Network Journey

NEXT ONLINE BATCH STARTING FROM

  • This Saturday 18-MAY-2024 @ 7:30 PM INDIA
Days
Hours
Minutes
Seconds

CCIE Security Lab Training

5-in-1 Combo Training

Collections Of Top Five Cisco Security Certifications Under Single Bundle Combo Kit
  • 100 hours of Online Instructor-Led Training.
  • Latest [2024] & Updated Course Content.
  • 13+ Years Industry Experienced & professional trainers.
  • 1 to 1 Mentoring for quality results.
  • 100% passing score.
  • 24*7 Unlimited Lab Access.
  • Reading Notes, PDF, Class PPT & Workbooks.

Learn, Lab & Get Placed

Register 2-Free Trial Class

You Learn Top Five Cisco Security Certifications Under Single Package with In-Depth Lab Experience!

Early bird Offer 25% Off

1. Cisco SCOR

18-MAY-2024 @ 7:30 PM INDIA (Saturday)

2. Cisco SVPN

18-JUNE-2024 @ 7:30 PM INDIA (Saturday)

STARTING FROM 21-Oct-2023

 

COURSE SCHEDULE

3. Cisco ISE

18-JULY-2024 @ 7:30 PM INDIA (Saturday)

4. Cisco ASA | Firepower

18-AUG-2024 @ 7:30 PM INDIA (Saturday)

5. CCIE Sec Bootcamp

18-SEPT-2024 @ 7:30 PM INDIA (Saturday)

BENEFITS JOINING OUR JOB ASSURED TRAINING WITH INTERNSHIP OPPORTUNITY

Key Features

Book Demo Class

Online Instructor-led Weekend Course

Designed For Working Professionals

Five Cisco Module

Covered Under Single Bundle Pack

Server Access

5-month Lab Rack Server Access Provided

Multiple Re-take

Multiple Re-take Of Complete Live Batch

24 X 7 Support

24 X 7 After Class, Lab Support Available

Lifetime Access

To Recordings, Study Material & Pdfs

Lab Topology

BE READY TO PRACTISE ON MOST IN-DEPTH LAB TRAINING COURSE

 
This is our CCNP ENCOR + ENARSI Practice Lab Topology
This is our CCNA Practice Lab Topology
Syllabus Curriculum

