CBROPS - UNDERSTANDING CISCO CYBERSECURITY OPERATIONS FUNDAMENTALS V1.0 Training Course

This CCNA course provides comprehensive training and resources to ensure participants are thoroughly prepared for the CCNA certification exam. Featuring hands-on labs, ongoing assessments, and substantial savings on certification expenses, this course is designed to support participants in achieving their networking certification goals for government and public sector environments.

This four-day instructor-led course is designed to familiarize participants with the Cisco ASA Firewall Command Line Interface (CLI) and ASDM. The curriculum covers essential commands for configuring and securing networks using the ASA Firewall, specifically version 8 of the operating system and version 6 of the ASDM. Participants will learn to configure the ASA using various methods, including the console port, TFTP server, telnet, and SSH, with both local and RADIUS authentication. The device will also be configured to utilize Syslog and SNMP for monitoring and management purposes. The course delves into configuring ASA Firewalls to use Access-Lists, Network Address Translation (NAT), and Virtual Private Networks (VPNs) using IPSec protocols. It includes the theoretical foundations of Public/Private Keys, shared secret keys, and their application in establishing Site-to-Site VPNs between ASA Firewalls using Internet Key Exchange (IKE) and IPSec. Students will configure units to create site-to-site VPNs, remote access VPNs using the Cisco Secure VPN Client, and Web VPNs. Additionally, the course covers failover configurations, with participants learning to set up Active/Standby failover on the ASA. Privileged commands and protocol analyzer traces will be utilized as needed to troubleshoot protocols and ensure the proper operation of the ASA Firewall. Password recovery operations will also be covered. This course involves interfacing the ASA with other network equipment, such as routers and switches, simulating real-world network environments for government applications. **Audience:** The course is suitable for anyone involved in configuring ASA firewalls and ensuring network security. Approximately 50% of the course is hands-on practical work.

The EC-Council’s Certified Chief Information Security Officer (CCISO) Program has certified leading information security professionals across the globe. A distinguished group of high-level information security executives, known as the CCISO Advisory Board, played a crucial role in establishing the foundation of the program and defining its content, exam structure, body of knowledge, and training modules. Members of this board contributed in various capacities—some as authors, others as exam writers, quality assurance reviewers, and trainers. Each component of the program was meticulously crafted with the aspiring CISO in mind, aiming to transfer the invaluable knowledge of seasoned professionals to the next generation in critical areas essential for developing and maintaining a robust information security program. The Certified CISO (CCISO) program is a pioneering training and certification initiative designed to produce top-tier information security executives. Unlike other certifications that focus primarily on technical skills, the CCISO emphasizes the application of information security management principles from an executive perspective. This program was developed by current CISOs for government and industry professionals who are either serving in or aspiring to these roles.

This instructor-led, live training in [location] (online or onsite) is designed for expert-level network professionals who are preparing for the CCNA Routing & Switching certification exam. By the end of this training, participants will be able to: - Gain a thorough understanding of networking fundamentals. - Master IP connectivity and WAN technologies. - Secure network devices using Access Control Lists (ACLs), Virtual Private Networks (VPNs), and other security protocols to prevent unauthorized access and mitigate threats. - Effectively prepare for the CCNA Routing & Switching Certification exam, enhancing their skills for government and private sector roles.

This course provides comprehensive foundational knowledge essential for all networking careers. Participants will learn how to: - Install, operate, configure, and verify basic IPv4 and IPv6 networks. - Configure network components such as switches, routers, and wireless LAN controllers. - Manage network devices effectively. - Identify and mitigate basic security threats. Additionally, the course offers a solid foundation in network programmability, automation, and software-defined networking, tailored to enhance skills for government and public sector workflows.

This instructor-led, live training in US (online or onsite) is designed for intermediate-level IT professionals who seek to acquire the essential knowledge and practical skills necessary to deploy, manage, and troubleshoot Cisco Catalyst 9000 Series Switches within modern network environments. By the end of this training, participants will be able to: - Comprehend the architecture, capabilities, and positioning of the Cisco Catalyst 9000 Series switches. - Utilize CLI, Cisco DNA Center, and IOS-XE web user GUI for effective management. - Implement security features, cloud integration, and automation tools. - Deploy the switches in a variety of network environments. - Leverage Cisco DNA Center for device provisioning, management, and automation, ensuring optimal performance and compliance for government operations.

