Oreilly - Cisco Firepower and Advanced Malware Protection LiveLessons
by Omar Santos | Publisher: Cisco Press | Release Date: July 2016 | ISBN: 9780134468709
Overview More than 6 hours of video training covering everything you need to know to design, configure, and troubleshoot Cisco ASA Firepower services. Description DescriptionLearn how Cisco Advanced Malware Protection (AMP) capabilities have been integrated into the Cisco ASA with FirePOWER Services and Firepower Threat Defense. Cisco Firepower and Advanced Malware Protection LiveLessons walks you through the steps for designing, configuring, and troubleshooting Cisco ASA Firepower services so you can implement latest threat detection services from Cisco. Omar Santos, best-selling author of CCNA Security Cert Guide and Complete Video Course and a principal engineer of the Cisco Product Security Incident Response Team (PSIRT), provides step-by-step coverage of the new Cisco Firepower services and explores the Cisco Next-Generation IPS appliances, Cisco ASA with Firepower services, AMP for networks, endpoints and content security, and Firepower Management Center.Coverage includes the following:Lesson 1: Fundamentals of Cisco Next-Generation Network SecurityLesson 2: Introduction and Design of Cisco ASA with FirePOWER ServicesLesson 3: Configuring Cisco ASA with FirePOWER ServicesLesson 4: Cisco AMP for NetworksLesson 5: Cisco AMP for EndpointsLesson 6: Cisco AMP for Content SecurityLesson 7: Configuring and Troubleshooting the Cisco Next-Generation IPS AppliancesLesson 8: Firepower Management CenterWho Should Take This CourseThis video course serves as comprehensive guide for any network and/or security professional who has deployed or is planning to deploy Cisco Next-Generation Security products, including the Cisco ASA with FirePOWER services, Cisco Firepower Threat Defense, Cisco AMP for Networks and Endpoints, and the Cisco Firepower Next-Generation IPS appliances. Any security professional who manages or configures the Cisco Web Security Appliance (WSA) and Cisco Email Security Appliance (ESA) with the new Advanced Malware Protection (AMP) solution will also benefit from this video course. About the Instructor Omar Santos, CISSP No. 463598, is a Principal Engineer in the Cisco Product Security Incident Response Team (PSIRT) within Cisco's Security Research and Operations. He mentors and leads engineers and incident managers during the investigation and resolution of security vulnerabilities in all Cisco products, including cloud services. Omar has been working with information technology and cybersecurity since the mid-1990s. Omar has designed, implemented, and supported numerous secure networks for Fortune 100 and 500 companies and the U.S. government. Prior to his current role, he was a Technical Leader within the World Wide Security Practice and the Cisco Technical Assistance Center (TAC), where he taught, led, and mentored many engineers within both organizations. Omar is an active member of the security community, where he leads several industry-wide initiatives and standard bodies. His active role helps businesses, academic institutions, state and local law enforcement agencies, and other participants that are dedicated to increasing the security of the critical infrastructure. Omar is the author of several books and numerous whitepapers, articles, and security configuration guidelines and best practices. He has also delivered numerous technical presentations at many conferences and to Cisco customers and partners, in addition to many C-level executive presentations to many organizations. What You Will Learn Table of Contents Lesson 1: Fundamentals of Cisco Next-Generation Network Security1.1 Understanding the New Security Threat Landscape and the Attack