O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Cisco Firepower and Advanced Malware Protection LiveLessons

Video Description

Overview

More than 6 hours of video training covering everything you need to know to design, configure, and troubleshoot Cisco ASA Firepower services.

Description

Description
Learn how Cisco Advanced Malware Protection (AMP) capabilities have been integrated into the Cisco ASA with FirePOWER Services and Firepower Threat Defense. Cisco Firepower and Advanced Malware Protection LiveLessons walks you through the steps for designing, configuring, and troubleshooting Cisco ASA Firepower services so you can implement latest threat detection services from Cisco. Omar Santos, best-selling author of CCNA Security Cert Guide and Complete Video Course and a principal engineer of the Cisco Product Security Incident Response Team (PSIRT), provides step-by-step coverage of the new Cisco Firepower services and explores the Cisco Next-Generation IPS appliances, Cisco ASA with Firepower services, AMP for networks, endpoints and content security, and Firepower Management Center.

Coverage includes the following:
Lesson 1: Fundamentals of Cisco Next-Generation Network Security
Lesson 2: Introduction and Design of Cisco ASA with FirePOWER Services
Lesson 3: Configuring Cisco ASA with FirePOWER Services
Lesson 4: Cisco AMP for Networks
Lesson 5: Cisco AMP for Endpoints
Lesson 6: Cisco AMP for Content Security
Lesson 7: Configuring and Troubleshooting the Cisco Next-Generation IPS Appliances
Lesson 8: Firepower Management Center

Who Should Take This Course
This video course serves as comprehensive guide for any network and/or security professional who has deployed or is planning to deploy Cisco Next-Generation Security products, including the Cisco ASA with FirePOWER services, Cisco Firepower Threat Defense, Cisco AMP for Networks and Endpoints, and the Cisco Firepower Next-Generation IPS appliances. Any security professional who manages or configures the Cisco Web Security Appliance (WSA) and Cisco Email Security Appliance (ESA) with the new Advanced Malware Protection (AMP) solution will also benefit from this video course.

About the Instructor

Omar Santos, CISSP No. 463598, is a Principal Engineer in the Cisco Product Security Incident Response Team (PSIRT) within Cisco's Security Research and Operations. He mentors and leads engineers and incident managers during the investigation and resolution of security vulnerabilities in all Cisco products, including cloud services. Omar has been working with information technology and cybersecurity since the mid-1990s. Omar has designed, implemented, and supported numerous secure networks for Fortune 100 and 500 companies and the U.S. government. Prior to his current role, he was a Technical Leader within the World Wide Security Practice and the Cisco Technical Assistance Center (TAC), where he taught, led, and mentored many engineers within both organizations. Omar is an active member of the security community, where he leads several industry-wide initiatives and standard bodies. His active role helps businesses, academic institutions, state and local law enforcement agencies, and other participants that are dedicated to increasing the security of the critical infrastructure. Omar is the author of several books and numerous whitepapers, articles, and security configuration guidelines and best practices. He has also delivered numerous technical presentations at many conferences and to Cisco customers and partners, in addition to many C-level executive presentations to many organizations.

