Thanks to visit codestin.com
Credit goes to www.scribd.com

Scribd
Upload
97 views20 pages

Ccna Security: Evening Seminar

The document summarizes a CCNA Security evening seminar. It discusses the growing role of networking and need for security skills. It outlines the CCNA Security certification pathway which requires passing the CCNA exam first, then taking an Implementing Cisco IOS Network Security course and exam. The seminar covers key security topics like secure router configuration, AAA, ACLs, firewalls, IPS, and site-to-site VPN implementation to help students prepare for the CCNA Security certification.

Uploaded by

Mahmudul Hasan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
97 views20 pages

Ccna Security: Evening Seminar

The document summarizes a CCNA Security evening seminar. It discusses the growing role of networking and need for security skills. It outlines the CCNA Security certification pathway which requires passing the CCNA exam first, then taking an Implementing Cisco IOS Network Security course and exam. The seminar covers key security topics like secure router configuration, AAA, ACLs, firewalls, IPS, and site-to-site VPN implementation to help students prepare for the CCNA Security certification.

Uploaded by

Mahmudul Hasan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 20

CCNA SECURITY

EVENING
SEMINAR

Deniz Kaya
New Horizons Bulgaria
Situation: Global IT Talent Gap
Challenge
Role of the Network Grows

Web 2.0 Apps


Converged Solutions
50% of Security is IP Video, TelePresence
secure routers.
35% of Voice is Unified Communications
Evolution of the Network

router-embedded. Knowledge
Storage
Wireless is 15% Gap
and growing Enhanced Security
annually.
Wireless

Voice Transport

Telecommuting / VPN

Switching
3.12 M Gap by 2012
Routing

Time
Forrester Consulting Findings

In all markets, especially emerging markets, training and


certification for specialized skills are in demand

80% of surveyed companies worldwide expect dedicated


security role with 5 years (currently 46%)

69% expect dedicated voice role (40%)

66% expect dedicated wireless job role (36%)


CCNA Concentrations: One Pre-Requisite
Three Pathways to Success
Requirements: Hold active CCNA Certification (640-802 CCNA comp exam or 640-
822 ICND1 and 640-816 ICND2 exams) and pass the corresponding CCNA
Concentration exams

CCNA Security CCNA Wireless CCNA Voice


Cisco Learning Partner COURSE: Cisco Learning Partner COURSE: Cisco Learning Partner COURSE:
Implementing Cisco IOS Network Implementing Cisco Unified Wireless Implementing Cisco IOS Unified
Security (IINS) Networking Essentials (IUWNE) Communications (IIUC)

EXAM: IINS 640-453 EXAM: IUWNE 640-721 EXAM: IIUC 640-460


CCNA Security
Verifies an individuals skills in the
following roles:
Network Security Specialists
Security Administrators
Network Security Support
Engineers
Enables installation, troubleshooting
and monitoring of Cisco Security
devices/technologies.
Ability to administer security policies
and identify risks in networks
Serves as prerequisite for CCSP
Certification
Employers hiring individuals can feel
confident their staff has the skills
needed to install, troubleshoot and
monitor Cisco security technologies.
CCNA Security Overview

In-depth network security education


Comprehensive understanding of network security concepts
Hands-on knowledge and skills, emphasizing practical experience
For entry-level job roles in network security
Installation, troubleshooting and monitoring of network devices to
maintain integrity, confidentiality and availability of data and devices
Prepares students for CCNA Security certification (IINS 640-553 exam)
Benefits for Students

CCNA Security helps students:


Gain an introduction to core security technologies
Learn how to develop security policies and mitigate risks
Acquire the skills needed to develop a security infrastructure
Recognize vulnerabilities to networks
Mitigate potential security threats
Prepare for the CCNA Security certification exam
Start or build a career in networking security
Differentiate themselves in the market with specialized skills and
expertise to achieve success
Security Certifications
Professional-level Associate-level
Cisco Certified Security CCSP Certification CCNA
Professional (CCSP) Certification (Revised in 2009) Certification
(as originally designed)
CCNA Security Course
IINS exam
SND (SND is Moved to CCNA Security)
(640-553)

SNRS CCNA Security


SNRS Certification

SNAF CCNA certification is a


SNPA pre-requisite for CCNA
Security certification
IPS IPS

Elective Exam Elective Exam


CCNA Security Target Audience
Career starters seeking career-oriented, entry-level security
specialist skills
Working IT professionals looking to expand their core routing and
switching skills to change or enhance their career
Students in technical degree programs at institutions of higher
education (colleges, universities, technical schools)
What is in the course?
Describe the security threats facing modern network infrastructures

Secure Cisco routers

Implement AAA on Cisco routers using local router database and external ACS

Mitigate threats to Cisco routers and networks using ACLs

Implement secure network management and reporting

Mitigate common Layer 2 attacks

Implement the Cisco IOS firewall feature set using SDM

Implement the Cisco IOS IPS feature set using SDM

Implement site-to-site VPNs on Cisco Routers using SDM


Describe the security threats facing modern
network infrastructures

Describe and list


mitigation methods for
common network
attacks
Describe and list
mitigation methods for
Worm, Virus, and Trojan
Horse attacks
Describe the Cisco Self
Defending Network
architecture
Secure Cisco routers

Secure Cisco routers using the SDM No, too simple.


Security Audit feature
Use the One-Step Lockdown feature
in SDM to secure a Cisco router
Secure administrative access to Cisco
routers by setting strong encrypted
passwords, exec timeout, login failure
rate and using IOS login
enhancements
Secure administrative access to Cisco
routers by configuring multiple
privilege levels
Secure administrative access to Cisco
routers by configuring role based CLI
Secure the Cisco IOS image and
configuration file
Implement AAA on Cisco routers using local
router database and external ACS

Explain the functions and


importance of AAA

Describe the features of


TACACS+ and RADIUS AAA
protocols

Configure AAA authentication

Configure AAA authorization

Configure AAA accounting


Mitigate threats to Cisco routers
and networks using ACLs
Explain the functionality of
standard, extended, and
named IP ACLs used by
routers to filter packets
Configure and verify IP ACLs
to mitigate given threats
(filter IP traffic destined for
Telnet, SNMP, and DDoS
attacks) in a network using
CLI
Configure IP ACLs to prevent
IP address spoofing using CLI
Discuss the caveats to be
considered when building
ACLs
Implement secure network
management and reporting

Use CLI and SDM to configure


SSH on Cisco routers to enable
secured management access

Use CLI and SDM to configure


Cisco routers to send Syslog
messages to a Syslog server
Mitigate common Layer 2 attacks

Describe how to
prevent layer 2
attacks by configuring
basic Catalyst switch
security features
Implement the Cisco IOS firewall
feature set using SDM
Describe the
operational strengths
and weaknesses of
the different firewall
technologies
Explain stateful
firewall operations
and the function of
the state table
Implement Zone
Based Firewall using
SDM
Implement the Cisco IOS IPS feature
set using SDM
Define network based vs. host
based intrusion detection and
prevention

Explain IPS technologies,


attack responses, and
monitoring options

Enable and verify Cisco IOS


IPS operations using SDM
Implement site-to-site VPNs on
Cisco Routers using SDM
Explain the different
methods used in
cryptography
Explain IKE protocol
functionality and phases
Describe the building
blocks of IPSec and the
security functions it
provides
Configure and verify an
IPSec site-to-site VPN with
pre-shared key
authentication using SDM
Q and A

You might also like