisco Catalyst 9000 Switches,0,0,Cisco,cisco.png,,cisco,"

  The ENC9K-Implementing Cisco Catalyst 9000 Switches v1.0 course is a 3-day course that is designed to teach students about the many features of the Cisco IOS XE platform and describes how to manage devices from a single dashboard, the Cisco DNA Center. During the course students will learn how to use the Cisco Catalyst 9000 family of switches to enable Software Defined Access (SD-Access) and provide end-to-end security and automation with centralized management using DNA Center.

  Topics covered in the course include:

  • Reviewing the Cisco Catalyst 9000 switching family, identifying the product features, and examining the functionalities purpose-built for Cisco DNA and the SD-Access solution
  • Describing the Cisco Catalyst 9300 Series Switch architecture, model types, port types, uplink modules, and components including power supplies and stacking cables
  • Describing the Cisco Catalyst 9400 Series Switches, different modular chassis, supervisor and line card options, architectural components, uplink and power redundancy, and multigigabit ports
  • Describing the Cisco Catalyst 9500 Series Switches, model types, switch components, RFID support, architecture, and switch profiles
  • Positioning the different Cisco Catalyst 9000 family switch model types in the network and map older Cisco Catalyst switches to the 9000 family for migration
  • Examining management capabilities of the Cisco Catalyst 9000 family of switches
  • Describing the Cisco Catalyst 9000 family of switches deployed in a Cisco StackWise Virtual environment and an SD-Access fabric

     

  Related Courses

• SSNGFW-Securing Networks with Cisco Firepower Next Generation Firewall v1.0
• SAUI-Implementing Automation for Cisco Security Solutions v1.0
• SESA- Securing Email with Cisco Email Security Appliance v3.0
• SSFAMP-Protecting Against Malware Threats with Cisco AMP for Endpoints v5.0
• SWSA- Securing the Web with Cisco Web Security Appliance v3.0
• SSFSNORT - Securing Cisco Networks with Open Source Snort
• Understanding Cisco Cybersecurity Fundamentals (SECFND) v1.0
• Implementing Cisco Cybersecurity Operations (SECOPS) v1.0