What You Will Learn

Table of Contents

Lesson 1: Fundamentals of Cisco Next-Generation Network Security
1.1 Understanding the New Security Threat Landscape and the Attack Continuum
1.2 Understanding the Cisco ASA Next-Generation Firewalls and the FirePOWER Module
1.3 Understanding Next-Generation Intrusion Prevention Systems (NGIPS)
1.4 Understanding Advanced Malware Protection (AMP) for Endpoints and Networks
1.5 Understanding the Cisco AMP Threat Grid
1.6 Understanding Cisco Email Security
1.7 Understanding Cisco Web Security
1.8 Understanding the Cisco Identity Services Engine (ISE)
1.9 Understanding the Cisco Meraki Cloud-managed MDM and Security Appliances
1.10 Understanding Cisco VPN Solutions
1.11 Introduction to the Cisco Firepower 4100 Series Firewall
1.12 Cisco Firepower Threat Defense (FTD)
1.13 Introduction to FX-OS
Lesson 2: Introduction and Design of Cisco ASA with FirePOWER Services
2.1 Understanding Inline vs. Promiscuous Mode
2.2 Understanding Cisco ASA FirePOWER Management Options
2.3 Understanding Cisco ASA FirePOWER Services Sizing
2.4 Understanding Cisco ASA FirePOWER Services Licensing
2.5 Cisco ASA FirePOWER Compatibility with ASA Features
2.6 Cisco ASA FirePOWER Packet Processing Order of Operations
2.7 Understanding Cisco ASA FirePOWER Services and High Availability
2.8 Deploying Cisco ASA FirePOWER Services in the Internet Edge
2.9 Deploying Cisco ASA FirePOWER Services in VPN Scenarios
2.10 Deploying Cisco ASA FirePOWER Services in the Data Center
Lesson 3: Configuring Cisco ASA with FirePOWER Services
3.1 Initial Setup of the Cisco ASA FirePOWER Module in Cisco ASA 5585-X Appliances
3.2 Initial Setup of the Cisco ASA FirePOWER Module in Cisco ASA 5500-X Appliances
3.3 Configuring the Cisco ASA to Redirect Traffic to the Cisco ASA FirePOWER Module
3.4 Configuring the Cisco ASA FirePOWER Module Using the Adaptive Security Device Manager (ASDM)
3.5 Configuring the Cisco ASA FirePOWER Services Module for Firepower Management Center
3.6 Troubleshooting Cisco ASA with FirePOWER Services
3.7 Configuring Cisco Firepower Threat Defense
Lesson 4: Cisco AMP for Networks
4.1 Introducing Cisco AMP for Networks
4.2 Understanding Cisco AMP for Networks Licensing
4.3 Configuring Cisco AMP for Networks
4.4 Troubleshooting Cisco AMP for Networks
Lesson 5: Cisco AMP for Endpoints
5.1 Deploying Cisco AMP for Endpoints
5.2 Custom Detections
5.3 Application Control - Blocking and Whitelisting
5.4 Network IP Blacklists and Whitelists
5.5 Scheduled Scans
5.6 Events, File Analysis, Threat Root Cause and Advanced Reporting
Lesson 6: Cisco AMP for Content Security
6.1 Cisco Web Security and AMP
6.2 Cisco Email Security and AMP
Lesson 7: Configuring and Troubleshooting the Cisco Next-Generation IPS Appliances
7.1 Cisco Next-Generation IPS Deployment Scenarios
7.2 Cisco Next-Generation IPS Initial Setup
7.3 Configuring Cisco Next-Generation IPS Appliances
7.4 Troubleshooting Cisco Next-Generation IPS Appliances
Lesson 8: Firepower Management Center
8.1 Introduction to the Firepower Management Center
8.2 FMC Multi-tenancy and Domains
8.3 FMC Reporting and Security Operations


About LiveLessons Video Training

LiveLessons Video Training series publishes hundreds of hands-on, expert-led video tutorials covering a wide selection of technology topics designed to teach you the skills you need to succeed. This professional and personal technology video series features world-leading author instructors published by your trusted technology brands: Addison-Wesley, Cisco Press, IBM Press, Pearson IT Certification, Prentice Hall, Sams, and Que. Topics include IT Certification, Programming, Web Development, Mobile Development, Home and Office Technologies, Business and Management, and more.
View all LiveLessons on InformIT at http://www.informit.com/livelessons

