CCNA Cyber Ops SECFND (210-250) and SECOPS (210-255) Complete Video Course and Practice Tests

Overview

More than eighteen hours of video instruction on configuration and troubleshooting tasks to prepare you for the Cisco CCNA Cyber Ops SECFND 210-250 and SECOPS 210-255 certification exams.

Description

CCNA Cyber Ops Premium Edition Complete Video Course is a unique video product that provides a solid understanding of the key areas of knowledge required to pass the CCNA Cyber Ops exam: 210-250 SECFND and 210-255 SECOPS. This product walks through each topic of the exam blueprints so you can gain the knowledge you need to pass the BOTH exams and start your career as an associate-level Security Operations Center (SOC) Security Analyst.

CCNA CyberOps SECFND (210-250) and SECOPS (210-255) Premium Edition Complete Video contains more than eighteen hours of instruction on everything you need to know to gain your CCNA Cyber Ops certification. The videos consist of live video training, video screencasts, and demos. Video instruction throughout offers detailed explanations, tips, and design recommendations.

This course additionally comes with
* Lesson quizzes so you can test your progress as you work your way through the course
* More than 20 interactive exercises
* 2 full practice exams that run in the best-selling Pearson Practice Test Engine software

Major topics include:

• Networking Concepts

• Security Concepts

• Cryptography

• Host-Based Analysis

• Security Monitoring

• Attack Methods

• Endpoint Threat Analysis and Computer Forensics

• Network Intrusion Analysis

• Incident Response

• Data and Event Analysis

• Incident Handling

Skill Level

• Beginning to intermediate

What You Will Learn

• Presentation on key Cyber Security solutions

• Covers all of the objectives in the CCNA Cyber Ops exam

• Easy to follow demonstrations of cybersecurity tools, products, and solutions

• Scenarios offered to help learners understand real-world applications

Who Should Take This Course

Anyone who wants to obtain their CCNA Cyber Ops certification. This includes security professionals interested in learning how to develop, manage, or improve a security operations center, a CSIRT, PSIRT, or to become a cyber security incident response expert. Anyone wishing to take the CCNA CyberOps exam would also benefit from viewing this course.

Course Requirements

The video course assumes that the learner has the skills to navigate the user interface of a PC running on Microsoft Window, Mac or Linux and who has completed typical high school-level math courses (mainly that the reader has been exposed to binary math). The course also assumes that the reader has used PCs connected to either a home network or a network inside a school or company, but that the reader might not understand anything about the network to which the PC was connected. It is also assumes that the reader knows how to use typical Internet applications, primarily web browsers and email clients.

About LiveLessons Video Training

LiveLessons Video Training series publishes hundreds of hands-on, expert-led video tutorials covering a wide selection of technology topics designed to teach you the skills you need to succeed. This professional and personal technology video series features world-leading author instructors published by your trusted technology brands: Addison-Wesley, Cisco Press, IBM Press, Pearson IT Certification, Prentice Hall, Sams, and Que. Topics include: IT Certification, Programming, Web Development, Mobile Development, Home and Office Technologies, Business and Management, and more. View all LiveLessons on InformIT at: http://www.ciscopress.com/livelessons

Table of Contents

CCNA Cyber Ops SECFND 210-250

Lesson 1:  Networking Fundamentals

1.1: Reviewing the OSI Model

1.2:
Reviewing the TCP/IP Network Models

1.3:
Surveying Common Networking Protocols

1.4: Identifying Networking Device Types

1.5: Understanding IP Subnets

1.6: Examining VLANs and Data Visibility

Lesson 2:  Network Security Devices and Cloud Services

2.1: Comparing Traditional and Next-Generation Firewalls

2.2: Comparing Traditional and Next-Generation Intrusion Prevention Systems (IPS)

2.3: Understanding Cisco Web Security

2.4: Understanding Cisco Email Security

2.5: Examining Advanced Malware Protection

2.6: Examining Identity Management Systems

2.7: Surveying Other Network Security Devices

Lesson 3:  Security Principles

3.1: Understanding Defense-in-Depth

3.2: Identifying Threats, Vulnerabilities, and Exploits and Their Associated Risk

3.3: Identifying Threat Actors

3.4: Understanding Reverse Engineering

3.5: Understanding Chain of Custody

3.6: Examining Run Books

3.7: Introducing PII and PHI

3.8: Understanding Principle of Least Privilege

3.9: Performing Risk Assessment

Lesson 4:  Access Control Models

4.1: Understanding Confidentiality, Integrity, and Availability

4.2: Understanding Authentication, Authorization, and Accounting

4.3: Examining the Access Control Process

4.4: Understanding Discretionary Access Control

4.5: Understanding Mandatory Access Control

4.6: Understanding Role Based Access Control

4.7: Understanding Attribute Based Access Control

Lesson 5:  Introduction to Security Management

5.1: Surveying Asset Management

5.2: Surveying Configuration Management

5.3: Surveying Mobile Device Management

5.4: Surveying Patch Management

5.5: Surveying Vulnerability Management

5.6: Understanding Network and Host Antivirus

5.7: Understanding SEIM and Log Collection

Lesson 6:  Fundamentals of Cryptography and PKI

6.1: Understanding the Basic Components of Cryptography

6.2: Introducing Public Key Infrastructure

6.3: Deciphering Encryption Algorithms

6.4: Understanding Hashing Algorithms

6.5: Examining Secure Socket Layer and Transport Layer Security

6.6: Examining Digital Certificates

Lesson 7:  Introduction to Virtual Private Networks (VPNs)

