Ask for more dates, other languages or a different delivery mode as needed and we will do our best to meet your needs.
| Language | Mode | Start Date |
|---|---|---|
| German | Virtual Class or Classroom | On request |
| French | Virtual Class or Classroom | On request |
| Italian | Virtual Class or Classroom | On request |
| English | Virtual Class or Classroom | On request |
What you’ll learn
Who should enroll
- Cisco integrators, resellers, and partners
- Network administrators
- Security administrators
- Security consultants
- Systems engineers
- Technical support personnel
Technology areas
- Security
Training overview
Objectives
After taking this course, you should be able to:
- Identify the key components and methodologies of Cisco Advanced Malware Protection (AMP)
- Recognize the key features and concepts of the AMP for Endpoints product
- Navigate the AMP for Endpoints console interface and perform first-use setup tasks
- Identify and use the primary analysis features of AMP for Endpoints
- Use the AMP for Endpoints tools to analyze a compromised host
- Analyze files and events by using the AMP for Endpoints console and be able to produce threat reports
- Configure and customize AMP for Endpoints to perform malware detection
- Create and configure a policy for AMP-protected endpoints
- Plan, deploy, and troubleshoot an AMP for Endpoints installation
- Use Cisco Orbital to pull query data from installed AMP for Endpoints connectors.
- Describe the AMP Representational State Transfer (REST) API and the fundamentals of its use
- Describe all the features of the Accounts menu for both public and private cloud installations
Prerequisites
To fully benefit from this course, you should have the following knowledge and skills:
- Technical understanding of TCP/IP networking and network architecture
- Technical understanding of security concepts and protocols
The recommended Cisco offering may help you meet these prerequisites:
Outline
- Introducing to Cisco AMP Technologies
- Introducing AMP for Endpoints Overview and Architecture
- Navigating the Console Interface
- Using Cisco AMP for Endpoints
- Identifying Attacks
- Analyzing Malware
- Managing Outbreak Control
- Creating Endpoint Policies
- Working with AMP for Endpoint Groups
- Using Orbital for Endpoint Visibility
- Introducing AMP REST API
- Navigating Accounts
Lab outline
- Amp Account Self-Registration
- Accessing AMP for Endpoints
- Attack Scenario
- Analysis Tools and Reporting
- Outbreak Control
- Endpoint Policies
- Groups and Deployment
- Testing Your Configuration
- Endpoint Visibility Using Orbital
- REST API
- Endpoint Isolation Using Cisco AMP API
- User Accounts