CCIE Security v6.1

  • 1.1 Deployment modes on Cisco ASA and Cisco FTD
  • 1.1.a Routed
  • 1.1.b Transparent
  • 1.1.c Single
  • 1.1.d Multi-context
  • 1.1.e Multi-instance
  • 1.2 Firewall features on Cisco ASA and FTD
  • 1.2.a NAT
  • 1.2.b Application inspection
  • 1.2.c Traffic zones
  • 1.2.d Policy-based routing
  • 1.2.e Traffic redirection to service modules
  • 1.2.f Identity firewall
  • 1.3 Security features on Cisco IOS/IOS XE
  • 1.3.a Application awareness
  • 1.3.b Zone-based firewall
  • 1.3.c NAT
  • 1.4 Cisco FMC features
  • 1.4.a Alerting
  • 1.4.b Logging
  • 1.4.c Reporting
  • 1.4.d Dynamic objects
  • 1.5 Cisco NGIPS deployment modes
  • 1.5.a In-line
  • 1.5.b Passive
  • 1.5.c TAP
  • 1.6 Cisco NGFW features
  • 1.6.a SSL inspection
  • 1.6.b User identity
  • 1.6.c Geolocation
  • 1.6.d AVC
  • 1.7 Detect and mitigate common types of attacks
  • 1.7.a DoS/DDoS
  • 1.7.b Evasion techniques
  • 1.7.c Spoofing
  • 1.7.d Man-in-the-middle
  • 1.7.e Botnet
  • 1.8 Clustering and high availability features on Cisco ASA and Cisco FTD
  • 1.9 Policies and rules for traffic control on Cisco ASA and Cisco FTD
  • 1.10 Routing protocols security on Cisco IOS, Cisco ASA, and Cisco FTD
  • 1.11 Network connectivity through Cisco ASA and Cisco FTD
  • 1.12 Correlation and remediation rules on Cisco FMC
  • 2.1 Cisco AnyConnect client-based, remote-access VPN technologies on Cisco ASA, Cisco
    FTD, and Cisco routers
  • 2.2 Cisco IOS CA for VPN authentication
  • 2.3 FlexVPN, DMVPN, and IPsec L2L tunnels
  • 2.4 VPN high availability methods
  • 2.4.a Cisco ASA VPN clustering
  • 2.4.b Dual-hub DMVPN deployments
  • 2.5 Infrastructure segmentation methods
  • 2.5.a VLAN
  • 2.5.b PVLAN
  • 2.5.c GRE
  • 2.5.d VRF-Lite
  • 2.6 Microsegmentation with Cisco TrustSec using SFT and SXP
  • 3.1 Device hardening techniques and control plane protection methods
  • 3.1.a CoPP
  • 3.1.b IP source routing
  • 3.1.c iACLs
  • 3.2 Management plane protection techniques
  • 3.2.a CPU
  • 3.2.b Memory thresholding
  • 3.2.c Securing device access
  • 3.3 Data plane protection techniques
  • 3.3.a uRPF
  • 3.3.b QoS
  • 3.3.c RTBH
  • 3.4 Layer 2 security techniques
  • 3.4.a DAI
  • 3.4.b IPDT
  • 3.4.c STP security
  • 3.4.d Port security
  • 3.4.e DHCP snooping
  • 3.4.f RA Guard
  • 3.4.g VACL
  • 3.5 Wireless security technologies
  • 3.5.a WPA
  • 3.5.b WPA2
  • 3.5.c WPA3
  • 3.5.d TKIP
  • 3.5.e AES
  • 3.6 Monitoring protocols
  • 3.6.a NetFlow/IPFIX/NSEL
  • 3.6.b SNMP
  • 3.6.c SYSLOG
  • 3.6.d RMON
  • 3.6.e eStreamer
  • 3.7 Security features to comply with organizational security policies, procedures, and
    standards BCP 38
  • 3.7.a ISO 27001
  • 3.7.b RFC 2827
  • 3.7.c PCI-DSS
  • 3.8 Cisco SAFE model to validate network security design and to identify threats to different
    PINs
  • 3.9 Interaction with network devices through APIs using basic Python scripts