7.1: Introducing VPNs and Why We Use Them

7.2: Examining Remote Access VPNs

7.3: Examining Site-to-Site VPNs

7.4: Understanding IPsec Concepts, Components, and Operations

7.5: Surveying Cisco VPN Solutions

Lesson 8:  Windows, Linux, and MAC OS X Based Analysis

8.1: Understanding Windows Forensics Basics

8.2: Understanding Linux and MAC OS X Forensics Basics

8.3: Examining Web Server Logs

Lesson 9:  Endpoint Security Technologies

9.1: Examining Host-Based Intrusion Detection

9.2: Exploring Antimalware and Antivirus

9.3: Understanding Host-based Firewalls

9.4: Exploring Application-level Whitelisting/Blacklisting

9.5: Exploring Systems-based Sandboxing

Lesson 10:  Network and Host Telemetry

10.1: Introducing NetFlow

10.2: Examining Firewall Logs

10.3: Understanding Application Visibility and Control

10.4: Examining Web and Email Content Filtering Logs

10.5: Exploring Full Packet Capture

10.6: Surveying IPS Events

10.7: Surveying Host or Endpoint Events

Lesson 11:  Security Monitoring Operations and Challenges

11.1: Understanding Security Monitoring Fundamentals

11.2: Surveying Security Monitoring Tools

11.3: Grasping Security Monitoring Operational Challenges

Lesson 12:  Types of Attacks and Vulnerabilities

12.1: Surveying Types of Vulnerabilities

12.2: Understanding Passive Reconnaissance and Social Engineering

12.3: Understanding Active Reconnaissance Port Scanning and Host Profiling

12.4: Understanding Privilege Escalation and Code Execution Attacks

12.5: Understanding Backdoors and Man-in-the Middle Attacks

12.6: Understanding Denial of Service Attacks

12.7: Surveying Attack Methods for Data Exfiltration

12.8: Understanding ARP Cache Poisoning and Route Manipulation Attacks

12.9: Understanding Password Attacks

12.10: Understanding Wireless Attacks

12.11': Exploring Security Evasion Techniques

CCNA Cyber Ops SECOPS 210-255

Lesson 1:  Threat Analysis

1.1: Understanding Risk Analysis

1.2: Understanding the Common Vulnerability Scoring System (CVSS)

1.3: Interpreting Malware Analysis Tool Output

Lesson 2:  Forensics

2.1: Examining Types of Evidence

2.2: Surveying Windows Forensics

2.3: Surveying Linux Forensics

2.4: Understanding Evidence Collection

2.5: Handling Evidence

2.6: Examining Asset and Threat Actor Attribution

Lesson 3:  Intrusion Analysis

3.1: Introducing Intrusion Analysis Fundamentals

3.2: Examining Packet Captures

3.3: Examining Protocol Headers

3.4: Analyzing Security Device Data

3.5: Differentiating False Positives, False Negatives, True Positives, and True Negatives

3.6: Surveying Cisco Firepower Management Center (FMC) Analysis and Reporting

Lesson 4:  NetFlow for Cyber Security

4.1: Introducing NetFlow

4.2: Comparing NetFlow Versions

4.3: Understanding NetFlow for Cyber Security and Incident Response

4.4: Examining NetFlow Analysis Tools

4.5: Introducing IPFIX

Lesson 5:  Introduction to Incident Response

5.1: Scoping the Incident Response Plan and Process

5.2: Understanding Information Sharing and Coordination

5.3: Identifying the Incident Response Team Structure

Lesson 6:  Incident Response Teams

6.1: Analyzing Computer Incident Response Teams (CSIRTs)

6.2: Analyzing Product Security Incident Response Teams (PSIRTs)

6.3: Surveying Coordination Centers

6.4: Surveying Analysis Centers

6.4: Analyzing Managed Security Service Providers Incident Response Teams

Lesson 7:  Compliance Frameworks

7.1: Considering PCI-DSS

7.2: Considering HIPAA

7.3: Considering SOX

Lesson 8:  Network and Host Profiling

8.1: Understanding Network Profiling

8.2: Understanding Host Profiling

Lesson 9:  Data and Event Analysis

9.1: Understanding Data Normalization

9.2: Deconstructing Universal Data Formats

9.3: Understanding the 5-tuple Correlation

9.4: Performing DNS Analysis

9.5: Performing Web Log Analysis

9.6: Performing Deterministic and Probabilistic Analysis

Lesson 10:  Intrusion Event Categories

10.1: Identifying and Mitigating Reconnaissance

10.2: Identifying and Mitigating Weaponization

10.3: Identifying and Mitigating Delivery

10.4: Identifying and Mitigating Exploitation

10.5: Identifying and Mitigating Installation

10.6: Identifying and Mitigating Command and Control

10.7: Understanding Action on Objectives

Lesson 11:  The Incident Handling Process

11.1: Introduction to the NIST SP800-61 Incident Handling Process

11.2: Performing

Lessons-based Hardening

11.3: Performing Incident Reporting

11.4: Understanding Evidence Collection Orders

11.5: Preserving Data Integrity

11.6: Ensuring Data Preservation

11.7: Considering Volatile Data Collection

11.8: Applying the VERIS Schema Categories to a Given Incident

Submit Errata