Securing Cisco Networks with FireSIGHT Intrusion Prevention System (SSFIPS)

Request a Quote for this class

About this Course

Securing Cisco Networks with Cisco FireSIGHT© Intrusion Prevention System (IPS) is an instructor-led course. It is a lab-intensive course that introduces students to the powerful features of the Cisco FireSIGHT system, in-depth event analysis, IPS tuning and configuration, and the SNORT rules language. You will learn how to use and configure next-generation Cisco IPS technology, including application control, firewall, and routing and switching capabilities. You will also learn to properly tune systems for better performance and greater network intelligence while taking full advantage of powerful tools for more efficient event analysis, including file type and network-based malware detection.

This course combines lecture materials and hands-on labs throughout to make sure you are able to successfully deploy and manage the Cisco FireSIGHT system. This course prepares you to take the Securing Cisco Networks with FireSIGHT IPS exam (exam ID 500-285).

Audience Profile

This course is designed for technical professionals who need to know how to deploy and/or manage a Sourcefire System in your network environment. The primary audience for this course includes: 

  • Security administrators 
  • Security consultants
  • Network administrators
  • System engineers 
  • Technical support personnel 
  • Channel partners and resellers

Prerequisites

Technical understanding of TCP/IP networking and network architecture Basic familiarity with the concepts of intrusion detection systems (IDS) and IPS.

 

Course Outline

  • Module 1: FireSIGHT System Overview and Classroom Setup
  • Module 2: Hardware Overview and Architecture
  • Module 3: Device Management
  • Module 4: User Account Management
  • Module 5: Object Management
  • Module 6: Access Control Policy
  • Module 7: FireSIGHT Technology
  • Module 8: Network-Based Malware Detection
  • Module 9: Managing SSL Traffic
  • Module 10: IPS Policy Basics
  • Module 11: Network Analysis Policy
  • Module 12: Event Analysis
  • Module 13: Reporting
  • Module 14: Correlation Policy
  • Module 15: Basic Rule Syntax and Usage