SDSI - Designing Cisco Security Infrastructure – E-Learning

Die Schulung Designing Cisco Security Infrastructure (SDSI) vermittelt Ihnen Kenntnisse über das Design von Sicherheitsarchitekturen, einschließlich sicherer Infrastrukturen, Anwendungen, Risiken, Ereignisse, Anforderungen, künstliche Intelligenz (AI), Automatisierung und DevSecOps.

Kursinhalt

• Identify and explain the fundamental concepts of security architecture and how they support the design, building, and maintenance of a secure infrastructure 
• Identify the layers of security infrastructure, core security technologies, and infrastructure concepts 
• Explain how security designs principles contribute to secure infrastructure 
• Identify and discuss security design and management frameworks that can be used for infrastructure security design 
• Explain the importance of and methods for enforcement of regulatory compliance in security design 
• Identify tools that enable detection and response to infrastructure security incidents 
• Explain various strategies that can be implemented to modify traditional security architectures to meet the technical requirements of modern enterprise networks 
• Implement secure network access methods, such as 802.1X, MAC Authentication Bypass (MAB), and web-based authentication 
• Describe security technologies that can be applied to enterprise Wide Area Network (WAN) connections 
• Compare methods to secure network management and control plane traffic 
• Compare the differences between traditional firewalls and next-gen firewalls (NGFWs) and identify the advanced features that NGFWs provide 
• Explain how web application firewalls (WAFs) secure web applications from threats 
• Describe the key features and best practices for deploying intrusion detection system (IDS) and intrusion prevention system (IPS) as part of the enterprise infrastructure security design 
• Explain how endpoints and services in cloud-native or microservice environments can be protected with host-based or distributed firewalls 
• Discuss security technologies that address application data and data that is in transit 
• Identify several security solutions for cloud-native applications, microservices, and containers 
• Explain how technology advancements allow for improvements in today’s infrastructure security 
• Identify tools that enable detection and response to infrastructure security incidents 
• Describe frameworks and controls to access and mitigate security risks for infrastructure 
• Explain how to make security adjustments following a security incident 
• Identify DevSecOps integrations that improve security management and response 
• Discuss how to ensure that automated services are secure 
• Discuss how AI can aid in threat detection and response 

Zielgruppe

• Cisco and Partner’s Systems Engineers 
• Customer Network & Infrastructure Engineers 
• Customer Security/NOC Engineers 

Voraussetzungen

Für diese Schulung gibt es keine Voraussetzungen. Es wird jedoch empfohlen, dass Sie über folgende Kenntnisse und Fähigkeiten verfügen, bevor Sie an diesem Training teilnehmen: 

• Cisco CCNP Security oder gleichwertige Kenntnisse
• Vertrautheit mit Microsoft Windows-Betriebssystemen
• Vertrautheit mit dem Cisco Security-Portfolio 

Diese Fähigkeiten können in den folgenden Cisco-Lernangeboten gefunden werden:

• Implementing and Operating Cisco Security Core Technologies (SCOR)
• Fundamentals of Cisco Firewall Threat Defense and Intrusion Prevention (SFWIPF)
• Implementing and Configuring Cisco Identity Services Engine (SISE)
• Designing and Implementing Secure Cloud Access for Users and Endpoints (SCAZT)
• Advanced Techniques for Cisco Firewall Threat Defense and Intrusion Prevention (SFWIPA)
• Implementing Automation for Cisco Security Solutions (SAUI)
• Implementing Secure Solutions with Virtual Private Networks (SVPN)
• Introducing Automation for Cisco Solutions (CSAU)
• Securing Email with Cisco Email Security Appliance (SESA)
• Securing the Web with Cisco Web Security Appliance (SWSA)

Kursziel

• Praktische Erfahrungen mit dem Entwurf von Sicherheitsarchitekturen zu sammeln
• Sich für professionelle und erfahrene Sicherheitsaufgaben zu qualifizieren 

Nach Bestehen des Examens erhalten Sie die Spezialisierung Cisco Certified Specialist – Designing Cisco Security Infrastructure und erfüllen die Anforderungen des Concentration Exam für die CCNP® Security Zertifizierung.

Ergänzende und aufbauende Kurse SCOR – Implementing and Operating Cisco Security Core Technologies
SFWIPF – Fundamentals of Cisco Firewall Threat Defense and Intrusion Prevention
SFWIPA – Advanced Techniques for Cisco Firewall Threat Defense and Intrusion Prevention
SISE – Implementing and Configuring Cisco Identity Services Engine
SESA – Securing Email with Cisco Email Security Appliance
SWSA – Securing the Web with Cisco Web Security Appliance
SVPN – Implementing Secure Solutions with Virtual Private Networks
SAUI – Implementing Automation for Cisco Security Solutions
SCAZT – Designing and Implementing Secure Cloud Access for Users and Endpoints