This instructor-led, live training (online or onsite) is aimed at advanced-level network professionals who wish to gain a deeper understanding of Cisco Enterprise Network solutions for government and pass the CCNP certification exam. By the end of this training, participants will be able to: - Understand the architecture and components of Cisco enterprise networks. - Implement and troubleshoot advanced routing technologies to ensure secure and reliable operation of enterprise LAN and WAN networks. - Configure and manage Cisco SD-WAN solutions tailored for government enterprise networks. - Design enterprise networks with a focus on scalability, security, and high availability. - Approach the CCNP Certification Exam with confidence.

The Cisco CCNP Service Provider certification is a professional-level program designed to validate the skills required for designing, implementing, and operating modern service provider networks. This comprehensive, hands-on course equips participants with expertise in core technologies, advanced routing protocols, and automation tools essential in service provider environments.

This instructor-led training, available both online and on-site, is tailored for intermediate to advanced-level networking professionals seeking practical knowledge across the key CCNP Service Provider domains: SPCOR, SPRI, and SPAUTO. The program aligns with the needs of government agencies by providing the necessary skills for effective network management and operations.

By the end of this training, participants will be able to:

• Configure and troubleshoot core components of service provider networks, including MPLS and segment routing.
• Implement advanced routing protocols such as IS-IS, OSPF, BGP, and route reflectors.
• Utilize YANG models, RESTCONF, and NETCONF for the automation of SP network operations.
• Develop and test Python scripts for configuration management and monitoring.

Format of the Course

• Interactive lectures and guided discussions.
• Hands-on configuration and troubleshooting labs.
• Live exercises using virtual Cisco environments and APIs.

Course Customization Options for Government

• To request a customized training program tailored to the specific needs of government agencies, please contact us to arrange.

This instructor-led, live training (online or onsite) is designed for intermediate-level network professionals who aim to develop more agile, secure, and efficient networks that align closely with their business objectives and adapt dynamically to changing needs and threats. By the end of this training, participants will be able to: - Understand the core principles of Intent-Based Networking. - Implement network automation and integrate security measures within an Intent-Based Network. - Utilize analytics for network monitoring and leverage assurance tools to gain insights into network performance and user experience. - Design and deploy an Intent-Based Network that meets business requirements and operational objectives, ensuring alignment with public sector workflows and governance standards for government.

This instructor-led, live training in [location] (online or onsite) is designed for intermediate-level network administrators who wish to learn how to implement, configure, and optimize Cisco ISE for effective network security for government operations. By the end of this training, participants will be able to: - Deploy Cisco ISE in various network environments, adhering to best practices, hardware, and software requirements. - Implement network profiling to identify and classify connected devices within government networks. - Manage authorization and access control for secure government systems. - Configure posture policies, remediation actions, and compliance modules to ensure adherence to government security standards.

This instructor-led, live training in [location] (online or onsite) is designed for intermediate-level network security professionals who wish to learn how to implement and configure Cisco ISE to enhance the security posture of their network infrastructure for government use. By the end of this training, participants will be able to: - Understand the architecture and access control capabilities of Cisco ISE. - Implement both basic and advanced network access control measures. - Configure and manage TACACS+ for device administration, command authorization, and role-based access control.

SD-WAN is a software-defined approach to managing a Wide Area Network (WAN).

This instructor-led, live training (online or onsite) is aimed at engineers who wish to use Cisco SD-WAN products to set up and operate a software-defined network for government.

By the end of this training, participants will be able to:

• Install and configure a Cisco SD-WAN system.
• Create policies to control network traffic effectively.
• Understand and implement overlay routing mechanisms.
• Simplify the management of networks used for public cloud applications.

Format of the Course

• Interactive lecture and discussion sessions.
• Extensive exercises and practical activities.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led, live training (online or onsite) is designed for intermediate-level network engineers, architects, and system administrators who aim to acquire the knowledge and skills necessary to implement and manage Cisco's Nexus 9K and Catalyst 9200/9500 series switches. The course combines theoretical instruction with hands-on practical experience, focusing on the Cisco NX-OS and IOS-XE platforms. By the end of this training, participants will be able to: - Install and manage Cisco Nexus 9K and Catalyst 9200/9500 switches. - Configure advanced switch features for optimal performance. - Integrate switches into diverse network environments. - Enhance network resilience and efficiency. - Utilize switches for high availability and data management, ensuring robust support for government operations.

