CCNP (642-627) IPS v7.0 Exam Topics

Who can learn this course:

  • Individuals who want to become CCNP Security Professionals

Pre Requisite:

· Any valid Cisco CCENT, CCNA Routing and Switching, or any CCIE certification can act as a prerequisite.

End Objective:

  • Evaluate products and deployment architectures for the Cisco IPS product line.
  • Perform an initial implementation of a Cisco IPS sensor.
  • Implement an initial security policy using a Cisco IPS sensor according to local policies and environmental requirements.
  • Deploy customized policies to adapt Cisco IPS traffic analysis and response to the target environment.
  • Implement a basic Cisco IPS data management and analysis solution.
  • Implement complex Cisco IPS policy virtualization, high availability, and high performance solutions according to policy and environmental requirements.

Course Duration: 30 Hrs

Exam Description

Implementing Cisco Intrusion Prevention System v7.0 (IPS v7.0) exam is associated with

the Cisco Certified Network Professional Security certification. This exam tests a candidate’s knowledge and skills needed to deploy Cisco IPS-based security solutions. Successful graduates will be able to reduce risk to the IT infrastructure and applications using Cisco IPS features, and provide detailed operations support for the Cisco IPS. Candidates can prepare for this exam by taking the Implementing Cisco Intrusion Prevention System course.

Exam Topics

The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.

Pre-Production Design

  • Choose Cisco IPS technologies to implement HLD
  • Choose Cisco products to implement HLD
  • Choose Cisco IPS features to implement HLD
  • Integrate Cisco network security solutions with other security technologies
  • Create and test initial Cisco IPS configurations for new devices/services

Complex Support Operations

  • Optimize Cisco IPS security infrastructure device performance
  • Create complex network security rules, to meet the security policy requirements
  • Configure and verify the IPS features to identify threats and dynamically block them from entering the network
  • Maintain, update and tune IPS signatures
  • Use CSM and MARS for IPS management, deployment, and advanced event correlation.
  • Optimize security functions, rules, and configuration

Advanced Troubleshooting

  • Advanced Cisco IPS security software configuraiton fault finding and repairing
  • Advanced Cisco IPS sensor and module hardware fault finding and repairing