cisco cybersecurity specialist – ExamCollection http://www.weimarmedical.org/?vb=blog ExamCollection - #1 Free Source of IT Certification Exams Questions Wed, 08 May 2024 16:43:00 +0000 en-US hourly 1 https://wordpress.org/?v=4.5.3 A Closer Look at CCNP Security 300-206 (SENSS) Exam http://www.weimarmedical.org/?vb=blog/a-closer-look-at-ccnp-security-300-206-senss-exam/ Mon, 03 Mar 2014 09:15:24 +0000 http://www.examcollection.com/blog/?p=197 Read More »]]> cisco, senss, ccnp security, it certification exams, cisco cybersecurity specialist As we mentioned earlier, Cisco kicked off the year with updating its security certifications, especially CCNP Security, and the launch of Cisco Cybersecurity Specialist certification. These changes, along with others, are meant to step up Cisco’s security certifications, putting them in line with the latest security trends. They also validate the skills that employers are searching for in their staff.

Today, we take a closer look at the 300-206 (SENSS) exam: Implementing Cisco Edge Network Security Solutions. It validates the candidates’ knowledge required to configure and implement security on Cisco network perimeter edge devices such as a Cisco Switch, Cisco Router, and Cisco ASA Firewall. The 300-206 exam focuses on the technologies used to secure the perimeter of a network such as Network Address Translation (NAT), ASA policy and application inspect, and Zone-Based Firewall on Cisco routers. Like most Cisco exams, this is a closed book exam, with the usual Cisco types of questions: Multiple-Choice Single Key, Multiple-Choice Multiple Key, Drag-and-Drop, Fill-in-the-Blank, Router Simulation, Testlet Queries, Simlet.

According to Cisco, the current version of the 300-206 exam includes the following topics.
Threat Defense (25%)
1.1 Implement Firewall
• 1.1.a Implement ACLs
• 1.1.b Implement static/dynamic NAT/PAT
• 1.1.c Implement object groups
• 1.1.d Describe threat detection features
• 1.1.e Implement Botnet traffic filtering

1.2 Implement Layer 2 security
• 1.2.a Configure DHCP snooping
• 1.2.b Describe dynamic ARP inspection
• 1.2.c Describe storm control
• 1.2.d Configure port security
• 1.2.e Describe common layer 2 threats and attacks and mitigation
• 1.2.f Describe private VLAN
• 1.2.g Describe MACSec

• 1.3 Configure device hardening per best practices
• 1.3.a Routers
• 1.3.b Switches
• 1.3.c Firewalls

• 1.4 Implement Firewalls
• 1.4.a Configure application filtering and protcol inspection
• 1.4.b Describe virtualized firewalls

Cisco Security Devices GUIs and Secured CLI Management (25%)
• 2.1 Implement SSHv2, SSL, SNMPv3 access on the network devices
• 2.2 Implement RBAC on the ASA/IOS CLI and on ASDM
• 2.3 Describe Cisco Prime Infrastructure
• 2.4 Describe CSM
• 2.5 Implement device managers

Management Services on Cisco Devices (12%)
• 3.1 Implement NetFlow exporter
• 3.2 Implement SNMPv3
• 3.3 Implement logging
• 3.4 Implement NTP with authentication
• 3.5 Describe CDP, DNS, SCP, SFTP, and DHCP

Troubleshooting, Monitoring and Reporting Tools (10%)
• Monitor firewall using analysis of packet tracer, packet capture, and syslog

Threat Defense Architectures (16%)
• 5.1 Design a firewall solution
• 5.2 Design Layer 2 security solution

Security Components and Considerations (12%)
• 6.1 Describe security operations management architecture
• 6.2 Describe Data Center Security components and considerations
• 6.3 Describe Collaboration security components and considerations
• 6.4 Describe common IPv6 security considerations

]]> Cisco Introduces Cybersecurity Specialist Certification http://www.weimarmedical.org/?vb=blog/cisco-introduces-cybersecurity-specialist-certification/ Wed, 29 Jan 2014 07:00:54 +0000 http://www.examcollection.com/blog/?p=186 Read More »]]> cisco cybersecurity specialist, it certifications, new examLast week, Cisco announced the launch of the new Cybersecurity Specialist Certification. It fits in with the latest trend of stepping up the security in the constantly changing and developing cyberspace.

This is a Specialist-level certification that recognizes security professionals who have achieved in-depth expertise and proven knowledge in the essential areas of proactive cyber-threat detection and mitigation.

Cisco Cybersecurity Specialist Certification targets security analysts and focuses on the topics of event monitoring, security events, alarm and traffic analysis, as well as incident response.

To be eligible for this certification, candidates need to hold valid Cisco CCNA Security or any Cisco CCIE certification. They need to be comfortable using basic Cisco IOS® Software switch and have solid router configuration skills

Besides meeting the prerequisites, candidates need to pass the 600-199 (SCYBER) exam – Securing Cisco Networks with Threat Detection and Analysis.

This is a 1.5-hour exam with 50−60 queries. It tests candidates’ knowledge and skills required to proactively detect and mitigate network security threats by leveraging features that exist in Cisco and other industry network security products today. The exam covers essential areas of competency including event monitoring, security event/alarm/traffic analysis, and incident response.

According to Cisco, 600-199 exam topics include (Detailed list is available here):

  • Information Gathering and Security Foundations
  • Event Monitoring
  • Security Events and Alarms
  • Traffic Analysis, Collection, and Correlation
  • Incident Response
  • Operational Communications

The exam is closed book and no outside reference materials are allowed, yet we expect some useful information from our online community pretty soon.

]]>