Implementing Site-to-Site VPNs, DMVPN (Dynamic Multipoint VPN), and Remote Access VPNs (AnyConnect). 3. Securing the Cloud (15%)
: Learning to architect defenses for data floating in the digital ether.
The CCNP Security course typically consists of the following modules:
The SCOR exam covers 6 major domains. This is the foundation of your study. Cisco recommends 70% of your study time be spent here. ccnp security course outline
: Describing Cisco BYOD functionality (use cases, components, flow), configuring BYOD device on-boarding using internal CA, configuring certificates for BYOD, and configuring block list/allow list.
Unlike the older CCNA Security (now retired), the new CCNP Security curriculum is modular. To earn your certification, you must pass : The core exam (350-701 SCOR) and one concentration exam of your choice (e.g., 300-710 SNCF for firewalls, 300-735 for automation, or 300-730 for VPNs).
The 350-701 SCOR exam acts as the baseline for both the CCNP Security and CCIE Security certifications. The course outline is divided into six major operational pillars: Pillar 1: Security Concepts (25%) The CCNP Security course typically consists of the
Covers functions of cryptographic components such as hashing, encryption, PKI, SSL, IPsec, NAT-T IPv4 for IPsec, pre-shared key and certificate-based authorization.
Configures and verifies Cisco Umbrella Secure Internet Gateway and web security features, including the components, capabilities, and benefits of Cisco Umbrella.
: Configuring guest portals, sponsor portals, and WebAuth for non-supplicant devices. data loss prevention (DLP)
In an era where cyberattacks are not a matter of "if" but "when," the demand for mid-to-senior-level network security engineers has skyrocketed. The Cisco Certified Network Professional (CCNP) Security certification is the gold standard for professionals who have moved beyond the basics of firewalling and VPNs and into the realm of automated, zero-trust, and cloud-delivered security.
There are no formal prerequisites for CCNP Security, but candidates should have three to five years of experience implementing security solutions and a strong foundation in networking fundamentals.
Configuring spam filters, antivirus, outbreak filters, data loss prevention (DLP), and email encryption.
: Understanding ISE deployment models (standalone, distributed, PAN/MNT/PSN roles), hardware and virtual appliances, and integration with network access devices.