CCIE® Security V6.0 Lab Training prepares you to clear the 8-hour hands-on lab exam conducted by Cisco to get CCIE certified. Sprintzeal's CCIE Security certification training offers the knowledge and skills required to handle complex security solutions and helps professionals qualify for senior security roles.
CCIE® Security V6.0 Lab Exam Prep Key Features
100% Satisfaction Guarantee
Sprintzeal's Cisco Certified Internetwork Expert (CCIE®) training offers knowledge and skills in implementing, maintaining, and supporting extensive Cisco Network Security Solutions using the latest industry best practices and technologies. It prepares professionals for senior-level security roles.
Introduction to CCIE Security v6.0 Lab Training
Part 1 - Implementing and Operating Cisco Security Core Technologies (350-701)
1.0 Security Concepts
- Explain common threats against on-premises and cloud environments
- Compare common security vulnerabilities such as software bugs, weak and/or
hardcoded passwords, SQL injection, missing encryption, buffer overflow, path traversal,
cross-site scripting/forgery
- Describe functions of the cryptography components such as hashing, encryption, PKI,
SSL, IPsec, NAT-T IPv4 for IPsec, pre-shared key and certificate based authorization
- Compare site-to-site VPN and remote access VPN deployment types such as sVTI, IPsec,
Cryptomap, DMVPN, FLEXVPN including high availability considerations, and
AnyConnect
- Describe security intelligence authoring, sharing, and consumption
- Explain the role of the endpoint in protecting humans from phishing and social
engineering attacks
- Explain North Bound and South Bound APIs in the SDN architecture
- Explain DNAC APIs for network provisioning, optimization, monitoring, and
troubleshooting
- Interpret basic Python scripts used to call Cisco Security appliances APIs
2.0 Network Security
- Compare network security solutions that provide intrusion prevention and firewall
capabilities
- Describe deployment models of network security solutions and architectures that
provide intrusion prevention and firewall capabilities
- Describe the components, capabilities, and benefits of NetFlow and Flexible NetFlow
records
- Configure and verify network infrastructure security methods (router, switch, wireless)
- Implement segmentation, access control policies, AVC, URL filtering, and malware
protection
- Implement management options for network security solutions such as intrusion
prevention and perimeter security (Single vs. multidevice manager, in-band vs. out-ofband, CDP, DNS, SCP, SFTP, and DHCP security and risks)
- Configure AAA for device and network access (authentication and authorization,
TACACS+, RADIUS and RADIUS flows, accounting, and dACL)
- Configure secure network management of perimeter security and infrastructure devices
(secure device management, SNMPv3, views, groups, users, authentication, and
encryption, secure logging, and NTP with authentication)
- Configure and verify site-to-site VPN and remote access VPN
3.0 Securing the Cloud
- Identify security solutions for cloud environments
- Compare the customer vs. provider security responsibility for the different cloud service
models
- Describe the concept of DevSecOps (CI/CD pipeline, container orchestration, and
security
- Implement application and data security in cloud environments
- Identify security capabilities, deployment models, and policy management to secure the
cloud
- Configure cloud logging and monitoring methodologies
- Describe application and workload security concepts
4.0 Content Security
- Implement traffic redirection and capture methods
- Describe web proxy identity and authentication including transparent user identification
- Compare the components, capabilities, and benefits of local and cloud-based email and
web solutions (ESA, CES, WSA)
- Configure and verify web and email security deployment methods to protect onpremises and remote users (inbound and outbound controls and policy management)
- Configure and verify email security features such as SPAM filtering, antimalware
filtering, DLP, block listing, and email encryption
- Configure and verify secure internet gateway and web security features such as block
listing, URL filtering, malware scanning, URL categorization, web application filtering,
and TLS decryption
- Describe the components, capabilities, and benefits of Cisco Umbrella
- Configure and verify web security controls on Cisco Umbrella (identities, URL content
settings, destination lists, and reporting)
5.0 Endpoint Protection and Detection
- Compare Endpoint Protection Platforms (EPP) and Endpoint Detection & Response
(EDR) solutions
- Explain antimalware, retrospective security, Indication of Compromise (IOC), antivirus,
dynamic file analysis, and endpoint-sourced telemetry
- Configure and verify outbreak control and quarantines to limit infection
- Describe justifications for endpoint-based security
- Describe the value of endpoint device management and asset inventory such as MDM
- Describe the uses and importance of a multifactor authentication (MFA) strategy
- Describe endpoint posture assessment solutions to ensure endpoint security
- Explain the importance of an endpoint patching strategy
6.0 Secure Network Access, Visibility, and Enforcement
- Describe identity management and secure network access concepts such as guest
services, profiling, posture assessment and BYOD
- Configure and verify network access device functionality such as 802.1X, MAB, WebAuth
- Describe network access with CoA
- Describe the benefits of device compliance and application control
- Explain exfiltration techniques (DNS tunneling, HTTPS, email, FTP/SSH/SCP/SFTP, ICMP,
Messenger, IRC, NTP)
- Describe the benefits of network telemetry
- Describe the components, capabilities, and benefits of these security products and
solutions
Below are the skills covered in practical session that offer hands-on experience
Perimeter Security and Intrusion Prevention
- IOS Firewall, ASA Firewall, Perimeter Security, FTD Next Generation Firewall, Firepower Threat Defense (FTD)
Cryptography and Virtual Private Networks
- Cryptography & PKI, IKEv1 IPsec VPN, Dynamic Multipoint VPN (DMVPN), Group Encrypted Transport VPN (GETVPN), Secure Connectivity
Infrastructure Security, Attacks and Mitigation
- Network Management Security, Routing Protocol Security, Layer 2 Security, Infrastructure Security, IPv6 First Hop Security,
Security with StealthWatch using NetFlow
Access Control and Identity Services Engine
- Identity Services Engine (ISE), Advanced Identity Services Engine (ISE), TrustSec
Programmability and Automation
- Network Programmability Foundation, Cisco SD-Access & DNA Center
Content Security and Advanced Threat Protection
- Email Security Appliance, Web Security Appliance, Content Security, Advanced Malware Protection, Cisco Umbrella
Our program trains professionals to implement core Cisco security solutions that provide advanced threat protection against cybersecurity attacks. If you are looking for ways to advance your career in security systems, getting CCIE® Security certification is the best option.