  • 3.9.a REST API requests and responses
  • 3.9.a (i) HTTP action verbs, error codes, cookies, headers
  • 3.9.a (ii) JSON or XML payload
  • 3.9.a (iii) Authentication
  • 3.9.b Data encoding formats
  • 3.9.b (i) JSON
  • 3.9.b (ii) XML
  • 3.9.b (iii) YAML
  • 3.10 Cisco DNAC Northbound APIs use cases
  • 3.10.a Authentication and authorization
  • 3.10.b Network discovery
  • 3.10.c Network device
  • 3.10.d Network host
  • 4.1 Cisco ISE scalability using multiple nodes and personas
  • 4.2 Cisco switches and Cisco Wireless LAN Controllers for network access AAA with Cisco ISE
  • 4.3 Cisco devices for administrative access with Cisco ISE
  • 4.4 AAA for network access with 802.1X and MAB using Cisco ISE
  • 4.5 Guest lifecycle management using Cisco ISE and Cisco WLC
  • 4.6 BYOD on-boarding and network access flows
  • 4.7 Cisco ISE integration with external identity sources
  • 4.7.a LDAP
  • 4.7.b AD
  • 4.7.c External RADIUS
  • 4.8 Provisioning Cisco AnyConnect with Cisco ISE and Cisco ASA
  • 4.9 Posture assessment with Cisco ISE
  • 4.10 Endpoint profiling using Cisco ISE and Cisco network infrastructure including device
    sensor
  • 4.11 Integration of MDM with Cisco ISE
  • 4.12 Certification-based authentication using Cisco ISE
  • 4.13 Authentication methods
  • 4.13.a EAP Chaining and TEAP
  • 4.13.b MAR
  • 4.14 Identity mapping on Cisco ASA, Cisco ISE, Cisco WSA, and Cisco FTD
  • 4.15 pxGrid integration between security devices Cisco WSA, Cisco ISE, and Cisco FMC
  • 4.16 Integration of Cisco ISE with multifactor authentication
  • 4.17 Access control and single sign-on using Cisco DUO security technology
  • 4.18 Cisco IBNS 2.0 (C3PL) for authentication, access control, and user policy enforcement
  • 5.1 Cisco AMP for networks, Cisco AMP for endpoints, and Cisco AMP for content security
    (Cisco ESA, and Cisco WSA)
  • 5.2 Detect, analyze, and mitigate malware incidents
  • 5.3 Perform packet capture and analysis using Wireshark, tcpdump, SPAN, ERSPAN, and
    RSPAN
  • 5.4 Cloud security
  • 5.4.a DNS proxy through Cisco Umbrella virtual appliance
  • 5.4.b DNS security policies in Cisco Umbrella
  • 5.4.c RBI policies in Cisco Umbrella
  • 5.4.d CASB policies in Cisco Umbrella
  • 5.4.e DLP policies in Cisco Umbrella
  • 5.5 Web filtering, user identification, and Application Visibility and Control (AVC) on Cisco
    FTD and Cisco WSA
  • 5.6 WCCP redirection on Cisco devices
  • 5.7 Email security features
  • 5.7.a Mail policies
  • 5.7.b DLP
  • 5.7.c Quarantine
  • 5.7.d Authentication
  • 5.7.e Encryption
  • 5.8 HTTP decryption and inspection on Cisco FTD, Cisco WSA, and Cisco Umbrella
  • 5.9 Cisco SMA for centralized content security management
  • 5.10 Cisco advanced threat solutions and their integration: Cisco Stealthwatch, Cisco FMC,
    Cisco AMP, Cisco CTA, Threat Grid, ETA, Cisco WSA, Cisco SMA, Cisco Threat Response,
    and Cisco Umbrella

