Length
3 Days
Version
3.0

Overview

Please Note: This is a virtual ILT, three-day course.

This course is a lab-based, hands-on course offered by Cisco Learning Services. It is a lab-intensive course that introduces students to the powerful features of Cisco AMP for Endpoints software. Day one of this three-day virtual class covers modern threats, vulnerabilities, and Cisco Advanced Malware Protection (AMP) technologies. Days two and three detail the Cisco AMP for Endpoints product architecture and how it can be used to protect against malware.

Key Topics

Detailed Info
  • Modern Malware
  • Attack Vectors and Trends
  • Outbreak Control
  • Groups and Deployment
  • Exploit Kits and Botnets
  • Console Interface and Navigation
  • Endpoint Policies
  • Analysis
Skills Gained
Key Topics
Target Audience
Prerequisites

Skills Gained

After completing this course, you should be able to:

  • Describe malware terminology and recognise malware categories
  • Describe the architecture and individual security features of Windows, Apple Mac, and Linux operating systems and the concept of vulnerabilities
  • Describe the components and behaviour of exploit kits and botnets
  • Describe modern attack vectors and trends
  • Recognise the key components and methodologies of Cisco Advanced Malware Protection
  • Recognise the key features and concepts of the AMP for Endpoints product
  • Navigate the AMP for Endpoints console interface and perform first-use setup tasks
  • Configure and customise AMP for Endpoints to perform malware detection
  • Create and configure a policy for AMP-protected endpoints
  • Plan, deploy, and troubleshoot an AMP for Endpoints installation
  • Analyse files and events by using the AMP for Endpoints console and be able to produce threat reports
  • Use the AMP for Endpoints tools to analyse a malware attack
  • Describe all features of the Accounts menu for both public and private cloud installations

Key Topics

  • Module 1: Modern Malware
  • Module 2: Operating Systems and Vulnerabilities
  • Module 3: Exploit Kits and Botnets
  • Module 4: Attack Vectors and Trends
  • Module 5: Introduction to Cisco AMP Technologies
  • Module 6: AMP for Endpoints Overview and Architecture
  • Module 7: Console Interface and Navigation
  • Module 8: Outbreak Control
  • Module 9: Endpoint Policies
  • Module 10: Groups and Deployment
  • Module 11: Analysis
  • Module 12: Analysis Case Studies
  • Module 13: Accounts

Target Audience

This course is designed for technical professionals who need to know how to deploy and manage Cisco AMP for Endpoints software in their network environments. Targeted roles include:

  • Security Administrators
  • Security Consultants
  • Network Administrators
  • System Engineers
  • Technical Support Personnel

Prerequisites

It is recommended, but not required, that students have the following knowledge and skills before attending this course:

  • TCP/IP experience including the major protocols, common services, and basic network traffic routing
  • General information security fundamentals
  • Fundamentals of how operating systems work, including OS configuration structures, file system I/O and basic OS usage and management
Print course details

The supply of this course by DDLS is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.

Request Course Information

Email Course Outline
Request a Callback

Enter your details below and we'll email you a pdf of the course outline.

Enter your details below and one of our team will give you a call to answer any questions you may have.

Pre-Course Requirements

This course has requirements which must be completed before commencing.
Please click here to view.