CERTIFICATS

-Information Security Overview
-Assets, Vulnerabilities, and Countermeasures
-Managing Risk

-Legacy TCP/IP Vulnerabilities
-IP Vulnerabilities
-Internet Control Message Protocol (ICMP) Vulnerabilities

-Password Attacks
-Domain Name System (DNS)-Based Attacks
-DNS Tunneling

-Buffer Overflow
-Malware
-Reconnaissance Attack

-Defense-in-Depth Strategy
-Defending Across the Attack Continuum
-Network Segmentation and Virtualization Overview

-Cisco ASA Deployment Types
-Cisco ASA Interface Security Levels
-Cisco ASA Objects and Object Groups

-Cisco Firepower NGFW Deployments
-Cisco Firepower NGFW Packet Processing and Policies
-Cisco Firepower NGFW Objects

-Cisco Email Content Security Overview
-Simple Mail Transfer Protocol (SMTP) Overview
-Email Pipeline Overview

-Cisco Web Security Appliance (WSA) Overview
-Deployment Options
-Network Users Authentication

-Cisco Umbrella Architecture
-Deploying Cisco Umbrella
-Cisco Umbrella Roaming Client

-VPN Definition
-VPN Types
-Secure Communication and Cryptographic Services

-Site-to-Site VPN Topologies
-IPsec VPN Overview
-IPsec Static Crypto Maps

-Cisco IOS VTIs
-Static VTI Point-to-Point IPsec Internet Key Exchange (IKE) v2 VPN Configuration

-Point-to-Point VPNs on the Cisco ASA and Cisco Firepower NGFW
-Cisco ASA Point-to-Point VPN Configuration
-Cisco Firepower NGFW Point-to-Point VPN Configuration

-Remote Access VPN Components
-Remote Access VPN Technologies
-Secure Sockets Layer (SSL) Overview

-Remote Access Configuration Concepts
-Connection Profiles
-Group Policies

-Cisco Secure Network Access
-Cisco Secure Network Access Components
-AAA Role in Cisco Secure Network Access Solution

-802.1X and Extensible Authentication Protocol (EAP)
-EAP Methods
-Role of Remote Authentication Dial-in User Service (RADIUS) in 802.1X Communications

-Cisco Catalyst® Switch 802.1X Configuration
-Cisco Wireless LAN Controller (WLC) 802.1X Configuration
-Cisco Identity Services Engine (ISE) 802.1X Configuration

-Host-Based Personal Firewall
-Host-Based Anti-Virus
-Host-Based Intrusion Prevention System
 

-Cisco AMP for Endpoints Architecture
-Cisco AMP for Endpoints Engines
-Retrospective Security with Cisco AMP

-Identifying Network Device Planes
-Control Plane Security Controls
-Management Plane Security Controls

-Infrastructure ACLs
-Control Plane Policing
-Control Plane Protection

-Overview of Layer 2 Data Plane Security Controls
-Virtual LAN (VLAN)-Based Attacks Mitigation
-Spanning Tree Protocol (STP) Attacks Mitigation

-Infrastructure Antispoofing ACLs
-Unicast Reverse Path Forwarding
-IP Source Guard

-Cisco Secure Management Access
-Simple Network Management Protocol Version 3
-Secure Access to Cisco Devices

-Network Time Protocol
-Device and Network Events Logging and Export
-Network Traffic Monitoring Using NetFlow

-Cisco Stealthwatch Offerings Overview
-Cisco Stealthwatch Enterprise Required Components
-Flow Stitching and Deduplication

-Evolution of Cloud Computing
-Cloud Service Models
-Security Responsibilities in Cloud

-Cisco Threat-Centric Approach to Network Security
-Cloud Physical Environment Security
-Application and Workload Security

-Cisco Stealthwatch Cloud for Public Cloud Monitoring
-Cisco Stealthwatch Cloud for Private Network Monitoring
-Cisco Stealthwatch Cloud Operations

-Software-Defined Networking Concepts
-Network Programmability and Automation
-Cisco Platforms and APIs