Cisco SCOR v1.1 (350-701)

  • 1.1 Explain common threats against on-premises and cloud environments
  • 1.1.a On-premises: viruses, trojans, DoS/DDoS attacks, phishing, rootkits, man-in-themiddle attacks, SQL injection, cross-site scripting, malware
  • 1.1.b Cloud: data breaches, insecure APIs, DoS/DDoS, compromised credentials
  • 1.2 Compare common security vulnerabilities such as software bugs, weak and/or
    hardcoded passwords, SQL injection, missing encryption, buffer overflow, path traversal,
    cross-site scripting/forgery
  • 1.3 Describe functions of the cryptography components such as hashing, encryption, PKI,
    SSL, IPsec, NAT-T IPv4 for IPsec, pre-shared key and certificate based authorization
  • 1.4 Compare site-to-site VPN and remote access VPN deployment types such as sVTI, IPsec,
    Cryptomap, DMVPN, FLEXVPN including high availability considerations, and
    AnyConnect
  • 1.5 Describe security intelligence authoring, sharing, and consumption
  • 1.6 Explain the role of the endpoint in protecting humans from phishing and social
    engineering attacks
  • 1.7 Explain North Bound and South Bound APIs in the SDN architecture
  • 1.8 Explain DNAC APIs for network provisioning, optimization, monitoring, and
    troubleshooting
  • 1.9 Interpret basic Python scripts used to call Cisco Security appliances APIs
  • 2.1 Compare network security solutions that provide intrusion prevention and firewall
    capabilities
  • 2.2 Describe deployment models of network security solutions and architectures that
    provide intrusion prevention and firewall capabilities
  • 2.3 Describe the components, capabilities, and benefits of NetFlow and Flexible NetFlow
    records
  • 2.4 Configure and verify network infrastructure security methods (router, switch, wireless)
  • 2.4.a Layer 2 methods (Network segmentation using VLANs and VRF-lite; Layer 2 and
    port security; DHCP snooping; Dynamic ARP inspection; storm control; PVLANs
    to segregate network traffic; and defenses against MAC, ARP, VLAN hopping,
    STP, and DHCP rogue attacks
  • 2.4.b Device hardening of network infrastructure security devices (control plane, data
    plane, management plane, and routing protocol security)
  • 2.5 Implement segmentation, access control policies, AVC, URL filtering, and malware
    protection
  • 2.6 Implement management options for network security solutions such as intrusion
    prevention and perimeter security (Single vs. multidevice manager, in-band vs. out-ofband, CDP, DNS, SCP, SFTP, and DHCP security and risks)
  • 2.7 Configure AAA for device and network access (authentication and authorization,
    TACACS+, RADIUS and RADIUS flows, accounting, and dACL)
  • 2.8 Configure secure network management of perimeter security and infrastructure devices
    (secure device management, SNMPv3, views, groups, users, authentication, and
    encryption, secure logging, and NTP with authentication)
  • 2.9 Configure and verify site-to-site VPN and remote access VPN
  • 2.9.a Site-to-site VPN utilizing Cisco routers and IOS
  • 2.9.b Remote access VPN using Cisco AnyConnect Secure Mobility client
  • 2.9.c Debug commands to view IPsec tunnel establishment and troubleshooting
  • 3.1 Identify security solutions for cloud environments
  • 3.1.a Public, private, hybrid, and community clouds
  • 3.1.b Cloud service models: SaaS, PaaS, IaaS (NIST 800-145)
  • 3.2 Compare the customer vs. provider security responsibility for the different cloud service
    models
  • 3.2.a Patch management in the cloud
  • 3.2.b Security assessment in the cloud
  • 3.2.c Cloud-delivered security solutions such as firewall, management, proxy, security
    intelligence, and CASB
  • 3.3 Describe the concept of DevSecOps (CI/CD pipeline, container orchestration, and
    security
    2019 Cisco Systems, 
  • 3.4 Implement application and data security in cloud environments
  • 3.5 Identify security capabilities, deployment models, and policy management to secure the
    cloud
  • 3.6 Configure cloud logging and monitoring methodologies
  • 3.7 Describe application and workload security concepts
  • 4.1 Implement traffic redirection and capture methods
  • 4.2 Describe web proxy identity and authentication including transparent user identification
  • 4.3 Compare the components, capabilities, and benefits of local and cloud-based email and
    web solutions (ESA, CES, WSA)
  • 4.4 Configure and verify web and email security deployment methods to protect onpremises and remote users (inbound and outbound controls and policy management)
  • 4.5 Configure and verify email security features such as SPAM filtering, antimalware
    filtering, DLP, block listing, and email encryption
  • 4.6 Configure and verify secure internet gateway and web security features such as block
    listing, URL filtering, malware scanning, URL categorization, web application filtering,
    and TLS decryption
  • 4.7 Describe the components, capabilities, and benefits of Cisco Umbrella
  • 4.8 Configure and verify web security controls on Cisco Umbrella (identities, URL content
    settings, destination lists, and reporting)
  • 5.1 Compare Endpoint Protection Platforms (EPP) and Endpoint Detection & Response
    (EDR) solutions
  • 5.2 Explain antimalware, retrospective security, Indication of Compromise (IOC), antivirus,
    dynamic file analysis, and endpoint-sourced telemetry
  • 5.3 Configure and verify outbreak control and quarantines to limit infection
  • 5.4 Describe justifications for endpoint-based security
  • 5.5 Describe the value of endpoint device management and asset inventory such as MDM
  • 5.6 Describe the uses and importance of a multifactor authentication (MFA) strategy
  • 5.7 Describe endpoint posture assessment solutions to ensure endpoint security
  • 5.8 Explain the importance of an endpoint patching strategy
  • 6.1 Describe identity management and secure network access concepts such as guest
    services, profiling, posture assessment and BYOD
  • 6.2 Configure and verify network access device functionality such as 802.1X, MAB, WebAuth
  • 6.3 Describe network access with CoA
  • 6.4 Describe the benefits of device compliance and application control
  • 6.5 Explain exfiltration techniques (DNS tunneling, HTTPS, email, FTP/SSH/SCP/SFTP, ICMP,
    Messenger, IRC, NTP)
  • 6.6 Describe the benefits of network telemetry
  • 6.7 Describe the components, capabilities, and benefits of these security products and
    solutions
  • 6.7.a Cisco Stealthwatch
  • 6.7.b Cisco Stealthwatch Cloud
  • 6.7.c Cisco pxGrid
  • 6.7.d Cisco Umbrella Investigate
  • 6.7.e Cisco Cognitive Threat Analytics
  • 6.7.f Cisco Encrypted Traffic Analytics
  • 6.7.g Cisco AnyConnect Network Visibility Module (NVM)

