CCIE DC V2 Success: Mr. Tejas CCIE Data Center #57408, Mr. Ankit Verma CCIE Data Center #57200, Mr. Keval Smart CCIE Data Center #56915, Mr. Vijay Pandey CCIE Data Center #56720, Mr. Victor Ade Adeboje CCIE Data Center, #56196 Mr. Binoy CCIE Data Center #56657, Mr. Muruguppan CCIE Data Center #56434, Mr. Pritish Patil CCIE Data Center #56048
HOME > PROGRAMS > CCNP Security
  • Course Summary
  • Course Content
  • Career Path ways
  • Fee Structure
  • Why NH?
Outline:

Cisco Certified Network Professional Security (CCNP Security) certification program at NetworkersHome is a professional level certification. It is intended to make students fit for the current industry trends.

Holding CCNP Security certification under your belt validates your skills needed to test, deploy, configure, maintain, and troubleshoot the Cisco network security appliances and the Cisco IOS Software devices that comprise your network’s security. It qualifies you for the role of Cisco Network Security Engineer accountable for Security in Routers, Switches, Networking devices and appliances, as well as choosing, deploying, supporting and troubleshooting Firewalls, VPNS, and IDS/IPS solutions for their networking environments.

CCNP Security professionals are considered to be experts in maintaining and managing security in network devices like routers and switches. The course trains you on configuring firewalls, VPNs, IDSs/IPSs along with its deployment and maintenance of such solutions.

CCNP Security certification training is a comprehensive course that combines four modules which becomes essential to qualify for anyone targeting to acquire this prestigious credential. This CCNP Security training at Networkers Home has been specifically designed keeping in view the current market trends and is in line with the official curriculum stated by CISCO. CCNP security certification program covers in detail each of the following four modules to make certain that the participants are able to gain deep insights about implementing Security concepts using and in CISCO devices.

CCNP Security program at NetworkersHome comprises of a Composite Course Curriculum so that enable the IT aspirants to clear the following Four Cisco Exams:

  • Implementing Cisco Edge Network Security Solutions (300-206)
  • Implementing Cisco Secure Access Solutions (300-208)
  • Implementing Cisco Secure Mobility Solutions (300-209)
  • Implementing Cisco Threat Control Solutions (300-210)

 

Cisco Certified Network Professional Security (CCNP Security) certification program is aligned specifically to the job role of the Cisco Network Security Engineer responsible for Security in Routers, Switches, Networking devices and appliances, as well as choosing, deploying, supporting and troubleshooting Firewalls, VPNS, and IDS/IPS solutions for their networking environments. Achieving CCNP Security certification confirms that you have the knowledge and skills needed to test, deploy, configure, maintain, and troubleshoot the Cisco network security appliances and the Cisco IOS Software devices that comprise your network’s security. CCNP Security certification training is a composite of four modules that a professional must qualify in order to obtain prestigious credential.

Course Objectives:

Upon course completion and earning of the CCNP Security certification, a participant is able to:

  • Understand and deploy Cisco ISE and 802.1X secure access techniques.
  • Implement and manage network access security using Cisco Identity Services Engine.
  • Configure advanced Security solutions to reduce external threats and secure network devices.
  • Implement Cisco’s Next Generation Firewall (NGFW) and Web Security, Cloud Security and Email Security.
  • Learn Risk Mitigation with the help of Cisco’s Next Generation Firewall
  • Configure Cisco perimeter edge security solutions that utilize Cisco routers and switches, and Cisco ASA Firewalls.
  • Protect data going through a shared or public network infrastructure managing VPN solutions from Cisco.

Course Duration:

  • Regular Track : 5 Weeks (2 Hours/Day)
  • Weekend Track : 8 Weekends (3 Hours/Day)
What I will learn?

Students will be able to configure & implement security features on Cisco Security Devices mainly Routers, Switches, ASA, NGFW, Firepower, NGIPS, WSA, ESA & ISE.

LABS on Real Devices

SNRS (Securing Networks with Cisco Router & Switches):

