fbpx

CCNA Security

CCNA Security Overview

We are the most prominent training institute for Cisco CCNA Security course in India. Our Training Centre is situated in Mumbai. Octa Networks is considered as one of the innovative, reliable and prestigious CCNA Security Training Institute in Mumbai. We also provide Corporate and Summer Training in Mumbai.

Cisco Certified Network Associate Security (CCNA Security) is the Associate level certification in Networking offered by Cisco. CCNA Security covers the basics of securing Cisco networks. It includes Common network security concepts, securing routing and switching infrastructure concepts. Using instructor-led discussions, extensive hands-on lab exercises, and supplemental materials, this course allows learners to understand common security concepts, and deploy basic security techniques utilizing a variety of popular security appliances within a “real-life” network infrastructure. To further strengthen your Security skills, we recommend CCNP Security, CCIE Security Courses, after successful completion of CCNA Security Certification.

Octa Networks provides CCNA Security course in Mumbai on physical Cisco devices with 24×7 Lab Facility. CCNA Security Curriculum is designed as per the CCNA Security Certification exam blueprint supplied by Cisco. To prepare candidates for the CCNA Security Certification exam conducted by Cisco, candidates need to have hands-on experience with REAL devices, which is provided by Octa Networks.

Key Features of CCNA Security Training:

  • Guaranteed Training on physical Cisco Security Devices.
  • CCNA Security Concepts explained in practical and theoretical context.
  • 24*7 Lab Access.
  • 80+ hours of classroom-style training using an interactive whiteboard and projector session.
  • You can retake the class unlimited times.
  • Classrooms are fully equipped with projectors, Wi-Fi connectivity, and Digital Pads.
  • Support and Guidance provided for Cisco Certification.
  • Early morning and Late-night batch facility available
  • 24*7 Trainers Availability
  • Quality training delivered by Experienced and Certified Trainers.

Devices to be used during the CCNA Security Training Program:

  • Router: Cisco 2611 XM, 1841, 1905, 2811
  • Switches: Cisco 2950, 2960, 3750, 3560
  • ASA Firewall: Cisco 5510
  • IPS: 4255

Training Plan

Training Schedule
Weekdays (Mon-Fri)Weekend (Sat-Sun)
Duration4 weeks2 Months
Hours4 Hours / day6 Hours / day
Fees10,000 + Taxes10,000 + Taxes
Training ModeOnline/OnsiteOnline/Onsite

Group Discount
In a Group of 2 discount will be 10% per head
In a Group of 3 discount will be 15% per head
In a Group of 4 discount will be 20% per head

Trainer's Profile

MUNAWAR KHAN

MUNAWAR KHAN

CCNA/CCNP-COLLAB/SEC

Munawar Khan,is a highly experienced and extremely driven Master Technical Instructor. He has been training networking courses for more than 15 years, teaching on a wide range of topics including Routing and Switching, Security, Collaboration and Checkpoint. Munawar Khan has delivered instructor led training’s in India as well as international countries like UAE, Qatar and East African Countries. In addition, he has been developing and updating the content for these courses. He has assisted many engineers in passing CCNA and CCNP examinations and securing their certifications.

Lab Facility

CCNA Security Course Details

Target Audience:

  • This certification is suitable for the job roles of Network Security Specialist or Support Engineer and Security Administrator with a professional work experience of 1 to 3 years.
  • Current Cisco CCENT or CCNA Certification holders who wish to build CCNA Security knowledge

Prerequisite:

  • Any valid Cisco CCENT, CCNA Routing and Switching, or any CCIE certification can act as a prerequisite.
  • The knowledge and skills that a learner must have before attending this Curriculum are as follows:
    • Describe network fundamentals.
    • Establish Internet and WAN connectivity using IPv4 and IPv6.
    • Manage network security device.
    • Configure and troubleshoot routing protocols like EIGRP and OSPF (IPv4 and IPv6).
    • Upgrade/Downgrade IOS Images on Routers and Switches.
    • Installing/Upgrading licenses on Routers and Switches

Topics Covered:

1.0 Security Concepts

1.1  Common security principles

  • 1.1.a Describe confidentiality, integrity, availability (CIA)
  • 1.1.b Describe SIEM technology
  • 1.1.c Identify common security terms
  • 1.1.d Identify common network security zones

1.2 Common security threats

  • 1.2.a Identify common network attacks
  • 1.2.b Describe social engineering
  • 1.2.c Identify malware
  • 1.2.d Classify the vectors of data loss/exfiltration

