CCNA Security Overview Updated April 2011 1

CCNA Security
Overview
Updated April 2011
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
1
CCNA Security Course
Subtitle: Size 24, Left Aligned
 An in-depth and comprehensive introduction to
network security principles and concepts
 Provides hands-on knowledge and skills,
emphasizing practical experience needed for
entry-level job roles in network security
 Teaches installation, troubleshooting, and
monitoring of network devices to maintain
integrity, confidentiality, and availability of data
and devices
 Helps prepares students for CCNA Security
certification (IINS 640-553 exam)
 CCNA Security course is not a replacement for
the Network Security 1 and Network Security 2
(NS1 and NS2) courses
CCNA Overview
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Public
2
Benefits for Students
CCNA Security helps students:
 Gain an introduction to core security concepts
and how to develop security policies and mitigate
risks
 Acquire skills needed to develop a security
infrastructure, recognize vulnerabilities to
networks, and mitigate potential security threats
 Prepare for CCNA Security certification exam
 Start or build a career in network security
 Differentiate themselves in the market with
specialized skills and expertise to achieve
success
CCNA Overview
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Public
3
Cisco Networking Academy
Building Scalable
Internetworks
Curricula Portfolio
Implementing
Secured Converged
Wide-Area Networks
Networking for
Home and Small
Businesses
IT Essentials:
PC Hardware
and Software
CCNA
Security
Routing Protocols and
Concepts
Working at a
Small-to-Medium
Business
or ISP
Network
Professional
Network
Specialist
Network
Fundamentals
Building Multilayer
Switched Networks
Optimizing
Converged Networks
LAN Switching and
Wireless
Introducing Routing
and Switching in the
Enterprise
Accessing the WAN
CCNP
CCNP
Designing and
Supporting Computer
Networks
Security
Network
Associate
CCNA
Discovery
CCNA
Exploration
Network
Technician
IT Technician
IT
Essentials
Cisco Packet Tracer
Student Networking Knowledge and Skills
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
4
Cisco Networking Academy
Curricula Portfolio
Alignment to Certifications
CompTIA A+
IT
Essentials
CCNA
CCENT
CCNA
CCNA
Discovery
CCNA
Exploration
CCNA
Security
CCNP
CCNP
Security
Student Networking Knowledge and Skills
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
5
Cisco Security Certifications
Associate-Level
Professional-Level
Cisco Certified Security
Professional (CCSP®) Certification
Revised
CCSP Certification
CCNA Security
Certification
CCNA Security Course
SND
IINS
(640-553)
Network Security 1 & 2
(NS1/NS2) Courses
SNRS
SNRS
SNPA
SNAF
IPS
IPS
Elective Exam
Elective Exam
Presentation_ID
CCNA Certification Is a
Prerequisite for CCNA
Security Certification
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
6
CCNA Security Certification
Meets Growing Demand
 Verifies an individual’s skills in the following roles:
Network Security Specialists
Security Administrators
Network Security Support Engineers
 Enables installation, troubleshooting and
monitoring of Cisco Security devices/technologies
 Ability to develop security policies and mitigate risk
in networks
 Serves as prerequisite for CCSP Certification
 Employers hiring individuals can feel confident
their staff has the skills needed to install,
troubleshoot and monitor Cisco security
technologies
CCNA Overview
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Public
7
Aligning Certification to Jobs
Certification
Skills Certified
Job Roles
CCNA Security
 Describe the security threats
facing modern network
infrastructures
 Secure network device access
 Identify security threats and
basic mitigation methods
 Install, troubleshoot and monitor
security technologies
 Administer effective security
policies
Job Titles
 Network Security Specialists
 Implement AAA on network
devices
 Security Administrators
 Implement secure network
management and reporting
 Network Security Support
Engineers
 Implement the Cisco IOS firewall
feature set
 Implement the Cisco IOS IPS
feature set
 Implement IPSec VPNs
CCNA Overview
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Public
8
CCNA Security Course
Who Should Enroll?
