A great way to start the Cisco Certified Network Professional Security (SITCS) preparation is to begin by properly appreciating the role that syllabus and study guide play in the Cisco 300-210 certification exam. This study guide is an instrument to get you on the same page with Cisco and understand the nature of the Cisco CCNP Security exam.
Our team of experts has composed this Cisco 300-210 exam preparation guide to provide the overview about Cisco Implementing Cisco Threat Control Solutions exam, study material, sample questions, practice exam and ways to interpret the exam objectives to help you assess your readiness for the Cisco SITCS exam by identifying prerequisite areas of knowledge. We recommend you to refer the simulation questions and practice test listed in this guide to determine what type of questions will be asked and the level of difficulty that could be tested in the Cisco CCNP Security certification exam.
Cisco 300-210 Exam Overview:
|
Exam Name
|
Implementing Cisco Threat Control Solutions |
| Exam Number | 300-210 SITCS |
| Exam Price | $300 USD |
| Duration | 90 minutes |
| Number of Questions | 65-75 |
| Passing Score | Variable (750-850 / 1000 Approx.) |
| Recommended Training | Implementing Cisco Threat Control Solutions (SITCS) |
| Exam Registration | PEARSON VUE |
| Sample Questions | Cisco 300-210 Sample Questions |
| Practice Exam | Cisco Certified Network Professional Security Practice Test |
Cisco 300-210 Exam Topics:
| Section | Weight | Objectives |
|---|---|---|
| Content Security | 27% |
1 Cisco Cloud Web Security (CWS)
a) Describe the features and functionality
b) Implement the IOS and ASA connectors
c) Implement the Cisco AnyConnect web security module
d) Implement web usage control
e) Implement AVC
f) Implement antimalware
g) Implement decryption policies
2 Cisco Web Security Appliance (WSA)
a) Describe the features and functionality
b) Implement data security
c) Implement WSA identity and authentication, including transparent user identification
d) Implement web usage control
e) Implement AVC
f) Implement antimalware and AMP
g) Implement decryption policies
h) Implement traffic redirection and capture methods (explicit proxy vs. transparent proxy)
3 Cisco Email Security Appliance
a) Describe the features and functionality
b) Implement email encryption
c) Implement antispam policies
d) Implement virus outbreak filter
e) Implement DLP policies
f) Implement antimalware and AMP
g) Implement inbound and outbound mail policies and authentication
h) Implement traffic redirection and capture methods
i) Implement ESA GUI for message tracking
|
| Network Threat Defense | 22% |
1 Cisco Next-Generation Firewall (NGFW) Security Services
a) Implement application awareness
b) Implement access control policies (URL-filtering, reputation based, file filtering)
c) Configure and verify traffic redirection
d) Implement Cisco AMP for Networks
2 Cisco Advanced Malware Protection (AMP)
a) Describe cloud detection technologies
b) Compare and contrast AMP architectures (public cloud, private cloud)
c) Configure AMP endpoint deployments
d) Describe analysis tools
e) Describe incident response functionality
f) Describe sandbox analysis
g) Describe AMP integration
|
| Cisco FirePOWER Next-Generation IPS (NGIPS) | 20% |
1 Configurations
2 Describe traffic redirection and capture methods
a Describe preprocessors and detection engines
b Implement event actions and suppression thresholds
c Implement correlation policies
d Describe SNORT rules
e Implement SSL decryption policies
3 Deployments
a Deploy inline or passive modes
b Deploy NGIPS as appliance, virtual appliance, or module within an ASA
c Describe the need for traffic symmetry
d Compare inline modes: inline interface pair and inline tap mode
|
| Security Architectures | 17% |
1 Design a web security solution
a) Compare and contrast Cisco FirePOWER NGFW, WSA, and CWS
b) Compare and contrast physical WSA and virtual WSA
c) Describe the available CWS connectors
2 Design an email security solution
a) Compare and contrast physical ESA and virtual ESA
b) Describe hybrid mode
3 Design Cisco FirePOWER solutions
a) Configure the virtual routed, switched, and hybrid interfaces
b) Configure the physical routed interfaces
|
| Troubleshooting, Monitoring, and Reporting Tools | 14% |
1 Design a web security solution
a) Compare and contrast FirePOWER NGFW, WSA, and CWS
b) Compare and contrast physical WSA and virtual WSA
c) Describe the available CWS connectors
2 Cisco Web Security Appliance (WSA)
a) Implement the WSA Policy Trace tool
b) Describe WSA reporting functionality
c) Troubleshoot using CLI tools
3 Cisco Email Security Appliance (ESA)
a) Implement the ESA Policy Trace tool
b) Describe ESA reporting functionality
c) Troubleshoot using CLI tools
4 Cisco FirePOWER
a) Describe the Cisco FirePOWER Management Center dashboards and reports
b) Implement health policy
c) Configure email, SNMP, and syslog alerts
d) Troubleshoot NGIPS using CLI tools
|
Cisco SITCS Exam Description:
This exam tests on advanced firewall architecture and configuration with the Cisco next-generation firewall, utilizing access and identity policies. Some older technologies have been removed, such as Cisco Intrusion-prevention system & Firewall CX. Coverage was added for Cisco NGFW, Cisco Firepower NGIPS and Cisco AMP (Advanced Malware Protection), as well as Web and Email Security solutions.