Continuum1.2 Understanding the Cisco ASA Next-Generation Firewalls and the FirePOWER Module1.3 Understanding Next-Generation Intrusion Prevention Systems (NGIPS)1.4 Understanding Advanced Malware Protection (AMP) for Endpoints and Networks1.5 Understanding the Cisco AMP Threat Grid1.6 Understanding Cisco Email Security1.7 Understanding Cisco Web Security1.8 Understanding the Cisco Identity Services Engine (ISE)1.9 Understanding the Cisco Meraki Cloud-managed MDM and Security Appliances1.10 Understanding Cisco VPN Solutions1.11 Introduction to the Cisco Firepower 4100 Series Firewall1.12 Cisco Firepower Threat Defense (FTD)1.13 Introduction to FX-OSLesson 2: Introduction and Design of Cisco ASA with FirePOWER Services2.1 Understanding Inline vs. Promiscuous Mode2.2 Understanding Cisco ASA FirePOWER Management Options2.3 Understanding Cisco ASA FirePOWER Services Sizing2.4 Understanding Cisco ASA FirePOWER Services Licensing2.5 Cisco ASA FirePOWER Compatibility with ASA Features2.6 Cisco ASA FirePOWER Packet Processing Order of Operations2.7 Understanding Cisco ASA FirePOWER Services and High Availability2.8 Deploying Cisco ASA FirePOWER Services in the Internet Edge2.9 Deploying Cisco ASA FirePOWER Services in VPN Scenarios2.10 Deploying Cisco ASA FirePOWER Services in the Data CenterLesson 3: Configuring Cisco ASA with FirePOWER Services3.1 Initial Setup of the Cisco ASA FirePOWER Module in Cisco ASA 5585-X Appliances3.2 Initial Setup of the Cisco ASA FirePOWER Module in Cisco ASA 5500-X Appliances3.3 Configuring the Cisco ASA to Redirect Traffic to the Cisco ASA FirePOWER Module 3.4 Configuring the Cisco ASA FirePOWER Module Using the Adaptive Security Device Manager (ASDM)3.5 Configuring the Cisco ASA FirePOWER Services Module for Firepower Management Center3.6 Troubleshooting Cisco ASA with FirePOWER Services3.7 Configuring Cisco Firepower Threat DefenseLesson 4: Cisco AMP for Networks4.1 Introducing Cisco AMP for Networks4.2 Understanding Cisco AMP for Networks Licensing4.3 Configuring Cisco AMP for Networks 4.4 Troubleshooting Cisco AMP for Networks Lesson 5: Cisco AMP for Endpoints5.1 Deploying Cisco AMP for Endpoints5.2 Custom Detections5.3 Application Control - Blocking and Whitelisting5.4 Network IP Blacklists and Whitelists5.5 Scheduled Scans5.6 Events, File Analysis, Threat Root Cause and Advanced ReportingLesson 6: Cisco AMP for Content Security6.1 Cisco Web Security and AMP6.2 Cisco Email Security and AMPLesson 7: Configuring and Troubleshooting the Cisco Next-Generation IPS Appliances7.1 Cisco Next-Generation IPS Deployment Scenarios 7.2 Cisco Next-Generation IPS Initial Setup7.3 Configuring Cisco Next-Generation IPS Appliances7.4 Troubleshooting Cisco Next-Generation IPS AppliancesLesson 8: Firepower Management Center8.1 Introduction to the Firepower Management Center 8.2 FMC Multi-tenancy and Domains8.3 FMC Reporting and Security OperationsAbout LiveLessons Video Training LiveLessons Video Training series publishes hundreds of hands-on, expert-led video tutorials covering a wide selection of technology topics designed to teach you the skills you need to succeed. This professional and personal technology video series features world-leading author instructors published by your trusted technology brands: Addison-Wesley, Cisco Press, IBM Press, Pearson IT Certification, Prentice Hall, Sams, and Que. Topics include IT Certification, Programming, Web Development, Mobile Development, Home and Office Technologies, Business and Management, and more. View all LiveLessons on InformIT at http://www.informit.com/livelessons
- Introduction
- Cisco Firepower and Advanced Malware Protection LiveLessons: Introduction 00:01:36
- Lesson 1: Fundamentals of Cisco Next-Generation Network Security
- Learning objectives 00:01:04
