CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide

by Omar Santos
Released May 2020
Publisher(s): Cisco Press
ISBN: 9780135971802

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

Trust the best-selling Official Cert Guide series from Cisco Press to help you learn, prepare, and practice for exam success. They are built with the objective of providing assessment, review, and practice to help ensure you are fully prepared for your certification exam.

Related Content

Video: CCNP and CCIE Security Core SCOR 350-701

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide presents you with an organized test preparation routine using proven series elements and techniques. “Do I Know This Already?” quizzes open each chapter and allow you to decide how much time you need to spend on each section. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly.

  • Master Cisco CCNP and CCIE Security Core SCOR 350-701 exam topics

  • Assess your knowledge with chapter-opening quizzes

  • Review key concepts with exam preparation tasks

  • Practice with realistic exam questions in the practice test software

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide, from Cisco Press allows you to succeed on the exam the first time and is the only self-study resource approved by Cisco. Best-selling author and leading security engineer Omar Santos shares preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills.

This complete study package includes

  • A test-preparation routine proven to help you pass the exams

  • Do I Know This Already? quizzes, which allow you to decide how much time you need to spend on each section

  • Chapter-ending and part-ending exercises, which help you drill on key concepts you must know thoroughly

  • The powerful Pearson Test Prep Practice Test software, complete with 200 well-reviewed, exam-realistic questions, customization options, and detailed performance reports

  • More than an hour of video mentoring from the author

  • A final preparation chapter, which guides you through tools and resources to help you craft your review and test-taking strategies

  • Study plan suggestions and templates to help you organize and optimize your study time

Well regarded for its level of detail, study plans, assessment features, challenging review questions and exercises, and video instruction, this official study guide helps you master the concepts and techniques that ensure your exam success.

This official study guide helps you master all the topics on the CCNP and CCIE Security SCOR 350-701 exam, including

  • Cybersecurity fundamentals

  • Cryptography

  • Software-Defined Networking security and network programmability

  • Authentication, Authorization, Accounting (AAA) and Identity Management

  • Network visibility and segmentation

  • Infrastructure security

  • Cisco next-generation firewalls and intrusion prevention systems

  • Virtual Private Networks (VPNs)

  • Securing the cloud

  • Content security

  • Endpoint protection and detection

Omar Santos, an active member of the cybersecurity community, leads several industry-wide initiatives and technology standard bodies. As Principal Engineer of the Cisco Product Security Incident Response Team (PSIRT), he mentors and leads engineers and incident managers in investigating and resolving security vulnerabilities. He has authored dozens of books, video courses, white papers, articles, security configuration guidelines, and best practices. He has been a featured speaker in many cybersecurity conferences around the world.

Companion Website:

The companion website contains 200 practice exam questions and exercises, more than an hour of video training, and much more.

Includes Exclusive Offers For Up to 80% Off Video Training, Practice Tests, and more

Pearson Test Prep online system requirements:

Browsers: Chrome version 73 and above; Safari version 12 and above; Microsoft Edge 44 and above. Devices: Desktop and laptop computers, tablets running on Android v8.0 and iOS v13, smartphones with a minimum screen size of 4.7". Internet access required.

Pearson Test Prep offline system requirements:

Windows 10, Windows 8.1; Microsoft .NET Framework 4.5 Client; Pentium-class 1 GHz processor (or equivalent); 512 MB RAM; 650 MB disk space plus 50 MB for each downloaded practice exam; access to the Internet to register and download exam databases

Also available from Cisco Press for Cisco CCNP and CCIE Security study is the CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide Premium Edition eBook and Practice Test. This digital-only certification preparation product combines an eBook with enhanced Pearson Test Prep Practice Test.

This integrated learning package:

  • Allows you to focus on individual topic areas or take complete, timed exams

  • Includes direct links from each question to detailed tutorials to help you understand the concepts behind the questions

  • Provides unique sets of exam-realistic practice questions

  • Tracks your performance and provides feedback on a module-by-module basis, laying out a complete assessment of your knowledge to help you focus your study where it is needed most