1.3 Cryptography concepts

  • 1.3.a Describe key exchange
  • 1.3.b Describe hash algorithm
  • 1.3.c Compare and contrast symmetric and asymmetric encryption
  • 1.3.d Describe digital signatures, certificates, and PKI

1.4 Describe network topologies

  • 1.4.a Campus area network (CAN)
  • 1.4.b Cloud, wide area network (WAN)
  • 1.4.c Data center
  • 1.4.d Small office/home office (SOHO)
  • 1.4.e Network security for a virtual environment

2.0 Secure Access

2.1  Secure management

  • 2.1.a Compare in-band and out-of band
  • 2.1.b Configure secure network management
  • 2.1.c Configure and verify secure access through SNMP v3 using an ACL
  • 2.1.d Configure and verify security for NTP
  • 2.1.e Use SCP for file transfer

2.2 AAA concepts

  • 2.2.a Describe RADIUS and TACACS+ technologies
  • 2.2.b Configure administrative access on a Cisco router using TACACS+
  • 2.2.c Verify connectivity on a Cisco router to a TACACS+ server
  • 2.2.d Explain the integration of Active Directory with AAA
  • 2.2.e Describe authentication and authorization using ACS and ISE

2.3 802.1X authentication

  • 2.3.a  Identify the functions 802.1X components

2.4 BYOD

  • 2.4.a Describe the BYOD architecture framework
  • 2.4.b Describe the function of mobile device management (MDM)

3.0 VPN

3.1  VPN concepts

  • 3.1.a Describe IPsec protocols and delivery modes (IKE, ESP, AH, tunnel mode, transport mode)
  • 3.1.b Describe hairpinning, split tunneling, always-on, NAT traversal

3.2 Remote access VPN

  • 3.2.a Implement basic clientless SSL VPN using ASDM
  • 3.2.b Verify clientless connection
  • 3.2.c Implement basic AnyConnect SSL VPN using ASDM
  • 3.2.d Verify AnyConnect connection
  • 3.2.e Identify endpoint posture assessment

3.3 Site-to-site VPN

  • 3.3.a Implement an IPsec site-to-site VPN with pre-shared key authentication on Cisco routers and ASA firewalls
  • 3.3.b Verify an IPsec site-to-site VPN

4.0 Secure Routing and Switching

4.1 Security on Cisco routers

  • 4.1.a Configure multiple privilege levels
  • 4.1.b Configure Cisco IOS role-based CLI access
  • 4.1.c Implement Cisco IOS resilient configuration

4.2 Securing routing protocols

  • 4.2.a Implement routing update authentication on OSPF

4.3 Securing the control plane

  • 4.3.a Explain the function of control plane policing

4.4 Common Layer 2 attacks

  • 4.4.a Describe STP attacks
  • 4.4.b Describe ARP spoofing
  • 4.4.c Describe MAC spoofing
  • 4.4.d Describe CAM table (MAC address table) overflows
  • 4.4.e Describe CDP/LLDP reconnaissance
  • 4.4.f Describe VLAN hopping
  • 4.4.g Describe DHCP spoofing

4.5 Mitigation procedures

  • 4.5.a Implement DHCP snooping
  • 4.5.b Implement Dynamic ARP Inspection
  • 4.5.c Implement port security
  • 4.5.d Describe BPDU guard, root guard, loop guard
  • 4.5.e Verify mitigation procedures

4.6 VLAN security

  • 4.6.a Describe the security implications of a PVLAN
  • 4.6.b Describe the security implications of a native VLAN

5.0 Cisco Firewall Technologies

5.1  Describe operational strengths and weaknesses of the different firewall technologies

  • 5.1.a Proxy firewalls
  • 5.1.b Application firewall
  • 5.1.c Personal firewall

5.2 Compare stateful vs. stateless firewalls

  • 5.2.a Operations
  • 5.2.b Function of the state table

5.3 Implement NAT on Cisco ASA 9.x

  • 5.3.a Static
  • 5.3.b Dynamic
  • 5.3.c PAT
  • 5.3.d Policy NAT
  • 5.3 e Verify NAT operations

5.4 Implement zone-based firewall

  • 5.4.a Zone to zone
  • 5.4.b Self zone

5.5 Firewall features on the Cisco Adaptive Security Appliance (ASA) 9.x

  • 5.5.a Configure ASA access management
  • 5.5.b Configure security access policies
  • 5.5.c Configure Cisco ASA interface security levels
  • 5.5.d Configure default Cisco Modular Policy Framework (MPF)
  • 5.5.e Describe modes of deployment (routed firewall, transparent firewall)
  • 5.5.f Describe methods of implementing high availability
  • 5.5.g Describe security contexts
  • 5.5.h Describe firewall services

