null Book

Chapter 1: Explain common threats against on-premises, hybrid, and cloud environments-On-premises: viruses, trojans, DoS/DDoS attacks, phishing, rootkits, man-in-themiddle attacks, SQL injection, cross-site scripting, malware

Chapter 2: Explain common threats against on-premises, hybrid, and cloud environmentsCloud: data breaches, insecure APIs, DoS/DDoS, compromised credentials

Chapter 3: Compare common security vulnerabilities such as software bugs, weak and/or hardcoded passwords, OWASP top ten, missing encryption ciphers, buffer overflow, path traversal, cross-site scripting/forgery

Chapter 4: Describe functions of the cryptography components such as hashing, encryption, PKI, SSL, IPsec, NAT-T IPv4 for IPsec, preshared key, and certificate-based authorization

Chapter 5: Compare site-to-site and remote access VPN deployment types and components such as virtual tunnel interfaces, standards-based IPsec, DMVPN, FlexVPN, and Cisco Secure Client including high availability considerations

Chapter 6: Describe security intelligence authoring, sharing, and consumption

Chapter 7: Describe the controls used to protect against phishing and social engineering attacks

Chapter 8: Explain North Bound and South Bound APIs in the SDN architecture

Chapter 9: Explain Cisco DNA Center APIs for network provisioning, optimization, monitoring, and troubleshooting

Chapter 10: Interpret basic Python scripts used to call Cisco Security appliances APIs

Chapter 11: Securing the CloudCompare network security solutions that provide intrusion prevention and firewall capabilities

Chapter 12: Securing the CloudDescribe deployment models of network security solutions and architectures that provide intrusion prevention and firewall capabilities

Chapter 13: Describe the components, capabilities, and benefits of NetFlow and Flexible NetFlow records

Chapter 14: Layer 2 methods (network segmentation using VLANs; Layer 2 and port security; DHCP snooping; Dynamic ARP inspection; storm control; PVLANs to segregate network traffic; and defenses against MAC, ARP, VLAN hopping, STP, and DHCP rogue attacks)

Chapter 15: Device hardening of network infrastructure security devices (control plane, data plane, and management plane)

Chapter 16: Securing the Cloud-Implement segmentation, access control policies, AVC, URL filtering, malware protection, and intrusion policies

Chapter 17: Securing the Cloud-Implement management options for network security solutions (single vs. multidevice manager, in-band vs. out-of-band, cloud vs. on-premises)

Chapter 18: Securing the Cloud-Configure AAA for device and network access such as TACACS+ and RADIUS

Chapter 19: Securing the Cloud-Configure secure network management of perimeter security and infrastructure devices such as SNMPv3, NetConf, RestConf, APIs, secure syslog, and NTP with authentication

Chapter 20: Securing the Cloud-Site-to-site VPN using Cisco routers and IOS

Chapter 21: Securing the Cloud-Remote access VPN using Cisco AnyConnect Secure Mobility client

Chapter 22: Securing the Cloud-Debug commands to view IPsec tunnel establishment and troubleshooting

Chapter 23: Securing the Cloud-Identify security solutions for cloud environments-Public, private, hybrid, and community clouds

Chapter 24: Securing the Cloud-Identify security solutions for cloud environments-Cloud service models: SaaS, PaaS, IaaS (NIST 800-145)

Chapter 25: Securing the Cloud-Compare security responsibility for the different cloud service models- Patch management in the cloud

Chapter 26: Securing the Cloud-Compare security responsibility for the different cloud service models - Security assessment in the cloud

Chapter 27: Securing the Cloud-Describe the concept of DevSecOps (CI/CD pipeline, container orchestration, and secure software development)

Chapter 28: Securing the Cloud-Implement application and data security in cloud environments

Chapter 29: Securing the Cloud-Identify security capabilities, deployment models, and policy management to secure the cloud

Chapter 30: Securing the Cloud-Configure cloud logging and monitoring methodologies

Chapter 31: Securing the Cloud-Describe application and workload security concepts

Chapter 32: Content Security-Implement traffic redirection and capture methods for web proxy