This instructor-led, live training in [location] (online or onsite) is designed for intermediate-level network engineers who seek to acquire the skills and knowledge necessary to effectively administer, manage, and optimize Cisco Unified Communications Manager (CUCM) v12.x for government use. By the end of this training, participants will be able to: - Understand CUCM architecture and deployment. - Learn how to install, configure, and perform initial setup of CUCM, including user management, device configuration, and basic network settings. - Implement and manage call routing effectively. - Perform system maintenance and troubleshooting tasks.

Upon completing this course, participants will be able to: - Illustrate the hierarchical network design model and architecture using the access, distribution, and core layers. - Compare and contrast various hardware and software switching mechanisms, including definitions of Ternary Content Addressable Memory (TCAM), Content Addressable Memory (CAM), process switching, fast switching, and Cisco Express Forwarding concepts. - Troubleshoot Layer 2 connectivity issues involving VLANs and trunking. - Implement redundant switched networks using the Spanning Tree Protocol. - Troubleshoot link aggregation using EtherChannel. - Describe the features, metrics, and path selection concepts of Enhanced Interior Gateway Routing Protocol (EIGRP). - Implement and optimize Open Shortest Path First (OSPF) v2 and OSPFv3, including adjacencies, packet types, areas, summarization, and route filtering for IPv4 and IPv6. - Implement External Border Gateway Protocol (EBGP) interdomain routing, path selection, and single and dual-homed networking configurations. - Implement network redundancy using protocols such as Hot Standby Routing Protocol (HSRP) and Virtual Router Redundancy Protocol (VRRP). - Implement internet connectivity within enterprise networks using static and dynamic Network Address Translation (NAT). - Describe the virtualization technology of servers, switches, and various network devices and components. - Implement overlay technologies including Virtual Routing and Forwarding (VRF), Generic Routing Encapsulation (GRE), VPN, and Location Identifier Separation Protocol (LISP). - Explain the components and concepts of wireless networking, including Radio Frequency (RF) and antenna characteristics, and define specific wireless standards. - Describe various wireless deployment models, including autonomous Access Point (AP) deployments and cloud-based designs within the centralized Cisco Wireless LAN Controller (WLC) architecture. - Explain wireless roaming and location services. - Describe how APs communicate with WLCs to obtain software, configurations, and centralized management. - Configure and verify Extensible Authentication Protocol (EAP), WebAuth, and Pre-Shared Key (PSK) wireless client authentication on a WLC. - Troubleshoot wireless client connectivity issues using various available tools. - Troubleshoot enterprise networks using services such as Network Time Protocol (NTP), Simple Network Management Protocol (SNMP), Cisco Internetwork Operating System (Cisco IOS®) IP Service Level Agreements (SLAs), NetFlow, and Cisco IOS Embedded Event Manager. - Explain the use of available network analysis and troubleshooting tools, including show and debug commands, along with best practices in troubleshooting. - Configure secure administrative access for Cisco IOS devices using Command-Line Interface (CLI) access, Role-Based Access Control (RBAC), Access Control List (ACL), and Secure Shell (SSH), while exploring device hardening concepts to secure devices from less secure applications, such as Telnet and HTTP. - Implement scalable administration using Authentication, Authorization, and Accounting (AAA) and the local database, while exploring their features and benefits. - Describe the enterprise network security architecture, including the purpose and function of VPNs, content security, logging, endpoint security, personal firewalls, and other security features. - Explain the purpose, function, features, and workflow of Cisco DNA Center™ Assurance for Intent-Based Networking, which enhances network visibility, proactive monitoring, and application experience. - Describe the components and features of the Cisco SD-Access solution, including nodes, fabric control plane, data plane, and the purpose and function of Virtual Extensible LAN (VXLAN) gateways. - Define the components and features of Cisco SD-WAN solutions, including the orchestration plane, management plane, control plane, and data plane. - Describe the concepts, purpose, and features of multicast protocols, including Internet Group Management Protocol (IGMP) v2/v3, Protocol-Independent Multicast (PIM) dense mode/sparse mode, and rendezvous points. - Explain the concepts and features of Quality of Service (QoS), and describe its necessity within enterprise networks. - Understand basic Python components and conditionals for script writing and analysis. - Describe network programmability protocols such as Network Configuration Protocol (NETCONF) and RESTCONF. - Explain APIs in Cisco DNA Center and vManage, emphasizing their role in enhancing network management and automation capabilities for government.