Securing Cloud Deployments with Cisco Technologies (SECCLD) -

Securing Cloud Deployments with Cisco Technologies (SECCLD)

Duration: 4 Days (32 Hours)

Overview

Course Details

Prerequisites

Securing Cloud Deployments with Cisco Technologies (SECCLD) Course Overview:

What you’ll learn in this course
The Securing Cloud Deployments with Cisco Technologies (SECCLD) v1.0 course is designed to provide participants with the knowledge and skills necessary to implement Cisco® cloud security solutions for securing cloud deployments. Through a combination of expert instruction and hands-on labs, attendees will learn a comprehensive set of skills and technologies related to cloud security.

The course covers key aspects such as securing access to the cloud, protecting workloads in the cloud, and ensuring the security of Software as a Service (SaaS) user accounts, applications, and data. Participants will gain proficiency in utilizing Cisco cloud security solutions, detecting suspicious traffic flows, identifying policy violations, and mitigating compromised devices.

Additionally, the course encompasses implementing security controls specifically designed for cloud environments and managing cloud security effectively. It covers the usage of various Cisco solutions, including Cisco Cloudlock, Cisco Umbrella™, Cisco Cloud Email Security, Cisco Advanced Malware Protection (AMP) for Endpoints, Cisco Stealthwatch® Cloud and Enterprise, and Cisco Firepower® NGFW (next-generation firewall), among others.

How you’ll benefit
This class will help you:
● Learn how to deploy and troubleshoot Cisco cloud security solutions to protect your cloud, users, data, and applications; prevent breaches and quickly detect and mitigate attacks; improve security and incident response, and more
● Learn skills that can be applied to both public and private solutions including Amazon Web Services (AWS), Google Cloud Platform (GCP), IBM Cloud, Microsoft Azure, Dimension Data Cloud, Alibaba Cloud, VMware Cloud, and other cloud solutions
● Gain leading-edge skills for high-demand jobs focused on enterprise security

Who should enroll
This course is open to engineers, administrators, and security-minded users of public, private, and hybrid cloud infrastructures responsible for implementing security in cloud environments:
● Security architects
● Cloud architects
● Security engineers
● Cloud engineers
● System engineers
● Cisco integrators and partners

Technology areas
● Cloud
● Security

Objectives

After taking this course, you should be able to:
● Contrast the various cloud service and deployment models
● Implement the Cisco Security Solution for SaaS using Cisco Cloudlock Micro Services
● Deploy cloud security solutions using Cisco AMP for Endpoints, Cisco Umbrella, and Cisco Cloud Email Security
● Define Cisco cloud security solutions for protection and visibility using Cisco virtual appliances and Cisco Stealth watch Cloud
● Describe the network as a sensor and enforcer using Cisco Identity Services Engine (ISE), Cisco Stealth watch Enterprise, and Cisco TrustSec®
● Implement Cisco Firepower NGFW Virtual (NGFWv) and Cisco Stealthwatch Cloud to provide protection and visibility in AWS environments
● Explain how to protect the cloud management infrastructure by using specific examples, defined best practices, and AWS reporting capabilities

Outline

● Introducing the Cloud and Cloud Security
◦ Describe the Evolution of Cloud Computing
◦ Explain the Cloud Service Models
● Implementing the Cisco Security Solution for SaaS Access Control
◦ Explore Security Challenges for Customers Using SaaS
◦ Describe User and Entity Behavior Analytics, Data Loss Prevention (DLP), and Apps Firewall
● Deploying Cisco Cloud-Based Security Solutions for Endpoints and Content Security
◦ Describe Cisco Cloud Security Solutions for Endpoints
◦ Describe AMP for Endpoints Architecture
● Introducing Cisco Security Solutions for Cloud Protection and Visibility
◦ Describe Network Function Virtualization (NFV)
◦ Describe Cisco Secure Architectures for Enterprises (Cisco SAFE)
● Describing the Network as the Sensor and Enforcer
◦ Describe Cisco Stealthwatch Enterprise
◦ Describe Cisco ISE Functions and Personas
● Implementing Cisco Security Solutions in AWS
◦ Explain AWS Security Offerings
◦ Describe AWS Elastic Compute Cloud (EC2) and Virtual Private Cloud (VPC)
● Describing Cloud Security Management
◦ Describe Cloud Management and APIs
◦ Explain API Protection

Lab outline

● Explore the Cisco Cloudlock Dashboard and User Security
● Explore Cisco Cloudlock Application and Data Security
● Explore Cisco AMP Endpoints
● Perform Endpoint Analysis Using the AMP Endpoint Console
● Examine the Umbrella Dashboard
● Examine Cisco Umbrella Investigate
● Explore Email Ransomware Protection by Cisco Cloud Email Security
● DNS Ransomware Protection by Cisco Umbrella
● Explore File Ransomware Protection by Cisco AMP for Endpoints
● Explore a Ransomware Execution Example
● Implement Cisco ASAv in ESXi
● Configure and Test Basic Cisco ASAv Network Address Translation (NAT)/Access Control List (ACL) Functions
● Explore Cisco Stealthwatch Cloud
● Explore Stealthwatch Cloud Alerts Settings, Watchlists, and Sensors
● Explore the Network as the Sensor and Enforcer
● Explore Cisco Stealthwatch Enterprise
● Deploy NGFWv and FMCv in AWS
● Troubleshoot FTD and FMC in AWS – Scenario 1
● Troubleshoot FTD and FMC in AWS – Scenario 2
● Troubleshoot FTD and FMC in AWS – Scenario 3
● Explore AWS Reporting Capabilities

To fully benefit from this course, you should have completed the following course or obtained the equivalent
knowledge and skills:
● Knowledge of cloud computing and virtualization software basics
● Ability to perform basic UNIX-like OS commands
● Cisco CCNP® security knowledge or understanding of the following topic areas: