CCNP SECURITY

---

The Implementing Cisco Edge Network Security (SENSS) (300-206) exam tests the knowledge of a network security engineer to configure and implement security on Cisco network perimeter edge devices such as a Cisco switch, Cisco router, and Cisco ASA firewall. This 90-minute exam consists of 65-75 questions and focuses on the technologies used to strengthen security of a network perimeter such as Network Address Translation (NAT), ASA policy and application inspect, and a zone-based firewall on Cisco routers. Candidates can prepare for this exam by taking the Cisco Edge Network Security (SENSS) course.

The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Employment Objective

What you will learn:

Module 01: Implementing Cisco Edge Network Security Solutions (300-206)

1.0 Threat Defense
2.0 Cisco Security Devices GUIs and Secured CLI Management
3.0 Management Services on Cisco Devices
4.0 Troubleshooting, Monitoring and Reporting Tools
5.0 Threat Defense Architectures
6.0 Security Components and Considerations
7.0 Content and Endpoint Security

 

Implementing Cisco Secure Mobility Solutions (300-209)

Exam Description:

The Implementing Cisco Secure Mobility Solutions (SIMOS) (300-209) exam tests a network security engineer on the variety of Virtual Private Network (VPN) solutions that Cisco has available on the Cisco ASA firewall and Cisco IOS software platforms. This 90-minute exam consists of 65–75 questions and assesses the knowledge necessary to properly implement highly secure remote communications through VPN technology, such as remote access SSL VPN and site-to-site VPN (DMVPN, FlexVPN). Candidates can prepare for this exam by taking the Implementing Cisco Secure Mobility Solutions (SIMOS) course.

The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Module 02: Implementing Cisco Secure Mobility Solutions (300-209)

1.0 Secure Communications
2.0 Troubleshooting, Monitoring, and Reporting Tools (as implemented above)
3.0 Secure Communications Architectures

 

Implementing Cisco Secure Access Solutions (300-208)

Description:

The 300-208 Implementing Cisco Secure Access Solutions (SISAS) exam tests whether a network security engineer knows the components and architecture of secure access by utilizing 802.1X and Cisco TrustSec. This 90-minute exam consists of 55 – 65 questions. It tests on Cisco Identity Services Engine (ISE) architecture, solution, and components as an overall network threat mitigation and endpoint control solutions. It also includes the fundamental concepts of BYOD using posture and profiling services of ISE. Candidates can prepare for this exam by taking the Implementing Cisco Secure Access Solutions (SISAS) course.

The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Module 03: Implementing Cisco Secure Access Solutions (300-208)

1.0 Identity Management/Secure Access
2.0 Threat Defense
3.0 Troubleshooting, Monitoring, and Reporting Tools
4.0 Threat Defense Architectures
5.0 Identity Management Architectures

 

Implementing Cisco Threat Control Solutions (300-210)

Description:

The Implementing Cisco Threat Control Solutions (SITCS) exam (300-210) is part of the CCNP Security certification. It tests a network security engineer on advanced firewall architecture and configuration with the Cisco next-generation firewall, utilizing access and identity policies. This new revision of the SITCS exam replaces 300-207, removes some older technologies, and adds coverage for both Cisco Firepower NGIPS and Cisco AMP (Advanced Malware Protection). This 90-minute exam consists of 65-75 questions and covers integration of Intrusion Prevention System (IPS) and context-aware firewall components, as well as Web (Cloud) and Email Security solutions. Candidates can prepare for this exam by taking the Implementing Cisco Threat Control Solutions (SITCS) course.

The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Module 04: Implementing Cisco Threat Control Solutions (300-210)

1.0 Content Security
2.0 Network Threat Defense
3.0 Cisco FirePOWER Next-Generation IPS (NGIPS)
4.0 Security Architectures
5.0 Troubleshooting, Monitoring, and Reporting Tools

 

CISCO CCNP Security certification exams:

Implementing Cisco Edge Network Security (SENSS) (300-206) exam tests the knowledge of a network security engineer to configure and implement security on Cisco network perimeter edge devices such as a Cisco switch, Cisco router, and Cisco ASA firewall.

Exam duration: 90 Minutes

Questions: Exam consists of 65-75 Questions

Implementing Cisco Secure Mobility Solutions (SIMOS) (300-209) exam tests a network security engineer on the variety of Virtual Private Network (VPN) solutions that Cisco has available on the Cisco ASA firewall and Cisco IOS software platforms.

Exam duration: 90 Minutes

Questions: Exam consists of 65-75 Questions

Implementing Cisco Secure Access Solutions (SISAS) 300-208 exam tests whether a network security engineer knows the components and architecture of secure access by utilizing 802.1X and Cisco TrustSec.

Exam duration: 90 Minutes

Questions: Exam consists of 65-65 Questions

Implementing Cisco Threat Control Solutions (SITCS) exam (300-210) is part of the CCNP Security certification. It tests a network security engineer on advanced firewall architecture and configuration with the Cisco next-generation firewall, utilizing access and identity policies. This new revision of the SITCS exam replaces 300-207, removes some older technologies, and adds coverage for both Cisco Firepower NGIPS and Cisco AMP (Advanced Malware Protection).

Exam duration: 90 Minutes

Questions: Exam consists of 65-75 Questions

SCHEDULE DATES