In this course, you’ll focus on the necessity of a comprehensive security policy and how it affects the posture of the network. You will also learn how to analyze and mitigate attacks, taking the mystery out of them. You will learn to perform basic tasks to secure a small branch type office network using Cisco IOS security features available through web—based GUIs (Cisco Router and Cisco Security Professional [CCP]) and the command—line interface (CLI) on the Cisco routers and switches
Develop a comprehensive network security policy to counter threats against information security Configure routers with Cisco IOS Software security features, including management and reporting functions Configure IPv6 addressing, routing, and access control in Cisco network routers Bootstrap the Cisco Adaptive Security Appliance (ASA) Firewall for use in a production network Configure the Cisco ASA Firewall for remote access SSL VPN Configure a Cisco IOS zone—based firewall (ZBF) to perform basic security operations on a network Configure site—to—site VPNs using Cisco IOS features Configure IOS IPS on Cisco network routers Configure security features on IOS switches to mitigate various Layer 2 attacks How a network can be compromised using freely available tools Implement line passwords, and enable passwords and secrets Examine Authentication, Authorization, and Accounting (AAA) concepts and features using the local database as well as Cisco Secure ACS 5.2 Run a CCP security audit and analyze the results Configure packet filtering on the Perimeter Router Define a virtual tunnel interface Using GRE with IPSec
The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.