The CCNP Security (300-710 SPNC) exam measures your knowledge of policies, deployments, management, and troubleshooting about Cisco Firepower(r), Threat Defense and Firepower(r), 7000 and Firepower(r), 8000 Series virtual appliances. The main purpose of the exam is to teach you about Next-Generation Firewalls and Next-Generation Intrusion Prevention System capabilities like file type identification, network-based Malware detection, and deep packet inspection.Candidates with the following profiles are eligible to take this exam:
- Security professionals
- Security consultants
- Administrators of the network
- System engineers
- Support personnel for technical issues
- Resellers and channel partners
- Cisco partners and integrators
Exam Prerequisites
No formal prerequisites are required. There are a few areas where knowledge is an advantage:- TCP/IP networking technical understanding and network architecture
- Basic knowledge of Intrusion Detection Systems, (IDS), and IPS.
- Basic routing protocols and TCP/IP knowledge
- Familiarity and familiarity with Intrusion Prevention Systems (IPS), VPN, and firewall concepts
Exam Details
It costs $300 and is coded 300-710 SNCF. The exam takes 90 minutes. Multiple-choice questions are available. The certification is valid for 3 years. Both English and Japanese are accepted for the test.Cisco CCNP Security (300-710 SNCF Exam) covers the following topics:
1. Deployment: 30%
1.1 Implement NGFW mode ( Cisco Documentation Transparent, Routed Firewall Mode).- Routed mode
- Transparent mode
- Passive
- Inline
- Link redundancy
- Standby/active failover
- Multi-instance
2. Configuration: 30%
2.1 Configure system configurations in Cisco Firepower Management Center ( Cisco Documentation Firepower Management Center Configuration Manual).2.2 Configure the following policies in Cisco Firepower Management Center ( Cisco Documentation Getting Started with Firepower).
- Control of access
- Intrusion
- Malware and file
- DNS
- Identity
- SSL
- Prefilter
- Network discovery
- Application detectors (Open AppID)
- Correlation
- Take Action
- Object Management
- Intrusion Rules
- Device Management
- NAT
- VPN
- QoS
- Setting up a platform
- Certificates
3. Troubleshooting and Management: 25%
- Troubleshooting FMC CLI/GUI ( Cisco Documentation Cisco UCS Manager GUI Configuration guide
- FMC Documentation: Working With Reports - Configure Dashboards and Reporting
- Troubleshooting using packet capture procedures ( Cisco documentation: Packet Capture Procedures on Cisco Firepower device).
- Analyze risk and standard reporting ( Cisco Documentation Reports).
4. Integration: 15%
- Configure Cisco AMP for Networks in Firepower Management Center ( Cisco Documentation Cisco AMP for Networks).
- Firepower Management Center Configure Cisco AMP For Endpoints ( Cisco Documentation AMP For Endpoints User Guide
- Third-party security intelligence feeds can be implemented by the Implement Threat Intelligence Director ( Cisco Documentation Cisco Threat Director (TID).
- Describe Cisco Threat Response to security investigations ( Cisco Documentation Cisco Threat Respond).
- Cisco FMC PxGrid Integration With Cisco Identify Services Engine (ISE). ( Cisco Documentation Configure ISE 2.4 & FMC 6.2.3 pxGrid Integr
- Rapid Threat Containment (RTC), functionality in Firepower Management Center ( Cisco Documentation Cisco Rapid Threat Containment).
Practice Exams
You should practice what you have learned to be able to analyze your practice. By practicing, you can improve your answering skills which will save you a lot of time. Also, practice tests can be started after you have completed a topic. This will serve as a revision sectionLatest Passing Reports from SPOTO Candidates
3 Steps to Get Certified
Pass Your Next Certification Exam Fast
Chat Now
Student feedback
0.0
Course rating
Reviews
Add a review