CCNP and CCIE Security Core SCOR 350-701 Crash Course (Exam Blueprint 1.1)
Published by Pearson
Your ultimate guide to passing the CCNP and CCIE Security Core exam
The CCNP and CCIE Security Core SCOR 350-701 Crash Course is a comprehensive 2-day training course designed to teach core concepts and hands-on skills. It was built to help you successfully study for the Cisco CCNP Security certification while learning real-world security tasks. Omar Santos, best-selling author and trainer, has created this fast-paced live training course to help you learn about every objective in the SCOR exam. This training will also help any network professionals interested in learning the skills required to develop a security infrastructure, recognize threats and vulnerabilities to networks, and mitigate security threats.
You begin with an introduction to the new Cisco CCNP Security and CCIE Security certifications and then quickly dive into the topics of the CCNP Security Implementing and Operating Cisco Security Core Technologies (350-701 SCOR) exam and the cybersecurity foundation topics that you need to successfully study. This is the first exam you must take and pass to pursue your Cisco Security certification career path. You also learn about different Cisco network security concepts, how to secure multi-cloud environments, and the different Cisco Content Security solutions available. The class also covers endpoint protection and detection, secure network access, visibility, and enforcement.
Labs and activities that practice skills in the Cisco CCIE Security and CCNP Security Implementing and Operating Cisco Security Core Technologies (350-701 SCOR) exam are offered throughout the course.
What you’ll learn and how you can apply it
By the end of the live online course, you’ll understand:
- Cybersecurity and network security topics on the exam
- Cloud security, Cisco content security, and incident response
- Endpoint protection and detection, Cisco secure network access, visibility, and enforcement
And you’ll be able to:
- Prepare for the exam with real-life scenarios
- Build the knowledge necessary to start a career in cybersecurity
- Understand network threat and attacks, cloud security, and best practices on network security and operations
This live event is for you because...
- You are interested in cybersecurity and Cisco security technologies
- You are preparing for the Cisco CCNP Security Certification or CCIE Security
- You want to learn hands-on security skills
Prerequisites
- Course participants should have a basic understanding of computing and networking
Course Set-up
- Supplemental information and additional material for this course can be accessed at https://hackerrepo.org
Recommended Preparation
- Attend: Modern Cybersecurity Fundamentals by Omar Santos
- Watch: Module 1: Security Concepts from The Complete Cybersecurity Bootcamp, 2nd Edition by Omar Santos
Recommended Follow-up
- Watch: CCNP and CCIE Security Core SCOR 350-701 by Omar Santos and Ron Taylor
- Practice: Ethical Hacking Labs by Omar Santos and Derek Santos
- Read: CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide by Omar Santos
- Read: CompTIA PenTest+ PT0-002 Cert Guide, 2nd Edition by Omar Santos
- Read: Developing Cybersecurity Programs and Policies, 3rd Edition by Omar Santos and Sari Greene
Schedule
The time frames are only estimates and may vary according to how the class is progressing.
DAY 1
Segment 1: Introduction to the CCNP and CCIE Security Certifications (50 minutes)
- Introducing the CCNP and CCIE Security Certifications
- Comparing the CCNP and CCIE Security Certifications with Other Cisco Certifications
- Exploring Tips to Prepare for the Exam
Break (10 minutes)
Segment 2: Cybersecurity Concepts (60 minutes)
- Cybersecurity vs. Information Security (InfoSec)
- The NIST Cybersecurity Framework and Additional NIST Guidance and Documents
- Defining Threats, Vulnerabilities, and Exploits
- Defining Threat Intelligence
- Defining Threat Hunting
- The OWASP Top 10
- Malware Types and Transmission Methods
- Malware Payloads
- Trojan Types, Communication Methods, and Infection Mechanisms
- Ransomware
- Covert Communication
- Keyloggers, Spyware, Analyzing Malware
- Static Analysis vs. Dynamic Analysis
- Common Software and Hardware Vulnerabilities
- Authentication-Based Vulnerabilities
