Designing Cisco Security Infrastructure
SDSI

Zielgruppe

• Cisco and Partner’s Systems Engineers 
• Customer Network & Infrastructure Engineers 
• Customer Security/NOC Engineers.

Kursinhalt

• Identify and explain the fundamental concepts of security architecture and how they support the design, building, and maintenance of a secure infrastructure 
• Identify the layers of security infrastructure, core security technologies, and infrastructure concepts 
• Explain how security designs principles contribute to secure infrastructure 
• Identify and discuss security design and management frameworks that can be used for infrastructure security design 
• Explain the importance of and methods for enforcement of regulatory compliance in security design 
• Identify tools that enable detection and response to infrastructure security incidents 
• Explain various strategies that can be implemented to modify traditional security architectures to meet the technical requirements of modern enterprise networks 
• Implement secure network access methods, such as 802.1X, MAC Authentication Bypass (MAB), and web-based authentication 
• Describe security technologies that can be applied to enterprise Wide Area Network (WAN) connections 
• Compare methods to secure network management and control plane traffic 
• Compare the differences between traditional firewalls and next-gen firewalls (NGFWs) and identify the advanced features that NGFWs provide 
• Explain how web application firewalls (WAFs) secure web applications from threats 
• Describe the key features and best practices for deploying intrusion detection system (IDS) and intrusion prevention system (IPS) as part of the enterprise infrastructure security design 
• Explain how endpoints and services in cloud-native or microservice environments can be protected with host-based or distributed firewalls 
• Discuss security technologies that address application data and data that is in transit 
• Identify several security solutions for cloud-native applications, microservices, and containers 
• Explain how technology advancements allow for improvements in today’s infrastructure security 
• Identify tools that enable detection and response to infrastructure security incidents 
• Describe frameworks and controls to access and mitigate security risks for infrastructure 
• Explain how to make security adjustments following a security incident 
• Identify DevSecOps integrations that improve security management and response 
• Discuss how to ensure that automated services are secure 
• Discuss how AI can aid in threat detection and response.

Zertifizierung

Nach Bestehen des Examens erhalten Sie die Spezialisierung Cisco Certified Specialist – Designing Cisco Security Infrastructure und erfüllen die Anforderungen des Concentration Exam für die CCNP® Security Zertifizierung.

Rezertifizierung

Nach drei Jahren, mittels CEP - Continuing Education Program Punkte oder absolvieren des entsprechenden Exams. Mit dem kompletten Besuch eines SDSI-Kurses erreicht man 41 CEP Punkte.