Introduction to CCIE Security v6.0 Training
Part 1 - Implementing and Operating Cisco Security Core Technologies (350-701)
1. Security Concepts
2. Network Security
3. Securing the Cloud
4. Content Security
5. Endpoint Protection and Detection
6. Secure Network Access, Visibility and Enforcement
Part 2 - For Practical Exam
1. Perimeter security and intrusion prevention
2. Secure connectivity and segmentation
3. Infrastructure security
4. Identity management, information exchange and access control
5. Advanced threat protection and content security
Popular Cisco courses recommended:
Get CCIE Certification Training - Online, Live Online and Classroom
Your career is our goal. We care for your professional empowerment. Don’t take it from us. Find out what our participants say about our service!
ITIL V4, The training has detailed, it can be a bit better with more interactive session and relevant real time easy to understand examples for people who get this as the first hand experience.
Lean Six Sigma Black Belt
Informative and practical approach of training session. Emphasizing more on the relevant tools that can be use depending on the project that you are working on.
Syed M. Quadri is an outstanding instructor, very passionate about project management. Really goes the extra mile. Thanks, Lenord as well.
Liked the AWS training course that I took at Sprintzeal. The content was good and the trainer took time to go back and answer any questions. The slides depicted the concept on each topic well. I recommend this course for quick grasp.
Hi, my name is Osvaldo Batista. I took the Network+ certification training with Sprintzeal. I love it. The trainer did a great job explaining the contents. Sprintzeal provided all the material to study e prepare for the exam. Also, did a great job scheduling the training session to fit into my busy schedule.
Thank you.
Overall an excellent training opportunity. Dani is not only well versed in teaching from the PMBOK but more importantly, he has real-world experience which aided my understanding of the presented material. As a newcomer in project management, Dani was able to communicate in a manner in which I could easily understand the subject matter without diminishing the rest of the students learning opportunities. The only area that I asses that needs adjustment is that the slide used to conduct the class are not available for student download. It would be helpful if the course material was made available in order to better prepare for the exam.
Sprintzeal PMP Boot Camp The boot camp gave me a comprehensive look at the PMP material. The instructor was very knowledgeable and offered many real-world applications of the principles. Further, I was able to ask questions which went otherwise unanswered in the previous video study course I purchased. I was able to connect the different aspects and highlight areas needing more attention. The instructor-led class was a tremendous benefit.
The facilitator, Ms. Noor Zohara was extremely helpful and made our life easy in registration any queries or information about the course. She is very organized, friendly and supportive of the applicants. The speaker Mr. Mohammad Al Rumaih, was knowledgeable, very nice, informative, skillful, highly professional and really made it real with real-life examples. We are feeling that we are confident enough to take the exams and start our own project management. There are some areas for improvement in the venue it’s relatively small, hot water is not available all the time for making hot beverages. Otherwise, everything was fine and thanks again. I will definitely repeat my experience with sprintzeal again and again.
Clear and informative course to prepare for the PMP exam. The content was laid out well, and you could tell the instructor, Biswa, had plenty of experience teaching the course. The additional material provided was also very helpful.
Awesome CBAP Test Prep Course with Excellent Customer Service. In March 2019, select staff from two of our departments partnered up to undertake the CBAP Test Prep course offered by Sprintzeal. I learned the BABOK was difficult to comprehend until our trainer, Delilah Allison, explained the book's layout and the meaning behind each section. Her teachings enable me to grasp the Business Analysis concept (even though most of my tasks were in a project management world). Our Account Manager, Alex Wood, provided excellent customer service going above the call of duty to ensure our satisfaction. We did encounter some hiccups along the way which were either resolved or addressed in an expedited manner. Also, the price per person was reasonable compared to what was offered and what other companies offered. My overall experience with Sprintzeal is a positive one. I would definitely recommend the class. Source - Trustpilot
The Security lab exam needs 8 hours to be completed. One must pass the lab exam within 3 years of passing the written exam to achieve the certification. The first lab attempt should be made within 18 months and the lab exam consists of 2 hours of troubleshooting section, 1 hour of diagnostics section, and 5 hours of the configuration section.