  1. 1. Basic Router Security
  2. 2. Standard Named ACL
  3. 3. Controlling Telnet Access & SSH
  4. 4. Extended ACL
  5. 5. Dynamic ACL
  6. 6. Reflexive ACL
  7. 7. Time Based ACL
  8. 8. CBAC (Context Based Access Control)
  9. 9. ZBPF (Zone Based Policy Firewall)
  10. 10. MQC (Modular QoS CLI)
  11. 11. Blackhole Routing using PBR
  12. 12. NAT TCP Load Balancing
  13. 13. Stateful High Availability NAT
  14. 14. NAT Virtual Interface
  15. 15. TCP Intercept
  16. 16. NBAR
  17. 17. Netflow
  18. 18. Routing Protocol Authentication: RIPv2
  19. 19. Routing Protocol Authentication: OSPF
  20. 20. Routing Protocol Authentication: EIGRP
  21. 21. Routing Protocol Authentication: BGP
  22. 22. Route Filtering with EIGRP
  23. 23. Route Filtering with OSPF
    24. Route Filtering with RIPv2
  24. 25. Control Plane Policing
  25. 26. Control Plane Protection
  26. 27. Management Plane Protection
  27. 28. Disabling Requisite Services
  28. 29. Controlling Device Access
  29. 30. CPU Protection
  30. 31. Selective Packet Discard
  31. 32. Controlling Device Services
  32. 33. Transit Traffic Control with Flexible Packet Matching
  33. 34. Congestion Management
  34. 35. IOS File System Security
  35. 36. Network Telemetry Identification & Classification of Security Events
  36. 37. BGP TTL Security
  37. 38. IPv6 Selective Packet Discard
  38. 39. IOS IPS
  39. 40. DHCP Snooping
  40. 41. Dynamic ARP Inspection
  41. 42. IP Source Guard
  42. 43. Preventing VLAN Hopping Attack
  43. 44. VLAN Access Lists
  44. 45. STP Protection
  45. 46. Protect Broadcast Storm
  46. 47. Preventing IP Spoofing
  47. 48. Port-Security
  48. 49. SNMP
  49. 50. IP Options

ASA (Adaptive Security Appliance):

  1. 1. Hardware, IOS Upgradation& ASDM
  2. 2. Basic ASA Configuration: Interfaces, Security Levels and Ether Channel
  3. 3. ASA Fundamentals: Access Control Lists
  4. 4. Licensing of ASA
  5. 5. Packet Processing
  6. 6. Understanding Connection Profiles
  7. 7. Routing in ASA: Static, Default, RIPv2, EIGRP, OSPF, BGP, IS-IS
  8. 8. ASA Management (Local & Remote)
  9. 9. NAT Basics in ASA: Object NAT & Twice NAT
  10. 10. Static NAT
  11. 11. Dynamic NAT
  12. 12. NAT Exemption
  13. 13. Static Policy NAT
  14. 14. Dynamic Policy NAT
  15. 15. Bidirectional NAT
  16. 16. Modular Policy Framework
  17. 17. FTP, DNS, SMTP, HTTP & ICMP Inspection
  18. 18. Virtual Firewalls (ASAv)
  19. 19. Redundant Interfaces
  20. 20. Multi-Context Firewall
  21. 21. Active-Standby Failover (Single Context)
  22. 22. Active-Active Failover (Multi-Context)
  23. 23. Transparent Firewall
  24. 24. Threat Detection
  25. 25. Time Based Access Control
  26. 26. Qos: Priority Queuing
  27. 27. QoS: Traffic Policing
  28. 28. QoS: Traffic Shaping
  29. 29. QoS: Prioritization
  30. 30. SLA Route Tracking
  31. 31. DHCP
  32. 32. URL Filtering
  33. 33. Troubleshooting with Packet Tracer, Capture Tools &TCPDump
  34. 34. Firepower installation
  35. 35. FMC Integration
  36. 36. Policy Implementation in Firepower
  37. 37. FTD Installation & Basic Configuration
  38. 38. FTD: Policy Enforcements
  39. 39. FTD High Availability
  40. 40. Integration with AMP, ISE &Splunk

VPN (Virtual Private Network):

  1. 1. Next Generation Encryption & Hashing
  2. 2. IPSec suite
  3. 3. VPN: Connection establishment (Packet Level)
  4. 4. AAA for Network Access
  5. 5. VPN Implementation in ASA
  6. 6. Group Policies
  7. 7. Configuring User Attributes
  8. 8. Integration with External Servers for AAA & Policies
  9. 9. SSL VPN: Overview
  10. 10. Deployment of Anyconnect VPN & Troubleshoot
  11. 11. Authentication Strategies: CRLs & OCSP
  12. 12. Authorization with AAA & DAPs
  13. 13. Anyconnect Integration with Cisco Secure Desktop
  14. 14. Anyconnect High Availability
  15. 15. Clientless SSL VPN including Authentication Strategies & DAPs Authorization
  16. 16. Customizing Clientless Portal
  17. 17. Clientless SSL VPN High Availability
  18. 18. Cisco VPN Client
  19. 19. Easy VPN: Authentication, Authorization & High Availability: Client, Network Extension Mode without & with
  20. 20. Introduction of IPSec Site-to-Site VPNs including High Availability with Mechanism i.e. Packet exchange b/w peers
  21. 21. LAN-to-LAN Tunnel without NAT-T
  22. 22. LAN-to-LAN Tunnel with NAT-T
  23. 23. Point-to-Point GRE
  24. 24. Encrypting GRE Tunnels using IPSec
  25. 25. Native IPSec Tunnel Interface with S-VTI
  26. 26. mGRE Tunnel
  27. 27. DMVPN (Phase 1, 2 & 3)
  28. 28. GETVPN
  29. 29. Configuring Router as a CA Server
  30. 30. Flex-VPN: DVTI – SVTI
  31. 31. Flex-VPN: Server – Client
  32. 32. HA (IPSecStateful Failover) &QoS
  33. 33. Call Admission Control for IKE
  34. 34. IPSec Load Balancing (ASA Cluster)
  35. 35. Troubleshoot VPN Connectivity