- 1.1 Understanding the New Security Threat Landscape and the Attack Continuum 00:07:15
- 1.2 Understanding the Cisco ASA Next-Generation Firewalls and the FirePOWER Module 00:06:48
- 1.3 Understanding Next-Generation Intrusion Prevention Systems (NGIPS) 00:04:55
- 1.4 Understanding Advanced Malware Protection (AMP) for Endpoints and Networks 00:12:36
- 1.5 Understanding the Cisco AMP Threat Grid 00:02:44
- 1.6 Understanding Cisco Email Security 00:08:52
- 1.7 Understanding Cisco Web Security 00:05:21
- 1.8 Understanding the Cisco Identity Services Engine (ISE) 00:09:43
- 1.9 Understanding the Cisco Meraki Cloud-managed MDM and Security Appliances 00:01:48
- 1.10 Understanding Cisco VPN Solutions 00:04:13
- 1.11 Introduction to the Cisco Firepower 4100 Series Firewall 00:02:52
- 1.12 Cisco Firepower Threat Defense (FTD) 00:06:03
- 1.13 Introduction to FX-OS 00:06:12
- Lesson 2: Introduction and Design of Cisco ASA with FirePOWER Services
- Learning objectives 00:01:02
- 2.1 Understanding Inline vs. Promiscuous Mode 00:03:48
- 2.2 Understanding Cisco ASA FirePOWER Management Options 00:02:50
- 2.3 Understanding Cisco ASA FirePOWER Services Sizing 00:06:12
- 2.4 Understanding Cisco ASA FirePOWER Services Licensing 00:01:45
- 2.5 Cisco ASA FirePOWER Compatibility with ASA Features 00:01:48
- 2.6 Cisco ASA FirePOWER Packet Processing Order of Operations 00:03:18
- 2.7 Understanding Cisco ASA FirePOWER Services and High Availability 00:08:02
- 2.8 Deploying Cisco ASA FirePOWER Services in the Internet Edge 00:01:18
- 2.9 Deploying Cisco ASA FirePOWER Services in VPN Scenarios 00:01:13
- 2.10 Deploying Cisco ASA FirePOWER Services in the Data Center 00:02:02
- Lesson 3: Configuring Cisco ASA with FirePOWER Services
- Learning objectives 00:00:32
- 3.1 Initial Setup of the Cisco ASA FirePOWER Module in Cisco ASA 5585-X Appliances 00:09:23
- 3.2 Initial Setup of the Cisco ASA FirePOWER Module in Cisco ASA 5500-X Appliances 00:04:52
- 3.3 Configuring the Cisco ASA to Redirect Traffic to the Cisco ASA FirePOWER Module 00:03:48
- 3.4 Configuring the Cisco ASA FirePOWER Module Using the Adaptive Security Device Manager (ASDM) 00:11:11
- 3.5 Configuring the Cisco ASA FirePOWER Services Module for Firepower Management Center 00:04:29
- 3.6 Troubleshooting Cisco ASA with FirePOWER Services 00:08:21
- 3.7 Configuring Cisco Firepower Threat Defense 00:08:07
- Lesson 4: Cisco AMP for Networks
- Learning objectives 00:00:25
- 4.1 Introducing Cisco AMP for Networks 00:06:35
- 4.2 Understanding Cisco AMP for Networks Licensing 00:03:57
- 4.3 Configuring Cisco AMP for Networks 00:10:34
- 4.4 Troubleshooting Cisco AMP for Networks 00:08:25
- Lesson 5: Cisco AMP for Endpoints
- Learning objectives 00:00:31
- 5.1 Deploying Cisco AMP for Endpoints 00:04:19
- 5.2 Custom Detections 00:03:38
- 5.3 Application Control - Blocking and Whitelisting 00:02:33
- 5.4 Network IP Blacklists and Whitelists 00:01:19
- 5.5 Scheduled Scans 00:02:28
- 5.6 Events, File Analysis, Threat Root Cause, and Advanced Reporting 00:09:20
- Lesson 6: Cisco AMP for Content Security
- Learning objectives 00:00:33
- 6.1 Cisco Web Security and AMP 00:04:52
- 6.2 Cisco Email Security and AMP 00:01:16
- Lesson 7: Configuring and Troubleshooting the Cisco Next-Generation IPS Appliances
- Learning objectives 00:00:33
- 7.1 Cisco Next-Generation IPS Deployment Scenarios 00:12:45
- 7.2 Configuring Cisco Next-Generation IPS Policies and Rules 00:10:30
- 7.3 Intrusion Policies Advanced Settings 00:02:02
- 7.4 Troubleshooting Cisco Next-Generation IPS Appliances 00:03:23
- Lesson 8: Firepower Management Center
- Learning objectives 00:00:28
- 8.1 Introduction to the Firepower Management Center 00:04:03
- 8.2 FMC Multitenancy and Domains 00:02:27
- 8.3 FMC Reporting and Security Operations 00:04:13