- An Introduction to Digital Forensics and Incident Response
- ISO/IEC 27002:2013 and NIST Incident Response Guidance
Break (10 minutes)
Segment 3: Network Security (45 minutes)
- Traditional Networking Planes
- Introduction to Software-Defined Networking
- VXLAN and Network Overlays
- Micro-Segmentation
- Open Source Initiatives
- Network Function Virtualization
- Cisco Digital Network Architecture (DNA)
- Introduction to the Cisco ACI Solution
- Introduction to Network Programmability
- Modern Programming Languages and Tools
- DevNet Resources
- Getting Started with APIs
- YANG Models, NETCONF, and RESTCONF
- OpenConfig and gNMI
Break (10 minutes)
Segment 4: Securing the Cloud (50 minutes)
- Cloud Service Models and Describing the Customer vs. Provider Security Responsibility for the Different Cloud Service Models
- DevOps, Continuous Integration (CI), Continuous Delivery (CD), and DevSecOps
- DevOps
- CI/CD Pipelines
- Serverless Computing
- Container Orchestration and Kubernetes
- Microservices and Micro-Segmentation
- DevSecOps
- Patch Management in the Cloud
- Security Assessment in the Cloud and Questions to Ask Your Cloud Service Provider
- The Cisco Umbrella Architecture
- Secure Internet Gateway Cisco Secure Email Cloud (formerly known as Cisco Email Security in the Cloud) Cisco Secure Cloud Analytics (formerly Stealthwatch Cloud) AppDynamics Cloud Monitoring Cisco Secure Workload (formerly Cisco Tetration)
Q&A (5 minutes)
DAY 2
Content Security (60 minutes)
- Content Security Fundamentals
- Cisco Async Operating System (AsyncOS)
- Cisco Secure Web Appliance
- Explicit Forward Mode vs. Transparent Mode
- Traffic Redirection with Policy-Based Routing
- Cisco Secure Email Threat Defense
- SenderBase
- SMTP Authentication and Encryption
- Domain Keys Identified Mail (DKIM)
Break (10 minutes)
Endpoint Protection and Detection (50 minutes)
- Endpoint Threat Detection and Response (ETDR); Endpoint Detection and Response (EDR) and the XDR Concept
- Cisco Secure Endpoint
- Cisco Threat Response
- Cisco SecureX Integrations and Overview
Break (10 minutes)
Secure Network Access, Visibility, and Enforcement (50 minutes)
- Cisco Next-Generation Firewalls (Cisco Secure Firewall) and Cisco Next-Generation Intrusion Prevention Systems
- Additional Tips for Infrastructure Security
- Introduction to Authentication, Authorization, and Accounting
- The Principle of Least Privilege and Separation of Duties
- Multifactor Authentication and Duo Security
- Zero Trust and BeyondCorp
- Single Sign-On
- Mandatory Access Control (MAC)
- Discretionary Access Control (DAC)
- Role-Based Access Control (RBAC)
- Attribute-Based Access Control (ABAC)
- Infrastructure Access Controls
- AAA Protocols: RADIUS, TACACS+, Diameter
- 802.1X
- Network Access Control List and Firewalling
- VLAN ACLs, Security Group–Based ACLs, Downloadable ACLs
- Cisco Identity Services Engine (ISE)
- Cisco Platform Exchange Grid (pxGrid)
- Cisco ISE Context and Identity Services; Profiling Services; and Authorization Rules
- Cisco TrustSec, Posture Assessment
- Change of Authorization (CoA)
Break (10 minutes)
Final Preparation and Q&A (45 minutes)
Q&A (5 minutes)
Your Instructor
Omar Santos
Omar Santos is a Distinguished Engineer at Cisco focusing on advanced AI security research, cybersecurity, incident response, and vulnerability disclosure. He is the co-chair of the Coalition for Secure AI (CoSAI) alongside leading AI companies such as OpenAI, Google, Anthropic, and NVIDIA. Omar has served in the board of the OASIS Open standards organization and is also the chair of the OpenEoX and the Common Security Advisory Framework (CSAF) technical committee. His work led the creation of the CSAF ISO standard. Omar's collaborative efforts extend to numerous organizations, including OWASP, FIRST, and he was the lead of the DEF CON Red Team Village for several years. Omar is the author of over 25 books, 21 video courses, and over 50 academic research papers. Omar is a renowned expert in ethical hacking, vulnerability research, incident response, and AI security. Omar's work in cybersecurity is also recognized through multiple granted patents. Prior to Cisco, Omar served in the United States Marines focusing on the deployment, testing, and maintenance of Command, Control, Communications, Computer, and Intelligence (C4I) systems.