Identity Management with ISE (2.1) & ACS (5.8)

  1. 1. Privilege Levels
  2. 2. AAA
  3. 3. ISE Installation
  4. 4. Registration with Self-Signed & CA-Signed Certificate
  5. 5. AD Integration
  6. 6. Backup & Restore
  7. 7. Network Access with Radius
  8. 8. Device Administration with TACACS+
  9. 9. MAB, Profiling & Probing
  10. 10. Dot1x (Wired & Wireless) using EAP, PEAP & EAP-TLS
  11. 11. CWA (Wired & Wireless Meraki: BYOD)
  12. 12. LWA
  13. 13. Posture Validation
  14. 14. Trustsec (NAC Agent & Web Agent)
  15. 15. Macsec
  16. 16. Integration of Splunk with ISE
  17. 17. Integration with WSA & ESA
  18. 18. ACS Installation, Bootstrapping & AD Integration
  19. 19. Command Authorization
  20. 20. TACACS+ User Authentication & Authorization
  21. 21. IOS Authentication Proxy
  22. 22. Authentication Proxy on ASA
  23. 23. 802.1x Authentication with ACS
  24. 24. Super Lab – 1
  25. 25. Super Lab – 2

WSA, ESA, IPS (NGIPS)

  1. 1. Basic Installation including DNS & Routing
  2. 2. WSA Identities & Access Policies
  3. 3. AD Integration
  4. 4. User Authentication
  5. 5. Custom URL Categories
  6. 6. Application Visibility & Control
  7. 7. Web Reputation
  8. 8. Transparent Proxy with Router, Switch & ASA
  9. 9. ESA: Spam Filtering
  10. 10. Deployment of IPS & NGIPS
Audience to the course:

A candidate is expected to have the basic knowledge of network security and TCP/IP. CCNP Security is specially intended for the following audience:

  • Career starters seeking entry-level security specialist skills.
  • Working IT professionals looking to expand their core skills or enhance their career.

 

Future JOB Scope

Below are a few job roles for which CCNP Security certified candidates can apply and opt for:

  • System Security Engineers
  • Network Security Administrators
  • Network Security Support Specialists
  • Network Security Engineers
  • Network Security Consultants

 

Training and Learning

To advance their career and increase their knowledge domain candidates can opt for any of the following certification programs in different tracks:

Fee Structure

COURSE

FEE IN INR

FEE IN $

CCNA SEC. 25000/- + 18 % GST $600
CCNP SEC. 75000/- ( including GST ) $1,500
CCNA + CCNP COMBO 75000/- + 18% GST $2,000
CCIE SEC. LAB ONLY 90000/- + 18% GST $2,500
CCIE SEC. LAB + WRITEN 125000/- + 18% GST $3,000
CCNA + CCNP + CCIE SEC. 150000/- + 18% GST $3,000
CCNP + CCIE 135000/- + 18% GST $3,500

Weekend Batch Schedule (Saturday / Sunday)

Course Name

Dates

Timings

Day

CCNP (Security) weekend (sun) 26th Nov onwards (weekend ) 10am – 5pm (sunday) Sunday

Regular Batch Schedule

Details on CCNP Security for Regular Batch can be obtained by contacting branch

Online Batch Schedule (Monday – Friday)

Details on CCNP Security for Online Batch can be obtained by contacting branch

Why Choose NH:

  • All Training on CISCO Official curriculum
  • Biggest CISCO Training Lab in Asia
  • 24×7 Lab Access to students
  • Lab administrator guidance
  • Modern Rack equipment
  • Certified Trainers with remarkable industry experience
  • Produced 4000+ CCIEs over the years
  • We offer Best value for Money, Our service too is exceptional
  • We offer different Tracks (Regular and fast) to suit the beginners as well as experienced professionals
  • You have a choice of four great locations – Gurgaon, Delhi, NCR and Bangalore
  • 1-on-1 training with dedicated attention of trainer for the entire duration of course
  • Live Virtual Classes option also handy at the convenience of students

Apply for this Course

Enquire Now
FREE WEEKLY UPDATES
Get the latest content first.
We respect your privacy.

Stay updated with upcoming training opportunities.

Latest Results and updated information on new Course Launch.Be the first one to know.