CCSP certification, the full name of the Cisco Certified Security Professional, is the Cisco professional-level certification. CCSP certification through the staff has a wealth of knowledge of Cisco network security, they can set up security for the enterprise network system in order to protect productivity and reduce costs. CCSP certification include the Cisco IOS network security, virtual private network (VPN), Intrusion Detection System (IDS), and so on, and asked for the comprehensive use of these technologies provide a complete security solution.
The CCSP certification validates advanced knowledge and skills required to secure Cisco networks. With CCSP certification, a network professional demonstrates the skills required to secure and manage network infrastructures to protect productivity and reduce costs.
Candidates for CCSP certification are most likely to be actively involved in developing business solutions and designing and delivering multiple levels of security for underlying network architectures. CCSP certification candidates may work in IT or security departments or as systems integrators or consultants.
CCSP exams, as well as the recommended training courses1.642-501 SECUR Securing Cisco IOS Networks (SECUR)
Or 642-502 Securing Networks with Cisco Routers and Switches (SNRS)
2.642-511 CSVPN Cisco Secure VPN (CSVPN)
Or 642-513 Securing Hosts Using Cisco Security Agent (HIPS)
3.642-521 CSPFA Cisco Secure PIX Firewall Advanced (CSPFA)
Or 642-522 Securing Networks with PIX and ASA (SNPA)
4.642-531 CSIDS Cisco Secure Intrusion Detection System (CSIDS)
Or 642-532 Implementing Cisco Intrusion Prevention System (IPS)
5.642-541 CSI Cisco SAFE Implementation (CSI)
Or 642-551 Securing Cisco Network Devices (SND)
The participants of the requirements of knowledge
Deep understanding CCNA course, Microsoft windows and linux system administration.
642-501 syllabus
* To identify network security threats
* Cisco ACS and the AAA to ensure that remote access network security
* IOS firewall configuration features CBAC
* Configure IOS Firewall Authentication Agent
* IOS firewall configuration Intrusion Detection
* Functions to achieve the use of IPSec point-to-point VPN network
* Cisco Easy VPN remote access function of the realization of network security solutions
* Cisco router management center to achieve Cisco router VPN configuration
642-511 syllabus
* VPN and IPsec Technology
* Cisco VPN 3000 Concentrator overview
* Cisco VPN 3000 configuration through the use of Pre-shared Kays for Remote Access
* Cisco VPN 3000 configuration through the use of Digital Certificates for Remote Access
* Monitoring and management of the allocation of Cisco VPN 3000 remote access network
* Configuration Cisco IDS IPsec for Pre-shared Key Site-to-Site
* Configuration Cisco IDS IPsec Certificate Authority support for the Site-to-site
* Configuration Cisco Pix Firewall for IPsec Pre-shared Keys Site-to-site
* Configuration Cisco Pix Firewall Certificate Authan'ty support of the Site-to-site
* Expansion of Cisco routers and Pix Firewall VPN
642-521 syllabus
* CISCO Secure PIX firewall configuration
* Secure PIX firewall configuration to achieve AAA
* Access Control configuration and content filtering
* Secure PIX firewall to achieve high-level agreement on defense and attack
* Secure PIX Firewall on the Failover
* Secure PIX firewall configuration based on the context of the access control
* CISCO IOS to configure authentication agent
* Secure PIX firewall configuration VPN
642-531 syllabus
* Multi-network configuration and Director install Sensor
* Director and Sensor configuration of the network to carry out unauthorized activities in the detection, response and reporting
* Director configuration data conversion will have a graphics display
* Director configuration for centralized management and remote configuration of the Sensor
* The use of network security database (NSDB) access network security information
* The study of the IDS signal is used to determine how the network under attack
* Director and Custom Sensor through different ways to meet operating needs and to filter the wrong signals and warning
* Realization of the development of custom intrusion detection signal
* In the Device Manager configuration mode IDS, so that it can control the router access control list
* The study of the IDS configuration process, so that advanced users can customize the intrusion detection mechanisms to respond to the report, and communicate the parameters set
642-541 syllabus
* Description of the urgency of Internet Security
* Determine the components of a complete security policy
* Explain safety management is a step-by-step justification of the agreement implied the safety of
* Cisco SAFE to discuss the design philosophy and its significance to the decision-making process
* Approved routers, switches, as a host, such as safety management objectives of the reasons
* The choice of security products guide
* Determine the network of small, specific equipment and specific features of the module
* To determine the threat of small-scale network
* 4 to discuss the protection of the safety of remote access methods
* Identified in the protection of remote access network security equipment in each of the key tasks