Cisco SVPN v1.1 (300-730)

  • 1.1 Configure personas
  • 1.2 Describe deployment options
  • 1.3 Describe hardware and virtual machine performance specifications
  • 1.4 Describe zero-touch provisioning
  • 2.1 Configure native AD and LDAP
  • 2.2 Describe identity store options
  • 2.2.a LDAP
  • 2.2.b AD
  • 2.2.c PKI
  • 2.2.d Multifactor authentication
  • 2.2.e Local
  • 2.2.f SAML IDP
  • 2.2.g Rest ID
  • 2.3 Configure wireless network access using 802.1X
  • 2.4 Configure wired network access using 802.1X and IBNS 2.0
  • 2.4.a Monitor mode
  • 2.4.b Low impact
  • 2.4.c Closed mode
  • 2.5 Implement MAB
  • 2.6 Configure Cisco TrustSec
  • 2.7 Configure policies including authentication and authorization profiles
  • 3.1 Configure web authentication
  • 3.2 Configure guest access services
  • 3.3 Configure sponsor and guest portals
  • 4.1 Implement profiler services
  • 4.2 Implement probes
  • 4.3 Implement CoA
  • 4.4 Configure endpoint identity management
  • 5.1 Describe Cisco BYOD functionality
  • 5.1.a Use cases and requirements
  • 5.1.b Solution components
  • 5.1.c BYOD flow
  • 5.2 Configure BYOD device on-boarding using internal CA with Cisco switches and Cisco
    wireless LAN controllers
  • 5.3 Configure certificates for BYOD
  • 5.4 Configure block list/allow list
  • 6.1 Describe endpoint compliance, posture services, and client provisioning
  • 6.2 Configure posture conditions and policy, and client provisioning
  • 6.3 Configure the compliance module
  • 6.4 Configure posture agents and operational modes
  • 6.5 Describe supplicant, supplicant options, authenticator, and server
  • 7.1 Compare AAA protocols
  • 7.2 Configure TACACS+ device administration and command authorization

Cisco ISE v1.1 (300-715)

  • 1.1 Configure personas
  • 1.2 Describe deployment options
  • 1.3 Describe hardware and virtual machine performance specifications
  • 1.4 Describe zero-touch provisioning
  • 2.1 Configure native AD and LDAP
  • 2.2 Describe identity store options
  • 2.2.a LDAP
  • 2.2.b AD
  • 2.2.c PKI
  • 2.2.d Multifactor authentication
  • 2.2.e Local
  • 2.2.f SAML IDP
  • 2.2.g Rest ID
  • 2.3 Configure wireless network access using 802.1X
  • 2.4 Configure wired network access using 802.1X and IBNS 2.0
  • 2.4.a Monitor mode
  • 2.4.b Low impact
  • 2.4.c Closed mode
  • 2.5 Implement MAB
  • 2.6 Configure Cisco TrustSec
  • 2.7 Configure policies including authentication and authorization profiles
  • 3.1 Configure web authentication
  • 3.2 Configure guest access services
  • 3.3 Configure sponsor and guest portals
  • 4.1 Implement profiler services
  • 4.2 Implement probes
  • 4.3 Implement CoA
  • 4.4 Configure endpoint identity management
  • 4.1 Implement profiler services
  • 4.2 Implement probes
  • 4.3 Implement CoA
  • 4.4 Configure endpoint identity management
  • 5.1 Describe Cisco BYOD functionality
  • 5.1.a Use cases and requirements
  • 5.1.b Solution components
  • 5.1.c BYOD flow
  • 5.2 Configure BYOD device on-boarding using internal CA with Cisco switches and Cisco
    wireless LAN controllers
  • 5.3 Configure certificates for BYOD
  • 5.4 Configure block list/allow list
  • 6.1 Describe endpoint compliance, posture services, and client provisioning
  • 6.2 Configure posture conditions and policy, and client provisioning
  • 6.3 Configure the compliance module
  • 6.4 Configure posture agents and operational modes
  • 6.5 Describe supplicant, supplicant options, authenticator, and server
  • 7.1 Compare AAA protocols
  • 7.2 Configure TACACS+ device administration and command authorization