6.0 IPS

6.1 Describe IPS deployment considerations

  • 6.1.a Network-based IPS vs. host-based IPS
  • 6.1.b Modes of deployment (inline, promiscuous – SPAN, tap)
  • 6.1.c Placement (positioning of the IPS within the network)
  • 6.1.d False positives, false negatives, true positives, true negatives

6.2 Describe IPS technologies

  • 6.2.a Rules/signatures
  • 6.2.b Detection/signature engines
  • 6.2.c Trigger actions/responses (drop, reset, block, alert, monitor/log, shun)
  • 6.2.d Blacklist (static and dynamic)

7.0 Content and Endpoint Security

7.1  Describe mitigation technology for email-based threats

  • 7.1.a SPAM filtering, anti-malware filtering, DLP, blacklisting, email encryption

7.2 Describe mitigation technology for web-based threats

  • 7.2.a Local and cloud-based web proxies
  • 7.2.b Blacklisting, URL filtering, malware scanning, URL categorization, web application filtering, TLS/SSL decryption

7.3  Describe mitigation technology for endpoint threats

  • 7.3.a Anti-virus/anti-malware
  • 7.3.b Personal firewall/HIPS
  • 7.3.c Hardware/software encryption of local data

Candidates need to undertake below exam

Exam Name:Exam Code :FeesDuration:Registration:
Implementing Cisco Network Security (IINS)210-260 IINS
(60-70 questions)
$30090 minutesPearson VUE

Upon completion of the course, students will have the knowledge and skills to:

  • Common network security concepts
  • Deploy basic authentication, authorization, and accounting services
  • Advanced security services such as intrusion protection, content security and identity management
  • Secure routing and switching infrastructure
  • Deploy basic site-to-site and remote access VPN services
  • Deploy basic firewalling services
  • Configure routers with Cisco IOS software security features, including management and reporting functions
  • Develop a comprehensive network security policy to counter threats against information security
  • Bootstrap the Cisco ASA Firewall for use in a production network
  • Configure the Cisco ASA Firewall for remote access to a Secure Sockets Layer (SSL) VPN
  • Configure a Cisco IOS zone-based firewall (ZBF) to perform basic security operations on a network
  • Configure site-to-site VPNs using Cisco IOS features
  • Configure security features on IOS switches to mitigate various Layer 2 and Layer 3 attacks
  • How a network can be compromised using freely available tools
  • Implement line passwords, and enable passwords and secrets
  • Examine authentication, authorization, and accounting (AAA) concepts and features using the local database as well as Cisco Secure ACS 5.2
  • Configure packet filtering on the perimeter router

Candidates will have Employment Opportunities with following Job Title:

  • Level 1 Network Security Engineer
  • Level 1 Network Security Administrator
  • Level 1 Network Support
  • Level 1 Network Security Consultant
  • Level 1 Technical Consultant

Schedule

Upcoming Batches
Weekday Batch :Weekend Batch:
On RequestOn Request


Frequently Asked Question

What is CCNA Security Certification?

Cisco Certified Network Associate Security (CCNA Security) validates associate-level knowledge and skills required to secure Cisco networks. With a CCNA Security certification, a network professional demonstrates the skills required to develop a security infrastructure, recognize threats and vulnerabilities to networks, and mitigate security threats. The CCNA Security curriculum emphasizes core security technologies, the installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices, and competency in the technologies that Cisco uses in its security structure.

What is the duration of CCNA Security course?

The duration of course depends on the batch you select. Regular (Mon – Fri) classroom training takes 4 weeks or 80 hours, or Weekend (sat – sun) classroom training takes 2 Months or 80 hours. You can choose and check out the schedule and fees accordingly.

When do I get my CCNA Security certificate after passing an exam?

As per the procedures, printed CCNA Security Certification takes 6-8 weeks to reach you by mail. Check the status of your certificate in your Certification Tracking System. Date with a “Mailed” status implies the dispatch of your certificate on that date. No status found or 8 weeks are over, register a case with Certification & Communities Online Support team at www.cisco.com/go/certsupport.

What is the exam code of current version of CCNA Security Certification?

The exam code of CCNA Security Certification is 210-260 IINS.

What are prerequisites for the CCNA Security Certification?

Any valid Cisco CCENT, CCNA Routing and Switching, or any CCIE certification can act as a prerequisite.

What study material are referred for CCNA Security training?

Cisco press books, latest workbooks prepared & revised regularly by experts.