Table of contents

  1. Cover Page
  2. Inside Front Cover
  3. About This eBook
  4. Title Page
  5. Copyright Page
  6. Credits
  7. Contents at a Glance
  8. Contents
  9. About the Author
  10. About the Technical Reviewer
  11. Dedication
  12. Acknowledgments
  13. Introduction
    1. The CCNP Security Certification
    2. The CCIE Security Certification
    3. The Exam Objectives (Domains)
    4. Steps to Pass the SCOR Exam
    5. Facts About the Exam
    6. The Companion Website for Online Content Review
    7. How to Access the Pearson Test Prep (PTP) App
  14. Chapter 1. Cybersecurity Fundamentals
    1. “Do I Know This Already?” Quiz
    2. Introduction to Cybersecurity
    3. Defining What Are Threats, Vulnerabilities, and Exploits
    4. Common Software and Hardware Vulnerabilities
    5. Confidentiality, Integrity, and Availability
    6. Cloud Security Threats
    7. IoT Security Threats
    8. An Introduction to Digital Forensics and Incident Response
    9. Summary
    10. Review All Key Topics
    11. Define Key Terms
    12. Review Questions
  15. Chapter 2. Cryptography
    1. “Do I Know This Already?” Quiz
    2. Introduction to Cryptography
    3. Fundamentals of PKI
    4. Review All Key Topics
    5. Define Key Terms
    6. Review Questions
  16. Chapter 3. Software-Defined Networking Security and Network Programmability
    1. “Do I Know This Already?” Quiz
    2. Introduction to Software-Defined Networking
    3. Introduction to Network Programmability
    4. Review All Key Topics
    5. Define Key Terms
    6. Review Questions
  17. Chapter 4. Authentication, Authorization, Accounting (AAA) and Identity Management
    1. “Do I Know This Already?” Quiz
    2. Introduction to Authentication, Authorization, and Accounting
    3. Authentication
    4. Authorization
    5. Accounting
    6. Infrastructure Access Controls
    7. AAA Protocols
    8. Cisco Identity Services Engine (ISE)
    9. Configuring TACACS+ Access
    10. Configuring RADIUS Authentication
    11. Additional Cisco ISE Design Tips
    12. Review All Key Topics
    13. Define Key Terms
    14. Review Questions
  18. Chapter 5. Network Visibility and Segmentation
    1. “Do I Know This Already?” Quiz
    2. Introduction to Network Visibility
    3. NetFlow
    4. IP Flow Information Export (IPFIX)
    5. NetFlow Deployment Scenarios
    6. Cisco Stealthwatch
    7. Cisco Cognitive Threat Analytics (CTA) and Encrypted Traffic Analytics (ETA)
    8. NetFlow Collection Considerations and Best Practices
    9. Configuring NetFlow in Cisco IOS and Cisco IOS-XE
    10. Configuring NetFlow in NX-OS
    11. Introduction to Network Segmentation
    12. Micro-Segmentation with Cisco ACI
    13. Segmentation with Cisco ISE
    14. Review All Key Topics
    15. Define Key Terms
    16. Review Questions
  19. Chapter 6. Infrastructure Security
    1. “Do I Know This Already?” Quiz
    2. Securing Layer 2 Technologies
    3. Common Layer 2 Threats and How to Mitigate Them
    4. Network Foundation Protection
    5. Understanding and Securing the Management Plane
    6. Understanding the Control Plane
    7. Understanding and Securing the Data Plane
    8. Securing Management Traffic
    9. Implementing Logging Features
    10. Configuring NTP
    11. Securing the Network Infrastructure Device Image and Configuration Files
    12. Securing the Data Plane in IPv6
    13. Securing Routing Protocols and the Control Plane
    14. Review All Key Topics
    15. Define Key Terms
    16. Review Questions
  20. Chapter 7. Cisco Next-Generation Firewalls and Cisco Next-Generation Intrusion Prevention Systems
    1. “Do I Know This Already?” Quiz
    2. Introduction to Cisco Next-Generation Firewalls (NGFW) and Next-Generation Intrusion Prevention Systems (NGIPS)
    3. Comparing Network Security Solutions That Provide Firewall Capabilities
    4. Deployment Modes of Network Security Solutions and Architectures That Provide Firewall Capabilities
    5. High Availability and Clustering
    6. Implementing Access Control
    7. Cisco Firepower Intrusion Policies
    8. Cisco Advanced Malware Protection (AMP)
    9. Security Intelligence, Security Updates, and Keeping Firepower Software Up to Date
    10. Review All Key Topics
    11. Define Key Terms
    12. Review Questions
  21. Chapter 8. Virtual Private Networks (VPNs)
    1. “Do I Know This Already?” Quiz
    2. Virtual Private Network (VPN) Fundamentals
    3. Deploying and Configuring Site-to-Site VPNs in Cisco Routers
    4. Configuring Site-to-Site VPNs in Cisco ASA Firewalls
    5. Configuring Remote Access VPNs in the Cisco ASA
    6. Configuring Clientless Remote Access SSL VPNs in the Cisco ASA
    7. Configuring Client-Based Remote-Access SSL VPNs in the Cisco ASA
    8. Configuring Remote Access VPNs in FTD
    9. Configuring Site-to-Site VPNs in FTD
    10. Review All Key Topics
    11. Define Key Terms
    12. Review Questions
  22. Chapter 9. Securing the Cloud
    1. “Do I Know This Already?” Quiz
    2. What Is Cloud and What Are the Cloud Service Models?
    3. DevOps, Continuous Integration (CI), Continuous Delivery (CD), and DevSecOps
    4. Describing the Customer vs. Provider Security Responsibility for the Different Cloud Service Models
    5. Cisco Umbrella
    6. Cisco Email Security in the Cloud
    7. Cisco Cloudlock
    8. Stealthwatch Cloud
    9. AppDynamics Cloud Monitoring
    10. Cisco Tetration
    11. Review All Key Topics
    12. Define Key Terms
    13. Review Questions
  23. Chapter 10. Content Security
    1. “Do I Know This Already?” Quiz
    2. Content Security Fundamentals
    3. Cisco WSA
    4. Cisco ESA
    5. Cisco Content Security Management Appliance (SMA)
    6. Review All Key Topics
    7. Define Key Terms
    8. Review Questions
  24. Chapter 11. Endpoint Protection and Detection
    1. “Do I Know This Already?” Quiz
    2. Introduction to Endpoint Protection and Detection
    3. Cisco AMP for Endpoints
    4. Cisco Threat Response
    5. Review All Key Topics
    6. Define Key Terms
    7. Review Questions
  25. Chapter 12. Final Preparation
    1. Hands-on Activities
    2. Suggested Plan for Final Review and Study
    3. Summary
  26. Glossary of Key Terms
  27. Appendix A. Answers to the “Do I Know This Already?” Quizzes and Q&A Sections
    1. Do I Know This Already? Quiz Answers
    2. Review Question Answers
  28. Appendix B. CCNP Security Core SCOR (350-701) Exam Updates
    1. Always Get the Latest at the Book’s Product Page
    2. Technical Content
  29. Index
  30. Appendix C. Study Planner
  31. Where are the companion content files? - Register Page
  32. Inside Back Cover
  33. Code Snippets

Product information

  • Title: CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide
  • Author(s): Omar Santos
  • Release date: May 2020
  • Publisher(s): Cisco Press
  • ISBN: 9780135971802