Chapter 33: Content Security-Describe web proxy identity and authentication including transparent user identification

Chapter 34: Content Security-Compare the components, capabilities, and benefits of on-premises, hybrid, and cloudbased email and web solutions (Cisco Secure Email Gateway, Cisco Secure Email Cloud Gateway, and Cisco Secure Web Appliance)

Chapter 35: Content Security-Configure and verify web and email security deployment methods to protect onpremises, hybrid, and remote users

Chapter 36: Content Security-Configure and verify email security features such as SPAM filtering, antimalware filtering, DLP, blocklisting, and email encryption

Chapter 37: Content Security-Configure and verify Cisco Umbrella Secure Internet Gateway and web security features such as blocklisting, URL filtering, malware scanning, URL categorization, web application filtering, and TLS decryption

Chapter 38: Content Security-Describe the components, capabilities, and benefits of Cisco Umbrella

Chapter 39: Content Security-Configure and verify web security controls on Cisco Umbrella (identities, URL content settings, destination lists, and reporting)

Chapter 40: Endpoint Protection and Detection-Compare Endpoint Protection Platforms (EPP) and Endpoint Detection & Response (EDR) solutions

Chapter 41: Endpoint Protection and Detection-Configure endpoint antimalware protection using Cisco Secure Endpoint

Chapter 42: Endpoint Protection and Detection-Configure and verify outbreak control and quarantines to limit infection

Chapter 43: Endpoint Protection and Detection-Describe justifications for endpoint-based security

Chapter 44: Endpoint Protection and Detection-Describe the value of endpoint device management and asset inventory systems such as MDM

Chapter 45: Endpoint Protection and Detection-Describe the uses and importance of a multifactor authentication (MFA) strategy

Chapter 46: Endpoint Protection and Detection-Describe endpoint posture assessment solutions to ensure endpoint security

Chapter 47: Endpoint Protection and Detection-Explain the importance of an endpoint patching strategy

Chapter 48: Secure Network Access, Visibility, and Enforcement-Describe identity management and secure network access concepts such as guest services, profiling, posture assessment and BYOD

Chapter 49: Secure Network Access, Visibility, and Enforcement-Configure and verify network access control mechanisms such as 802.1X, MAB, WebAuth

Chapter 50: Secure Network Access, Visibility, and Enforcement-Describe network access with CoA

Chapter 51: Secure Network Access, Visibility, and Enforcement-Describe the benefits of device compliance and application control

Chapter 52: Secure Network Access, Visibility, and Enforcement-Explain exfiltration techniques (DNS tunneling, HTTPS, email, FTP/SSH/SCP/SFTP, ICMP, Messenger, IRC, NTP)

Chapter 53: Secure Network Access, Visibility, and Enforcement-Describe the benefits of network telemetry

Chapter 54: Secure Network Access, Visibility, and Enforcement-Describe the components, capabilities, and benefits of these security products and solutions-Cisco Secure Network Analytics

Chapter 55: Secure Network Access, Visibility, and Enforcement-Describe the components, capabilities, and benefits of these security products and solutions-Cisco Secure Cloud Analytics

Chapter 56: Secure Network Access, Visibility, and Enforcement-Describe the components, capabilities, and benefits of these security products and solutions-Cisco pxGrid

Chapter 57: Secure Network Access, Visibility, and Enforcement-Describe the components, capabilities, and benefits of these security products and solutions-Cisco Umbrella Investigate

Chapter 58: Secure Network Access, Visibility, and Enforcement-Describe the components, capabilities, and benefits of these security products and solutions-Cisco Cognitive Intelligence

Chapter 59: Secure Network Access, Visibility, and Enforcement-Describe the components, capabilities, and benefits of these security products and solutions-Cisco Encrypted Traffic Analytics

Chapter 60: Secure Network Access, Visibility, and Enforcement-Describe the components, capabilities, and benefits of these security products and solutions-Cisco Secure Client Network Visibility Module (NVM)

Don't Miss Out!

Combo Packages at a Discount: Get one that best fits your learning needs.