See how Insoft Services is responding to COVID-19

SECCLD 1.0 – Securing Cloud Deployments with Cisco Technologies

X

Contact Us

We would love to hear from you. Please complete this form to pre-book or request further information about our delivery options.

Subscribe

I'd like to receive emails with the latest updates and promotions from Insoft.

Data Protection & Privacy

I hereby allow Insoft Ltd. to contact me on this topic. Further, I authorise Insoft Ltd. processing, using collecting and storing my personal data for the purpose of these activities. All your data will be protected and secured as outlined in our privacy policy.


Upcoming Courses

Nov 9 - Nov 12, 2020
09:00 - 17:00 (CEST)
Online

Feb 15 - Feb 18, 2021
09:00 - 17:00 (CEST)
Online

May 25 - May 28, 2021
09:00 - 17:00 (CEST)
Online

Aug 17 - Aug 20, 2021
09:00 - 17:00 (CEST)
Online

Nov 8 - Nov 11, 2021
09:00 - 17:00 (CEST)
Online

SECCLD 1.0 – Securing Cloud Deployments with Cisco Technologies
4 days  (Instructor Led Online)  |  Network Security

Course Details

The Securing Cloud Deployments with Cisco Technologies (SECCLD) v1.0 course shows you how to implement Cisco® Cloud Security solutions to secure access to the cloud, workloads in the cloud, and software as a service (SaaS) user accounts, applications, and data. Through expert instruction and hands-on labs, you’ll learn a comprehensive set of skills and technologies including:

  • How to use key Cisco cloud security solutions;
  • Detect suspicious traffic flows, policy violations, and compromised devices;
  • Implement security controls for cloud environments;
  • Implement cloud security management.

This course covers usage of Cisco Cloudlock, Cisco Umbrella™, Cisco Cloud Email Security, Cisco Advanced Malware Protection (AMP) for Endpoints, Cisco Stealthwatch® Cloud and Enterprise, Cisco Firepower® NGFW (next-generation firewall), and more.

 

See other Cisco courses available

Objectives

After taking Securing Cloud Deployments with Cisco Technologies (SECCLD) v1.0 course, you should be able to:

  • Contrast the various cloud service and deployment models
  • Implement the Cisco Security Solution for SaaS using Cisco Cloudlock Micro Services
  • Deploy cloud security solutions using Cisco AMP for Endpoints, Cisco Umbrella, and Cisco Cloud Email Security
  • Define Cisco cloud security solutions for protection and visibility using Cisco virtual appliances and Cisco Stealthwatch Cloud
  • Describe the network as a sensor and enforcer using Cisco Identity Services Engine (ISE), Cisco Stealthwatch Enterprise, and Cisco TrustSec®
  • Implement Cisco Firepower NGFW Virtual (NGFWv) and Cisco Stealthwatch Cloud to provide protection and visibility in AWS environments
  • Explain how to protect the cloud management infrastructure by using specific examples, defined best practices, and AWS reporting capabilities

Outline

Introducing the Cloud and Cloud Security

  • Describe the Evolution of Cloud Computing
  • Explain the Cloud Service Models
  • Explore the Security Responsibilities Within the Infrastructure as a Service (IaaS) Service Model
  • Explore the Security Responsibilities Within the Platform as a Service (PaaS) Service Model
  • Explore the Security Responsibilities Within the SaaS Service Model
  • Describe Cloud Deployment Models
  • Describe Cloud Security Basics

Implementing the CiscSecurity Solution for SaaS Access Control

  • Explore Security Challenges for Customers Using SaaS
  • Describe User and Entity Behavior Analytics, Data Loss Prevention (DLP), and Apps Firewall
  • Describe Cloud Access Security Broker (CASB)
  • Describe CiscCloudLock as the CASB
  • Describe OAuth and OAuth Attacks

Deploying CiscCloud-Based Security Solutions for Endpoints and Content Security

  • Describe CiscCloud Security Solutions for Endpoints
  • Describe AMP for Endpoints Architecture
  • Describe CiscUmbrella
  • Describe CiscCloud Email Security
  • Design Comprehensive Endpoint Security

Introducing CiscSecurity Solutions for Cloud Protection and Visibility

  • Describe Network Function Virtualization (NFV)
  • Describe CiscSecure Architectures for Enterprises (CiscSAFE)
  • Describe CiscNGFWv/CiscFirepower Management Center Virtual (FMCv)/CiscAMP for Networks
  • Describe CiscASAv
  • Describe CiscServices Router 1000V (CSR1Kv)
  • Describe CiscStealthwatch Cloud
  • Describe CiscTetration Cloud Zero-Trust Model

Describing the Network as the Sensor and Enforcer

  • Describe CiscStealthwatch Enterprise
  • Describe CiscISE Functions and Personas
  • Describe CiscTrustSec
  • Describe CiscStealthwatch and CiscISE Integration
  • Describe CiscEncrypted Traffic Analytics (ETA)

Implementing CiscSecurity Solutions in AWS

  • Explain AWS Security Offerings
  • Describe AWS Elastic Compute Cloud (EC2) and Virtual Private Cloud (VPC)
  • Discover CiscSecurity Solutions in AWS
  • Explain CiscStealthwatch Cloud in AWS

Describing Cloud Security Management

  • Describe Cloud Management and APIs
  • Explain API Protection
  • Illustrate an API Example: Integrate tISE Using pxGrid
  • Identify SecDevOps Best Practices
  • Illustrate a CiscCloud Security Management Tool Example: CiscDefense Orchestrator
  • Illustrate a CiscCloud Security Management Tool Example: CiscCloudCenter™
  • Describe CiscApplication Centric Infrastructure (ACI)
  • Describe AWS Reporting Tools

Target Audience

SECCLD course is open to engineers, administrators, and security-minded users of public, private, and hybrid cloud infrastructures responsible for implementing security in cloud environments:

  • Security architects
  • Cloud architects
  • Security engineers
  • Cloud engineers
  • System engineers
  • Cisco integrators and partners

Prerequisites

To fully benefit from SECCLD course, you should have completed the following course or obtained the equivalent knowledge and skills:

  • Knowledge of cloud computing and virtualization software basics
  • Ability to perform basic UNIX-like OS commands
  • Cisco CCNP® security knowledge or understanding of the following topic areas:
  1. Cisco Adaptive Security Appliance (ASA) and Adaptive Security Virtual Appliance (ASAv) deployment
  2. Cisco IOS Flexible NetFlow operations
    Available in this course: Implementing Cisco Edge Network Security Solutions (SENSS)
  3. Cisco NGFW (Cisco Firepower Threat Defense [FTD]), Cisco Firepower, and Cisco Firepower Management Center (FMC) deployment
  4. Cisco Content Security operations including Cisco Web Security Appliance (WSA)/ Cisco Email Security Appliance (ESA)/ Cisco Cloud Web Security (CWS)
  5. Cisco AMP for network and endpoints deployment
    Available in this course: Implementing Cisco Threat Control Solutions (SITCS)
  6. Cisco ISE operations and Cisco TrustSec architecture
    Available in this course: Implementing Cisco Secure Access Solutions (SISAS)
  7. VPN operation
    Available in this course: Implementing Cisco Secure Mobility Solutions (SIMOS)