Cisco ASA\Firepower v1.1 (300-710)

  • 1.1 Implement Secure Firewall modes
  • 1.1.a Routed mode
  • 1.1.b Transparent mode
  • 1.2 Implement NGIPS modes
  • 1.2.a Passive
  • 1.2.b Inline
  • 1.3 Implement high availability options
  • 1.3.a Port channels
  • 1.3.b Failover
  • 1.3.c Equal-Cost Multipath (ECMP) routing
  • 1.3.d Static route tracking
  • 1.3.e Clustering
  • 1.4 Describe virtual appliance on-premises and cloud deployment
  • 2.1 Configure system settings in Secure Firewall Management Center
  • 2.2 Configure policies in Secure Firewall Management Center
  • 2.2.a Access control
  • 2.2.b Intrusion
  • 2.2.c Malware & File
  • 2.2.d DNS
  • 2.2.e Identity
  • 2.2.f Decryption
  • 2.2.g Prefilter
  • 2.3 Configure these features using Secure Firewall Management Center
  • 2.3.a Network discovery
  • 2.3.b Application detectors
  • 2.3.c Correlation
  • 2.3.d Encrypted visibility engine
  • 2.4 Configure objects using Secure Firewall Management Center
  • 2.4.a Object management
  • 2.4.b Intrusion rules
  • 2.5 Configure devices using Secure Firewall Management Center
  • 2.5.a Device management
  • 2.5.b NAT
  • 2.5.c VPN
  • 2.5.d QoS
  • 2.5.e Platform settings
  • 2.5.f Certificates
  • 2.5.g Routing
  • 2.6 Describe the use of Snort within Secure Firewall Threat Defense
  • 3.1 Troubleshoot with Secure Firewall Management Center GUI and device CLI
  • 3.2 Configure dashboards and reporting in Secure Firewall Management Center
  • 3.3 Troubleshoot using:
  • 3.3.a packet capture procedures
  • 3.3.b Packet Tracer
  • 3.4 Analyze risk and standard reports
  • 3.5 Describe device management tools
  • 3.5.a Cisco Defense Orchestrator
  • 3.5.b Cloud-delivered Firewall Management Center
  • 3.5.c Secure Firewall Device Manager
  • 3.5.d Secure Firewall Management Center
  • 4.1 Configure Cisco Secure Firewall Malware Defense (formerly AMP for Networks) in
    Secure Firewall Management Center
  • 4.2 Configure Cisco Secure Endpoint (formerly AMP for Endpoints) integration with Secure
    Firewall Management Center
  • 4.3 Implement Threat Intelligence Director for third-party security intelligence feeds
  • 4.4 Describe using Cisco SecureX for security investigations
  • 4.5 Describe Secure Firewall Management Center integration using pxGrid
  • 4.6 Describe Rapid Threat Containment (RTC) functionality within Secure Firewall
    Management Center
  • 4.7 Describe Cisco Security Analytics and Logging

Cisco SAUTO v1.1 (300-735)