The candidates who are appearing for the CCIE® Security course exam should have a thorough and in-depth understanding of exam topics. This CCIE® Security certification strongly encourages that one must or should have 3-5 years of job experience. The written exam consists of 90 -110 questions with a time limit of 120 minutes.
CCIE Security Exam Cost - Written exam - $450 | Lab Exam - $1600
CCIE Security Exam comprises of two parts:
Duration - 120 minutes
Languages - English and Japanese
Exam Code - SCOR 350-701
Duration - 8 hours of Hands-on Exam
The number of questions: 90-110
Format for Qualifying Exam:
1. Security Concepts - 25%
2. Network Security - 20%
3. Securing the Cloud - 15%
4. Content Security - 15%
5. Endpoint Protection and Detection - 10%
6. Secure Network Access, Visibility and Enforcement - 15%
Format For Practical Exam:
1. Perimeter security and intrusion prevention - 20%
2. Secure connectivity and segmentation - 20%
3. Infrastructure security - 15%
4. Identity management, information exchange and access control - 25%
5. Advanced threat protection and content security - 20%
The CCIE® Security certificate is valid for 3 years.
There is no formal prerequisite for CCIE® Security. However, having 5 -7 years of job experience before attempting to get the CCIE® Security Certification is recommended.
Read cisco's recertification requirements to know more
After the completion of computer-based/written exams, candidates receive a score report along with a score breakout by exam section and the passing score for the given exam.
Lab exams are Pass/Fail and results are available online (using login) within 48 hours.
Cisco does not publish exam passing scores because exam questions and passing scores are subject to change without notice.
Yes, you can apply for a re-exam after 5 calendar days from your first attempt. However, most of the candidates taking our training pass the exam in just one attempt.
Yes. Customers can contact us either by phone or chat if they need help with completing the application form or in case of any course-related queries.
CCIE Security Certification is valid for 3 years. It has a three-year recertification requirement. Certification holders can recertify their credentials by taking up cisco certification exam, or earning CEUs (continuing education units) by completing cisco educational activities.
Sprintzeal CCIE® Security V6.0 Lab Training Certificate Holders work at 1000s of companies like
Our online training offers web-based training for over 100+ courses. The classes are conducted by a certified trainer with vast knowledge in the area and training experience. High-quality training videos are provided which can be accessed from anywhere in the world and at any time. Basic knowledge of using computers and access to stable internet is all one needs to get the most of our online training.
In our classroom mode of training offered , professionals can take up the course by attending classes the conventional way and get trained in a classroom environment. You can enroll in the upcoming batch and join our industry expert trainers. Professionals can take up this offline form of training and attend classes in groups too.
Live virtual classroom training is a personalized form of online training where the student and the trainer are live and face-to-face, discussing concepts and doubts.
This mode of training is preferred by professionals who wish to remove minor inconveniences that come with watching pre-recorded videos for training and by those who want the flexibility that classroom training fails to offer.
Our training approach is
Practical
Goal-oriented
Structured
Effective and
Affordable
Our approach will enable you to put your learning in use practically and reap its benefits. We have a proven track record of candidates passing the exam and getting the CCIE® Security certification in the FIRST attempt.
On completion of the course, you will receive the certification from Sprintzeal. Trusted by millions, we are the industry leader in providing certification courses across the globe.
Yes, certifications provided by Sprintzeal are internationally recognized. All the courses are accredited by internationally recognized governing bodies and are registered trademarks of institutes like IASSC and AXELOS Limited.
Yes, you can learn all the courses offered by Sprintzeal. There are no limitations to learning courses and one can even get multiple certificates provided he/she completes the courses and clears the exam.
You can get instant support on our live chat, can reach us on call 24/7 or request a call back to have your queries answered.
Certifications have undoubtedly become a major criterion for the job selection process and promotions. The certificate gained from Sprintzeal surely holds great value. It can certainly help one land a great job or help experienced professionals get promoted. It improves skills and knowledge of a candidate which becomes an asset to having a fulfilling and successful career.
The chances of getting a job increases manifold on getting certified. It surely acts as an add-on that gives you an edge over your competitors. However, since several other things are also taken into consideration by interviewers, we cannot give a 100% guarantee as a huge part of the selection depends on the interviewer and the candidate.
With over 200000+ professionals trained across the globe the success rate of Sprintzeal’s training programs is impressive with 99.6 %.
When you complete the training course, you will receive a course completion certificate from Sprintzeal. However, Sprintzeal does not administer the CCIE® Security certification, but once you have passed that exam, you will receive the prestigious CCIE® Security certification from Cisco.
Looking for a personalized Corporate Training for a group at your preferred location?