IOCs, Deploying AMP Connectors, and AMP Analysis Tools

IT professionals including managers, engineers, and developers evaluating or implementing network and application security using new Cisco technology, as well as CCNP security certification candidates

Prerequisite
None

Expected Duration
50 minutes

Description
Advanced Malware Protection (AMP) is a feature that sets Cisco firewalls apart from other legacy solutions in the marketplace. Here the topics of To know IOCs and IOC Scanning, Deployment of AMP Connectors, and AMP Analysis Tools are covered. This course is one in a series in the Skillsoft learning path that covers the objectives of the Implementing Cisco Threat Control Solutions (SITCS) 1.5 exam, 300-210.

Objective

IOCs and IOC Scanning

  • start the course
  • describe Indications of Compromise (IOCs)
  • define IOC scanning
  • customize IOCs

Deploying AMP Connectors

  • create groups
  • deploy Windows Connectors
  • deploy Direct Download
  • create the installer (public cloud)
  • deploy Email
  • describe Microsoft Windows installation and interface
  • specify connectivity considerations
  • perform command line installation

AMP Analysis Tools

  • describe Event View Filters and Events List
  • define Event Detail: File Detection and Connector info
  • describe File Analysis and the File Analysis page
  • recognize File Analysis Results and File Repository
  • describe Trajectory and the File Trajectory Page, Device Trajectory, Filters, and Search
  • define Prevalence
  • recognize vulnerable software
  • report and create a report

Practice: IOCs, AMP Connectors, & Analysis

  • define IOCs and IOC Scanning, Deploying AMP Connectors, and AMP Analysis tools

MONTHLY SUBSCRIPTION

$129/month
 

ANNUAL SUBSCRIPTION

$1295/year

Multi-license discounts available for Annual and Monthly subscriptions.