  • 1.1 Use common version control operations with git (add, clone, push, commit, diff,
    branching, and merging conflict)
  • 1.2 Describe characteristics of API styles (REST and RPC)
  • 1.3 Describe the challenges encountered and patterns used when consuming APIs
    synchronously and asynchronously
  • 1.4 Interpret Python scripts containing data types, functions, classes, conditions, and
    looping
  • 1.5 Describe the benefits of Python virtual environments
  • 1.6 Explain the benefits of using network configuration tools such as Ansible and Terraform
    for automating security platforms
  • 2.1 Describe the event streaming capabilities of Cisco Secure Firewall Management Center
    (formerly Firepower Management Center) eStreamer API
  • 2.2 Describe the capabilities and components of these APIs
  • 2.2.a Cisco Secure Firewall Management Center and Cisco Secure Firewall Device
    Manager
  • 2.2.b Cisco Identity Services Engine (ISE)
  • 2.2.c pxGRID
  • 2.2.d Cisco Secure Network Analytics (formerly Stealthwatch) Enterprise
  • 2.3 Implement firewall objects, rules, intrusion policies, and access policies using Cisco
    Secure Firewall Management Center API
  • 2.4 Implement firewall objects, rules, intrusion policies, and access policies using Cisco
    Secure Firewall Device Manager API
  • 2.5 Construct a Python script for pxGrid to retrieve information such as endpoint device
    type, network policy, and security telemetry
  • 2.6 Construct API requests using Cisco Secure Network Analytics API
  • 2.6.a Perform configuration modifications
  • 2.6.b Generate rich reports
  • 3.1 Describe the capabilities and components of these APIs
  • 3.1.a Cisco Cloud Security APIs (such as Umbrella APIs, Investigate APIs)
  • 3.1.b Cisco Secure Endpoint (formerly AMP for Endpoints) API
  • 3.1.c Cisco Secure Malware Analytics (formerly ThreatGRID) API
  • 3.1.d Cisco XDR solution APIs (such as SecureX API and Threat Response API)
  • 3.2 Construct an Umbrella Investigate API request
  • 3.3 Construct Cisco Secure Endpoint API requests for event, computer, and policies
  • 3.4 Construct Cisco Secure Malware Analytics API request for search, sample feeds, IoC
    feeds, and threat disposition
  • 3.5 Construct Cisco XDR solution API calls
  • 3.6 Describe the orchestration capabilities of Cisco XDR solution
  • 4.1 Describe the capabilities and components of these APIs
  • 4.1.a Umbrella APIs
  • 4.1.b Cisco Secure Cloud Analytics (formerly Steathwatch Cloud) APIs
  • 4.1.c Cisco Secure Email and Web Manager (formerly Security Management
    Appliance) APIs
  • 4.2 Construct Secure Cloud Analytics API request for reporting
  • 4.3 Construct an Umbrella API request for Reports and Policies
  • 4.4 Construct a report using Secure Email and Web Manager API request

Bonus Topology

BE READY TO PRACTISE ON MOST IN-DEPTH LAB TRAINING COURSE

 
This is our CCNP ENCOR + ENARSI Practice Lab Topology
Book Demo Class

FAQ

Most frequent questions and answers
CCIE is a prestigious and advanced certification offered by Cisco Systems, validating expert-level networking skills in designing, implementing, and troubleshooting complex networks.
CCIE certification is recognized globally and signifies a high level of expertise. It can lead to better job opportunities, higher earning potential, and enhanced credibility in the field of networking.
There are no formal prerequisites, but it’s recommended to have a strong foundation in networking concepts and some experience with Cisco devices. Cisco typically recommends candidates have CCNP-level knowledge before attempting the CCIE certification.
CCIE training involves self-study, hands-on practice with Cisco devices, and potentially attending formal training courses from Cisco Learning Partners. You’ll need to pass a written exam and a hands-on lab exam to earn the certification.
The CCIE lab exam is known for its complexity and rigor. It requires candidates to configure, troubleshoot, and optimize intricate network scenarios within a limited time frame. Extensive hands-on practice is essential.
Cisco offers official study guides, practice exams, and online resources. Additionally, there are third-party training providers, books, videos, and community forums that can aid in your preparation.
The time required varies depending on your existing knowledge and the time you can dedicate to studying. It’s common for candidates to spend several months to a year or more preparing for both the written and lab exams.
The cost includes study materials, lab equipment (if needed), and potentially training courses. The written exam and lab exam have separate fees. As of my last update, these fees were significant, so be sure to check the current pricing on Cisco’s official website.
You need to pass the written exam first. Once you’ve passed the written exam, you can schedule the lab exam through the Pearson VUE website. CCIE lab exams are offered at specific Cisco lab locations.