 College and university-level students seeking career-oriented,
entry-level security specialist skills
 IT professionals wishing to broaden or add specialized skills to
their technology expertise
 Current CCNA Certification holders who wish to continue to build
on their CCNA knowledge base
CCNA Overview
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Public
9
CCNA Security Course Design
 Same Graphical User Interface (GUI) as the CCNA Discovery and CCNA
Exploration curricula
 Nine chapters and chapter exams




One final exam and skills-based assessment
One complex hands-on lab per chapter with multiple sections
Packet Tracer activities
Balance of theory, hands-on practice, and application
 Available in English only, no translated versions are planned
 Enabled for both in-person and blended learning environments
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
10
CCNA Security Course
Equipment Requirements
 Minimize equipment costs
Uses CCNA Discovery/CCNA Exploration equipment bundle and topology
NDG NetLab-compatible topology—enabled for remote operation
 Additional investment required for the Security Technology
Package Licenses
Minimum System Requirements
CCNA Security curriculum requirements:
1 Student PC per student; 1 local curriculum server
Lab bundle requirements for CCNA Security:
3 Cisco routers, 2 with the Security Technology Package Licenses
3 Two-Port Serial WAN Interface Cards
3 Cisco switches
Assorted Ethernet and Serial cables and hubs
Detailed equipment information, including descriptions and part numbers,
is available in the official CCNA Security Equipment List on Academy
Connection.
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
11
NetAcad Maintenance—Sign-Up Today
It’s Free!
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
12
CCNA Security Course Outline
Course Chapters and Goals
Ch. 1
Modern Network Security Threats
Ch. 2
Securing Network Devices
Ch. 3
Authentication, Authorization and Accounting
Ch. 4
Implementing Firewall Technologies
Ch. 5
Implementing Intrusion Prevention
Ch. 6
Securing the Local Area Network
Ch. 7
Cryptographic Systems
Ch. 8
Ch. 9
Presentation_ID
Goal: Explain network threats, mitigation techniques, and the basics of securing a network.
Goal: Securing administrative access on Cisco routers.
Goal: Securing administrative access with AAA.
Goal: Implement firewall technologies to secure the network perimeter.
Goal: Configure IPS to mitigate attacks on the network.
Goal: Describe LAN security considerations and implement endpoint and Layer 2 security features.
Goal: Describe methods for implementing data confidentiality and integrity.
Implementing Virtual Private Networks
Goal: Implement secure virtual private networks.
Managing A Secure Network
Goal: Given the security needs of an enterprise, create and implement a comprehensive security policy.
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
13
CCNA Security Instructor Training
 All instructors should have CCNA-level
networking knowledge and skills
 New CCNA Security instructors
Instructor training required
Fast track possible with evidence of CCNA
Security or high certification or industry
experience
 Existing NS1, NS2, or CCNP®: ISCW
instructors
Instructor training recommended
Qualified to teach CCNA Security course
 Instructor training format and materials
Delivered by authorized CCNA Security Training
Centers
40 hours training—in-person, blended (3-day inperson), or remote delivery formats
ICGs, PPT slides and BDL Best Practices Guide
CCNA Overview
© 2009 Cisco Systems, Inc. All rights reserved.
Cisco Public
14
CCNA Security Training Centers
 Instructor training is delivered by authorized CCNA
Security Training Centers
 Open model—instructors can participate in instructor
training from any training center in their region
 Complete global list of authorized CCNA Security
Training Centers available on CCNA Security Course
Catalog page on Academy Connection
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
15
CCNA Security Course
Local Academy Steps
To become a
CCNA Security
Local Academy
Instructor
training
required?
Yes
 Register for a CCNA Security
instructor training class with a
Training Center in your region
 Request CCNA Security Training
Center in your region to enable
curriculum
No
 Request a CCNA Security
Training Center in your region
to enable curriculum
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
16
CCNA Security Course
Academy Connection System Prerequisites
No Academy Connection Prerequisites
 Students must have:
Students
Prerequisites
for Student
Enrollment
Prerequisites
to Create
Instructor
Classes
Instructors Prerequisites
to Teach
Student
Classes
Presentation_ID
Basic PC skills such as typing, mouse, and desktop
navigation skills
Basic internet navigation skills
CCNA-level networking knowledge and skills
 Students encouraged to complete CCNA
Discovery or CCNA Exploration curricula
CCNA Security AND Orientation
OR
Network Security 1 AND Orientation OR
Network Security 2 AND Orientation
OR
CCNP 2 v5 AND Orientation
OR
CCNA Security Instructor Fast Track
AND Orientation
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
17
For More Information
 Latest documents are posted on CCNA Security
Course Catalog page on Academy Connection
CCNA Security Scope and Sequence
CCNA Security FAQs
CCNA Security Datasheet
CCNA Security At A Glance
CCNA Security Overview Presentation
 Certification information
CCNA Concentrations Q&A
CCNA Security certification
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
18
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
19
Presentation_ID
© 2008 Cisco Systems, Inc. All rights reserved.
Cisco Confidential
20