Book description
CCNP and CCIE Security Core SCOR 350-701 Exam Cram is the perfect study guide to help you pass the CCNP and CCIE Security Core SCOR 350-701 exam, providing coverage and practice questions for every exam topic. The book contains an extensive set of preparation tools, including topic overviews, exam alerts, CramSavers, CramQuizzes, chapter-ending review questions, author notes, tips, and an extensive glossary.
The book also contains the extremely useful Cram Sheet: a collection of essential facts in an easy to review format. Complementing all these great study tools is the powerful Pearson Test Prep practice test software, complete with hundreds of exam-realistic practice questions. This assessment software offers you a wealth of customization options and reporting features, allowing you to test your knowledge in study mode, practice mode, or flashcard mode.
Covers the critical information youll need to know to score higher on your CCNP and CCIE Security Core SCOR 350-701 exam
Compare common security vulnerabilities such as software bugs, weak or hardcoded passwords, OWASP top ten, missing encryption ciphers, buffer overflow, path traversal, cross-site scripting/forgery
Configure AAA for device and network access such as TACACS+ and RADIUS
Implement segmentation, access control policies, AVC, URL filtering, malware protection, and intrusion policies
Identify security capabilities, deployment models, and policy management to secure the cloud
Configure cloud logging and monitoring methodologies
Implement traffic redirection and capture methods for web proxy
Describe the components, capabilities, and benefits of the Cisco Umbrella
Configure endpoint antimalware protection using Cisco Secure Endpoint
Describe the uses and importance of a multifactor authentication (MFA) strategy
Table of contents
- Cover Page
- About This eBook
- Title Page
- Copyright Page
- About the Authors
- About the Technical Reviewer
- Dedications
- Acknowledgments
- Contents at a Glance
- Reader Services
- Contents
- Command Syntax Conventions
-
Introduction
- Goals and Methods
- How to Prepare for the Exam
- Chapter Format and Conventions
- Additional Elements
- Practice Questions
- How to Access the Pearson Test Prep (PTP) App
- Customizing Your Exams
- Updating Your Exams
- Who Should Read This Book?
- Strategies for Exam Preparation
- How This Book Is Organized
- Certification Exam Topics and This Book
- Taking the CCIE Security Core SCOR 350-701 Certification Exam
- Tracking Your Status
- How to Prepare for an Exam
- Assessing Exam Readiness
- Cisco CCIE Security Core SCOR 350-701 Certification in the Real World
- Exam Registration
- Book Content Updates
- Contacting the Authors
- Figure Credits
-
Chapter 1. Security Concepts
- Explain Common Threats Against On-Premises and Cloud Environments
- Compare Common Security Vulnerabilities
- Describe Functions of the Cryptography Components
- Compare Site-to-Site VPN and Remote Access VPN Deployment Types
- Describe Security Intelligence Authoring, Sharing, and Consumption
- Explain the Role of the Endpoint in Protecting Humans from Phishing and Social Engineering Attacks
- Explain Northbound and Southbound APIs in the SDN Architecture
- Explain DNAC APIs for Network Provisioning, Optimization, Monitoring, and Troubleshooting
- Interpret Basic Python Scripts Used to Call Cisco Security Appliance APIs
- What Next?
-
Chapter 2. Network Security
- Compare Network Security Solutions and Provide Intrusion Prevention and Firewall Capabilities
- Describe Deployment Models of Network Security Solutions and Architectures That Provide Intrusion Prevention and Firewall Capabilities
- Describe the Components, Capabilities, and Benefits of NetFlow and Flexible NetFlow Records
- Configure and Verify Network Infrastructure Security Methods (Router, Switch, and Wireless)
- Implement Segmentation, Access Control Policies, AVC, URL Filtering, and Malware Protection
- Implement Management Options for Network Security Solutions
- Configure AAA for Device and Network Access
- Configure Secure Network Management of Perimeter Security and Infrastructure Devices
- Configure and Verify Site-to-Site VPN and Remote Access VPN
- What Next?
-
Chapter 3. Securing the Cloud
- Identify Security Solutions for Cloud Environments
- Compare Security Responsibilities for the Different Cloud Service Models
- Describe the Concepts of DevSecOps (CI/CD Pipeline), Container Orchestration, and Secure Software Development
- Implementing Application Security
- Identify Security Capabilities, Deployment Models, and Policy Management to Secure the Cloud
- Configure Cloud Logging and Monitoring
- Application Security Concepts
- What Next?
- Chapter 4. Content Security
-
Chapter 5. Endpoint Protection and Detection
- Endpoint Protection and Endpoint Detection and Response
- Cisco Secure Endpoint
- Outbreak Control and Quarantines
- Justifications for Endpoint Security
- Endpoint Management and Asset Inventory Tools
- Uses and Importance of a Multifactor Authentication Strategy
- Endpoint Posture Assessments to Ensure Endpoint Security
- Endpoint Patching Strategy
- What Next?
- Chapter 6. Secure Network Access, Visibility, and Enforcement
-
Cram Sheet
- Assets, Threats, and Mitigations
- Attack Types
- Common Security Vulnerabilities
- Cryptographic Components
- Web and Email Security Key Terms
- Web Proxy Traffic Redirect Methods
- Secure Email Gateway Features
- Secure Web Appliance Features
- Firewall Threat Defense Deployment Modes
- Flexible NetFlow Fields
- Layer 2 Security Controls
- Noteworthy CLI Commands
- Endpoint Security Key Terms
- Secure Endpoint Features
- Secure Endpoint Policy Types
- Network Access Control Key Terms
- Cloud Computing Environments
- Cloud Service Models
- Cloud Computing Key Terms
- Cloud Security Controls and Threats
- Cisco Secure Workload Features
- Identity Services Engine (ISE) Features
- ISE Deployment Node Persona Types
- ISE Authentication Methods
- Secure Network Analytics Features
- Secure Network Analytics Node Types
- Index
- Glossary
- Where are the companion content files? - Register
- Code Snippets
Product information
- Title: CCNP and CCIE Security Core SCOR 350-701 Exam Cram
- Author(s):
- Release date: April 2024
- Publisher(s): Pearson IT Certification
- ISBN: 9780137282586
You might also like
video
CCNP and CCIE Security Core SCOR 350-701 (Exam Blueprint 1.1)
Learn, prepare, and practice for the CCNP and CCIE Security Core SCOR 350-701 exam. Overview Get …
book
CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram
CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram is the perfect study guide to help …
book
Cisco Certified Support Technician (CCST) Cybersecurity 100-160 Official Cert Guide
Trust the best-selling Official Cert Guide series from Cisco Press to help you learn, prepare, and …
book
CCNP Security Cisco Secure Firewall and Intrusion Prevention System Official Cert Guide
The official Cisco Press Certification Guide designed to help candidates prepare for the new SNCF 300-710 …