Get Certified

Book Demo Class

Happy Student Feedbacks

NETWORKJOURNEY
NETWORKJOURNEY
4.9
Based on 147 reviews
powered by Google
review us on
ccie dcccie dc
15:22 22 Sep 24
Good Course , Straight up to point .instructor is friendly , and support staff is very professional .
DINESHDINESH
06:20 20 Sep 24
I had a great experience learning industry-aligned skills of FortiGate Firewall course with Network Journey, I should thank our Trainer Sanjay for his Deep Knowledge of the product and the way he had taken the classes with patience and clearing all our doubts and questions in a nice manner, and i should Network journey back-end Support team for the Excellent LAB Setup, and support for the problem we face during the class, Overall, I had excellent experience with Network Journey with this course, If time permits I may go for any another course with Network Journey..DINESH.N
Navaneeth SankarNavaneeth Sankar
09:41 11 Sep 24
I've recently completed Network Automation Course with them. Course will really help who want to change their career to Network Automation and the trainer Sagar is really helpful. They will provide lab setup which can be installed in our local system (which will of course have lifetime validity) and also remote lab setup which will be for a certain duration of time. Lab setup helped to have hands-on experience on the automation part. Also they had provided me an option to retake the course anytime in next one year.
vinay shuklavinay shukla
07:27 11 Sep 24
Network journey is the best place to enhance your core as well cross domain skill. Trainer sagar Dhawan sir & their backend support team always available for support through email, calls or even WhatsApp channels. The learning material and virtual labs that team provides, are very structured and easy to adopt. Looking forward to get enrolled for other courses through NJ again.
Shiv ShankerShiv Shanker
10:17 28 Aug 24
I joined Python Network Automation class and Sagar is my trainer one of the excellent trainer to teach network automation , the way he communicating and explaining was very good. I got good knowledge from him about this automation and exploring now. I felt the money I spent was not wasted. For me few things that the class was not started and closed within the time frame and last couple of class he just explained and I felt he rushed up the things if he would have explain slowly like initial class it would be nice. I would recommended every network engineer to learn automation, initially when I was think felt hard but once joined this course all becomes understandable.
prem guptaprem gupta
06:06 27 Jul 24
I recently enrolled the Network Automation offered by Network Journey and I must say it is a valuable experience.The instructor, Sagar, is outstanding. his deep knowledge of the subject matter is evident, and he is doing an excellent job of explaining complex concepts in a clear and understandable way. The instructor also encouraged interaction and is very responsive to questions, which greatly enhanced the learning experience.
Mory BambaMory Bamba
17:05 06 Apr 24
I have enrolled in a bunch of courses including firewall mastery 5-1, CCIE Enterprise, CCIE Security, AWS, GCP, Azure, Devops. All tutors were very professional and classes were excellent very easy to learn . Backend team for lab support and assistance always there incase if we need help . Overall 5/5
js_loader

Know Your Instructor

more than 13+ Years of Industrial experience

 

Sagar Dhawan

Connect on LinkedIn

Trainer Sagar Dhawan has delivered more than 8000+ hours of training in last 3 years.

Trainer Sagar is CISCO CCNP ENTERPRISE and DEVNET Certified working profession with more than 12+ Years of Industrial experience.

Trainer Sagar has trained more than 36,294+ professionals and received 853+ Endorsements with more than 10,000+ Followers.

In the year 2019, Sagar founded his own training & consulting academy which has trained over 25,000+ students just in the last 2 years.

After working as a company network security automation consultant for various projects, clients and as a freelancer, he found his passion in teaching & now he aim to provide top quality skill training at affordable rates to all working professionals.

MS Sangeetha

Connect on LinkedIn

Trainer Sangeetha delivered more than 1400+ hours of training in last 2 years.

Trainer is CISCO CCNP SECURITY, PALO ALTO, CISCO ASA FTD Certified working profession with more than 7+ Years of Industrial experience.

Register 2-Free Demo Class Today

Learn Top Five Cisco Security Certifications Under Single Package with In-Depth Lab Experience!

Early bird Offer 25% Off

Contact Us

For any inquiries please email

info@networkjourney.com
info@networkjourney.com
+91 9739521088
+91 9739521088
Institute Location

NETWORK JOURNEY, 60-FT ROAD,
KUNDALAHALLI, ITPL MAIN ROAD
BANGALORE - 560037

Copyright © 2019-2024 Network Journey. All Rights Reserved.