Protecting against Malware Threats with Cisco AMP for Endpoints (SSFAMP)
Course Overview
The Identifying Modern Threats and Protecting against Malware with Cisco® AMP for Endpoints is an instructor-led, lab-based, hands-on course offered by Cisco Learning Services. It is a lab-intensive course that introduces students to the powerful features of Cisco AMP for Endpoints software. Day one of this 3-day virtual class covers modern threats, vulnerabilities, and Cisco Advanced Malware Protection (AMP) technologies. Days two and three detail the Cisco AMP for Endpoints product architecture and how it can be used to protect against malware.
You learn how to build and manage a Cisco AMP for Endpoints deployment, create policies for endpoint groups, and deploy connectors. You also analyze malware detections using powerful tools available in the AMP for Endpoints console. This course combines lecture materials and hands-on labs throughout to make sure that you are able to successfully deploy and manage an AMP for Endpoints deployment.
Who should attend
This course is designed for technical professionals who need to know how to deploy and manage Cisco AMP for Endpoints software in their network environments.
Targeted roles include:
Security administrators
Security consultants
Network administrators
System engineers
Technical support personnel
Channel partners and resellers
Prerequisites
Cisco recommends that you have the following prerequisite knowledge and skills:
TCP/IP experience including the major protocols, common services, and basic network traffic routing
General information security fundamentals
Fundamentals of how operating systems work, including OS configuration structures, file system I/O and basic OS usage and management
Course Objectives
After completing this course, you should be able to:
Describe malware terminology and recognize malware categories
Describe the architecture and individual security features of Windows, Apple Mac, and Linux operating systems and the concept of vulnerabilities
Describe the components and behavior of exploit kits and botnets
Describe modern attack vectors and trends
Recognize the key components and methodologies of Cisco Advanced Malware Protection
Recognize the key features and concepts of the AMP for Endpoints product
Navigate the AMP for Endpoints console interface and perform first-use setup tasks
Configure and customize AMP for Endpoints to perform malware detection
Create and configure a policy for AMP-protected endpoints
Plan, deploy, and troubleshoot an AMP for Endpoints installation
Analyze files and events by using the AMP for Endpoints console and be able to produce threat reports
Use the AMP for Endpoints tools to analyze a malware attack
Describe all features of the Accounts menu for both public and private cloud installations
Course Content
Module 1: Modern Malware
Module 2: Operating Systems and Vulnerabilities
Module 3: Exploit Kits and Botnets
Module 4: Attack Vectors and Trends
Module 5: Introduction to Cisco AMP Technologies
Module 6: AMP for Endpoints Overview and Architecture