Cisco CCNP Security

The CCNP Security SITCS exam and training course are being revised from v1.0 to v1.5. Candidates can choose to take either the 300-207 SITCS v1.0 exam or 300-210 SITCS v1.5 exam. The last day to test using the 300-207 SITCS v1.0 exam will be March 31, 2017.

Cisco Certified Network Professional Security (CCNP Security) certification program is aligned specifically to the job role of the Cisco Network Security Engineer responsible for Security in Routers, Switches, Networking devices and appliances, as well as choosing, deploying, supporting and troubleshooting Firewalls, VPNS, and IDS/IPS solutions for their networking environments.

Exams & Recommended Training

  • 300-208 SISAS Implementing Cisco Secure Access Solutions (SISAS)
  • 300-206 SENSS Implementing Cisco Edge Network Security Solutions (SENSS)
  • 300-209 SIMOS Implementing Cisco Secure Mobility Solutions (SIMOS)
  • 300-207 SITCS v1.0 Implementing Cisco Threat Control Solutions (SITCS)
  • 300-210 SITCS v1.5 Implementing Cisco Threat Control Solutions (SITCS)

300-208 SISAS

The 300-208 Implementing Cisco Secure Access Solutions (SISAS) exam tests validates a network security engineer knowledge of the components and architecture of secure access by utilizing 802.1X and Cisco TrustSec, including the Cisco Identity Services Engine (ISE) architecture, solution, and components as an overall network threat mitigation and endpoint control solution. It also validates the knowledge of the fundamental concepts of BYOD using the posture and profiling services of the Cisco ISE. Candidates can prepare for this exam by taking the Implementing Cisco Secure Access Solutions (SISAS) course.

300-206 SENSS

The 300-206 Implementing Cisco Edge Network Security Solutions (SENSS) exam validates the knowledge of a network security engineer to configure and implement security on Cisco network perimeter edge devices such as a Cisco switch, Cisco router, or Cisco ASA firewall. The exam focuses on the technologies used to strengthen the security of a network perimeter such as Network Address Translation (NAT), Cisco ASA policy and application inspection, and a zone-based firewall on Cisco routers. Candidates can prepare for this exam by taking the Implementing Cisco Edge Network Security Solutions (SENSS) course.

300-209 SIMOS

The 300-209 Implementing Cisco Secure Mobility Solutions (SIMOS) exam tests a network security engineer on the variety of virtual private network (VPN) solutions that Cisco has available on the Cisco ASA firewall and Cisco IOS Software platforms. In addition, the exam validates the knowledge necessary to properly implement highly secure remote communications through VPN technology, such as remote-access SSLVPN and site-to-site VPN (DMVPN, FlexVPN). Candidates can prepare for this exam by taking the Implementing Cisco Secure Mobility Solutions (SIMOS) course.

300-207 SITCS v1.0

Last day to test: March 31, 2017

The 300-207 Implementing Cisco Threat Control Solutions (SITCS) exam tests a network security engineer on advanced firewall architecture and configuration with the Cisco next-generation firewall, utilizing access and identity policies. In addition, the exam covers integration of Cisco Intrusion Prevention System (IPS) and context-aware firewall components, as well as web (cloud) and email security solutions. Candidates can prepare for this exam by taking the Implementing Cisco Threat Control Solutions (SITCS) course.

300-210 SITCS v1.5

This exam tests a network security engineer on advanced firewall architecture and configuration with the Cisco next-generation firewall, utilizing access and identity policies. Some older technologies have been removed and includes coverage for both Cisco Firepower NGIPS and Cisco AMP (Advanced Malware Protection). This exam covers integration of Intrusion Prevention System (IPS) and context-aware firewall components, as well as Web (Cloud) and Email Security solutions. Candidates can prepare for this exam by taking the Implementing Cisco Threat Control Solutions (SITCS) course.

Cisco Professional-level certifications (CCDP, CCNP Cloud, CCNP Collaboration, CCNP Data Center, CCNP Routing and Switching, CCNP Security, CCNP Service Provider, and CCNP Wireless) are valid for three years.

To recertify, pass ONE of the following before the certification expiration date:

  • Pass any current 642-XXX Professional-level or any 300-XXX Professional-level exam, or
  • Pass any current CCIE Written Exam, or
  • Pass the current CCDE Written Exam OR current CCDE Practical Exam, or
  • Pass the Cisco Certified Architect (CCAr) interview AND the CCAr board review to extend lower certifications.


Related News

Cisco CCNA Service Provider
Cisco CCDE
Cisco CCNP Wireless
Cisco CCNP Cloud
Cisco CCNA Data Center