The CCIE Security (Cisco Certified Internetwork Expert – Security) certification is one of the most prestigious and advanced certifications offered by Cisco. It is aimed at network security professionals who possess deep knowledge and expertise in securing enterprise networks, managing advanced security technologies, and troubleshooting complex security solutions.

Why should you choose Nisa For CCIE Security Training?

Nisa Trainings is the best online training platform for conducting one-on-one interactive live sessions with a 1:1 student-teacher ratio. You can gain hands-on experience by working on near-real-time projects under the guidance of our experienced faculty. We support you even after the completion of the course and happy to clarify your doubts anytime. Our teaching style at Nisa Trainings is entirely hands-on. You’ll have access to our desktop screen and will be actively conducting hands-on labs on your desktop.

Job Assistance

If you face any problem while working on CCIE Security Course, then Nisa Trainings is simply a Call/Text/Email away to assist you. We offer Online Job Support for professionals to assist them and to solve their problems in real-time.

The Process we follow for our Online Job Support Service:

• We receive your inquiry for Online Job
• We will arrange a telephone call with our consultant to grasp your complete requirement and the tools you’re
• If our consultant is 100% confident in taking up your requirement and when you are also comfortable with our consultant, we will only agree to provide service. And then you have to make the payment to get the service from
• We will fix the timing for Online Job Support as mutually agreed by you and our consultant.

Course Information

CCIE Security Training

Duration: 25 Hours

Timings: Weekdays (1-2 Hours per day) [OR] Weekends (2-3 Hours per day)

Training Method: Instructor Led Online One-on-One Live Interactive

Sessions.

COURSE CONTENT :

1. Security Concepts and Architecture

• Network Security Fundamentals

  • Security principles and best practices.
  • Security architecture and design.
  • Securing network infrastructures and services.
  • Security posture assessments and threat modeling.
  • Security frameworks like NIST, ISO, and ITIL.

• Security Policies and Governance

  • Development of security policies, compliance, and frameworks.
  • Security awareness training for employees.
  • Risk management, auditing, and monitoring of security policies.
  • Incident response planning and business continuity.

2. Secure Network Access

• AAA (Authentication, Authorization, and Accounting)

  • Configuring and managing AAA services.
  • Integration with RADIUS, TACACS+, and LDAP.
  • 802.1X and network access control (NAC) solutions.
  • Identity services engines (ISE) and their integration with Cisco security products.

• Secure Network Access Control (NAC)

  • Cisco Identity Services Engine (ISE) architecture.
  • Configuring NAC and advanced access control policies.
  • Using Cisco TrustSec for network segmentation and policy enforcement.

3. VPN Technologies

• Site-to-Site VPNs

  • Configuring IPsec VPNs and DMVPN.
  • Implementing GRE tunnels, flexible VPN (FlexVPN).
  • High availability and redundancy in VPN technologies (HSRP, VRRP, GLBP).

• Remote Access VPNs

  • Configuring remote access VPNs using IPsec and SSL technologies.
  • Cisco AnyConnect Secure Mobility Client configuration.
  • Configuring multi-factor authentication (MFA) for VPN connections.

• Advanced VPN Technologies

  • Configuration of advanced VPN protocols like L2TP, GRE over IPsec.
  • SSL VPN solutions for secure remote access.
  • Virtual routing and forwarding (VRF) for VPN segmentation.

4. Firewall Technologies

• Next-Generation Firewalls (NGFW)

  • Cisco Firepower NGFW configuration.
  • Access control policies, application visibility and control (AVC).
  • Intrusion Prevention Systems (IPS) integration.
  • Advanced threat protection (ATP) features and malware defense.

• Cisco ASA (Adaptive Security Appliance)

  • ASA firewall configuration and policies.
  • ASA VPN configuration (site-to-site, remote access, etc.).
  • Firewall policies, inspection modes, and security zones.

• Threat Defense

  • Cisco Advanced Malware Protection (AMP).
  • Threat intelligence integration with Cisco Umbrella and Threat Grid.

5. Intrusion Prevention and Detection

• Cisco IPS/IDS (Intrusion Prevention/Detection System)
  • Cisco Firepower and IPS/IDS functionality.
  • Threat detection, event analysis, and policy configuration.
  • Cisco Firepower management center (FMC) for monitoring and reporting.
• Threat Detection and Mitigation
  • Advanced techniques for detecting zero-day threats and network anomalies.
  • Using Cisco Threat Grid and other threat intelligence sources.

6. Web and Email Security

• Web Security

  • Cisco Web Security Appliance (WSA) configuration.
  • URL filtering, SSL interception, and DNS security.
  • Content inspection, malware blocking, and advanced filtering.

• Email Security

  • Cisco Email Security Appliance (ESA) configuration.
  • Anti-spam, anti-virus, and content filtering solutions.
  • Email encryption and security policies.

7. Cloud Security

• Cisco Umbrella

  • Cloud-based DNS security and threat protection.
  • Cisco Umbrella integration with other network security components.

• Secure Network Access in the Cloud

  • Securing access to cloud environments (AWS, Azure, etc.).
  • Cisco SD-WAN and Cloud Security solutions.
  • Cloud access security broker (CASB) solutions.

• Secure SD-WAN Architecture

  • Configuration of SD-WAN for secure multi-cloud access.
  • Integrating SD-WAN with firewalls and VPNs.
  • End-to-end security architecture in SD-WAN.

8. Endpoint Security

• Advanced Malware Protection (AMP)
  • Cisco AMP for endpoints and its integration with the network.
  • Detecting and mitigating endpoint threats.
• Endpoint Detection and Response (EDR)
  • Integrating Cisco AMP with other endpoint security solutions.
  • Protecting endpoints against ransomware and advanced threats.

9. Security Automation and Programmability

• Automation and Orchestration

  • Automating security workflows with Cisco Security Automation and Orchestration solutions.
  • Network programmability and API integration for security devices (using tools like Cisco DNA Center, Ansible, Python, etc.).
  • Infrastructure as Code (IaC) principles applied to network security.

• Security Analytics and Monitoring

  • Using Cisco Stealthwatch for network visibility and monitoring.
  • Security Information and Event Management (SIEM) tools integration.
  • Automating alerts, responses, and reporting for compliance.

10. Advanced Troubleshooting

• Troubleshooting Network Security Configurations

  • Debugging and troubleshooting ASA, Firepower, and other Cisco security devices.
  • Common security issues (VPN, firewalls, IDS/IPS, etc.) and troubleshooting strategies.
  • Packet analysis with Wireshark and other tools.

• Performance Monitoring and Management

  • Monitoring VPNs, firewalls, and other security devices using Cisco Prime and other network management tools.
  • Troubleshooting security protocols like IPsec and SSL.