How much am I expected to earn once I get CCNA Security Certified?

Fresher may earn between 3,00,000 – 4,00,000 INR which may increase significantly with work experience, improved hands-on skills and other related factors.

Is online mode available for the CCNA Security training?

Yes. The batches are available in both weekdays as well as weekends in morning and evening sessions.

What are the facilities that Octa Networks provide for CCNA Security Certification?

We provide lab training facility in Asia with 24×7 Lab access with rack and lab administrator guide. We offer great value for money to all our candidates through Personality development sessions. Our training is best in Mumbai and our trainers are CCIE Certified.

Is weekend training available for working professionals?

Yes, it is available and made for working professionals.

What would be various job roles offered to a CCNA Security candidates?

  • Level 1 Network Security Engineer
  • Level 1 Network Security Administrator
  • Level 1 Network Support
  • Level 1 Network Security Consultant
  • Level 1 Technical Consultant

How to get re-certified in CCNA Security ? Is it necessary?

CCNA Security certifications are valid for three years. To recertify, pass ONE of the following before the certification expiration date:

  • Pass any current Associate-level exam except for ICND1 exam or
  • Pass any current 642-XXX Professional-level or any 300-XXX Professional-level exam, or
  • Pass any current 642-XXX Cisco Specialist exam (excluding Sales Specialist exams or
  • MeetingPlace Specialist exams, Implementing Cisco TelePresence Installations (ITI) exams, Cisco Leading Virtual Classroom Instruction exams, or any 650 online exams), or
  • Pass any current CCIE Written Exam, or
  • Pass the current CCDE Written Exam OR current CCDE Practical Exam, or
  • Pass the Cisco Certified Architect (CCAr) interview AND the CCAr board review to extend lower certifications

How many questions does the CCNA Security certification exam consist of?

60 – 70 questions

Reviews & Comments

Student Reviews

#CCNP_Jan_2019
#Octa_Networks
Yesterday we learned the basics of BGP including property, message types, states,role of igp into bgp and Rathod sir explained how messages are involved with states of bgp.
I left the class after half session because of office work 😞 and could not attend the remaining last 45 minuets.
But one thing is best and will be always best that our Trainer Jagdish Sir is always in positive mode and clear our doubt positively.
Thank you Jagdish sir, Arshad Sir and Octa networks for providing such an opportunity to learn the technology.
Jagdish Sir is doing his best in all session with same energy……….

My self Krishnendu form Kolkata i have attended CCNA Service provider and CCNP routing and Switching training from Octa Network. My trainer is Mr jagdish Rathod. He teaches us everything in detail. Today we have competed HSRP, VRRP and GLBP theory as well as Practical sessions. I have cleared all my doubts related to HSRP. Thank you Octa Networks, Rathod Jagdish, Arshad Dhunna, and Joaquim Fernandes sir.

I have attended the CCNA Wireless 8am-10am class.I learnt about RRM and AP group RF. Mr.Vibhor Sir explained these concept in very well manner.He keeps the session very interactive and solves all the queries raised by Students.Thanks Octa networks for providing such a talented mentor.

Thank You Octa Networks arshad Dhunna and Joaquim Fernandes for providing this Great Opportunity.

Yes its true 🤩

First of all I am giving 100/100 and I strongly recommended Octa Networks to all from this entire world that if want to start your carrier in Networking field (it doesn’t matter you are from technical background on not) Octa Networks will makes you champion in Networking (CCNA, CCNP, CCIE in all tracks).

Wish you all the best Octa Networks. Arshad Dhunna. Rathod Jagdish.

Amitesh Arnav, India

Attending CCNA Security class from Manuhar Khan, he is delivering very good security lecture, very polite & answer all the queries. One thing that I must tell you about him, his example are really interesting by relating real environment, That you can’t forget easily.

Recommending OCTA NETWORKS
👌👌👌👌👌

Shan Vel

Octa network is such great place . To hole world global training Centre . I such a trainer is Jagdish Rathore sir provide training CCNA. / CCNP/ CCIE tramendous.. there his mind set .it’s great mentor , trainer , motivations .he is practically Person. Repeated every dout particular topic Clear..

Gaurav Kabre

Currently, I am taking CCNA Data Center training which is lead by Mr. Ronak Vyas. I appreciate his efforts in guiding and explaining the DC concepts. Also, he answers all the questions or doubts raised by the participants after explaining the topic.

Mr.Ronak very well explained step by step on concepts like UCS, OTV and VPC in Lab rack setup practically.
Thanks Octa Networks


Get In Touch

Request a call back