Table of Contents

  1. Introduction
    1. Cisco Firepower and Advanced Malware Protection LiveLessons: Introduction 00:01:36
  2. Lesson 1: Fundamentals of Cisco Next-Generation Network Security
    1. Learning objectives 00:01:04
    2. 1.1 Understanding the New Security Threat Landscape and the Attack Continuum 00:07:15
    3. 1.2 Understanding the Cisco ASA Next-Generation Firewalls and the FirePOWER Module 00:06:48
    4. 1.3 Understanding Next-Generation Intrusion Prevention Systems (NGIPS) 00:04:55
    5. 1.4 Understanding Advanced Malware Protection (AMP) for Endpoints and Networks 00:12:36
    6. 1.5 Understanding the Cisco AMP Threat Grid 00:02:44
    7. 1.6 Understanding Cisco Email Security 00:08:52
    8. 1.7 Understanding Cisco Web Security 00:05:21
    9. 1.8 Understanding the Cisco Identity Services Engine (ISE) 00:09:43
    10. 1.9 Understanding the Cisco Meraki Cloud-managed MDM and Security Appliances 00:01:48
    11. 1.10 Understanding Cisco VPN Solutions 00:04:13
    12. 1.11 Introduction to the Cisco Firepower 4100 Series Firewall 00:02:52
    13. 1.12 Cisco Firepower Threat Defense (FTD) 00:06:03
    14. 1.13 Introduction to FX-OS 00:06:12
  3. Lesson 2: Introduction and Design of Cisco ASA with FirePOWER Services
    1. Learning objectives 00:01:02
    2. 2.1 Understanding Inline vs. Promiscuous Mode 00:03:48
    3. 2.2 Understanding Cisco ASA FirePOWER Management Options 00:02:50
    4. 2.3 Understanding Cisco ASA FirePOWER Services Sizing 00:06:12
    5. 2.4 Understanding Cisco ASA FirePOWER Services Licensing 00:01:45
    6. 2.5 Cisco ASA FirePOWER Compatibility with ASA Features 00:01:48
    7. 2.6 Cisco ASA FirePOWER Packet Processing Order of Operations 00:03:18
    8. 2.7 Understanding Cisco ASA FirePOWER Services and High Availability 00:08:02
    9. 2.8 Deploying Cisco ASA FirePOWER Services in the Internet Edge 00:01:18
    10. 2.9 Deploying Cisco ASA FirePOWER Services in VPN Scenarios 00:01:13
    11. 2.10 Deploying Cisco ASA FirePOWER Services in the Data Center 00:02:02
  4. Lesson 3: Configuring Cisco ASA with FirePOWER Services
    1. Learning objectives 00:00:32
    2. 3.1 Initial Setup of the Cisco ASA FirePOWER Module in Cisco ASA 5585-X Appliances 00:09:23
    3. 3.2 Initial Setup of the Cisco ASA FirePOWER Module in Cisco ASA 5500-X Appliances 00:04:52
    4. 3.3 Configuring the Cisco ASA to Redirect Traffic to the Cisco ASA FirePOWER Module 00:03:48
    5. 3.4 Configuring the Cisco ASA FirePOWER Module Using the Adaptive Security Device Manager (ASDM) 00:11:11
    6. 3.5 Configuring the Cisco ASA FirePOWER Services Module for Firepower Management Center 00:04:29
    7. 3.6 Troubleshooting Cisco ASA with FirePOWER Services 00:08:21
    8. 3.7 Configuring Cisco Firepower Threat Defense 00:08:07
  5. Lesson 4: Cisco AMP for Networks
    1. Learning objectives 00:00:25
    2. 4.1 Introducing Cisco AMP for Networks 00:06:35
    3. 4.2 Understanding Cisco AMP for Networks Licensing 00:03:57
    4. 4.3 Configuring Cisco AMP for Networks 00:10:34
    5. 4.4 Troubleshooting Cisco AMP for Networks 00:08:25
  6. Lesson 5: Cisco AMP for Endpoints
    1. Learning objectives 00:00:31
    2. 5.1 Deploying Cisco AMP for Endpoints 00:04:19
    3. 5.2 Custom Detections 00:03:38
    4. 5.3 Application Control - Blocking and Whitelisting 00:02:33
    5. 5.4 Network IP Blacklists and Whitelists 00:01:19
    6. 5.5 Scheduled Scans 00:02:28
    7. 5.6 Events, File Analysis, Threat Root Cause, and Advanced Reporting 00:09:20
  7. Lesson 6: Cisco AMP for Content Security
    1. Learning objectives 00:00:33
    2. 6.1 Cisco Web Security and AMP 00:04:52
    3. 6.2 Cisco Email Security and AMP 00:01:16
  8. Lesson 7: Configuring and Troubleshooting the Cisco Next-Generation IPS Appliances
    1. Learning objectives 00:00:33
    2. 7.1 Cisco Next-Generation IPS Deployment Scenarios 00:12:45
    3. 7.2 Configuring Cisco Next-Generation IPS Policies and Rules 00:10:30
    4. 7.3 Intrusion Policies Advanced Settings 00:02:02
    5. 7.4 Troubleshooting Cisco Next-Generation IPS Appliances 00:03:23
  9. Lesson 8: Firepower Management Center
    1. Learning objectives 00:00:28
    2. 8.1 Introduction to the Firepower Management Center 00:04:03
    3. 8.2 FMC Multitenancy and Domains 00:02:27
    4. 8.3 FMC Reporting and Security Operations 00:04:13