Cisco will be phasing out its 642-627 IPS exam (Implementing Cisco Intrusion Prevention System), as part of its CCNP Security program update. This was on 21 April 2014. This will be the last day that CCNP Security candidates may take the IPS exam. The 642-627 exam will be replaced by the 300-207 (Implementing Cisco Threat Control Solutions SITCS exam), which is already available at testing centers around the world.
The new CCNP Security Program targets Cisco Network Security Engineers who are responsible for Security in Routers and Switches, Networking devices, and appliances. They also choose, deploy, support, troubleshoot, and troubleshoot VPNS, Firewalls, and IDS/IPS solutions to their networking environments.
The Cisco 300-207 Implementing Cisco Threat Control Solutions exam validates network security engineers’ skills on advanced firewall architecture and configuration using Cisco’s Next Generation Firewall. This exam covers integrations of Intrusion Prevention Systems (IPS) as well as context-aware firewall components. It also covers Web (Cloud) security solutions. You can prepare for the exam by taking the Implementing Cisco Threat Control Solutions course (SITCS).
Like 300-206, 300-207 and other Cisco exams is a closed-book exam. No reference materials are allowed. According to Cisco, Cisco 300-207 covers these topics:
1.0 Content Security (22%)
1.1 1.1 Implement Cisco CX
1.1.1 1.1.a Describe the features and functionality
1.1.2 1.1.b Web usage control
1.1.3 1.1.c Apply AVC
1.1.4 1.1.d Implement decryption policies
1.1.5 1.1.e Define traffic redirection, capture methods
1.2 1.2 Cisco Cloud Web Security
1.2.1 1.2.a Describe the features and functionality
1.2.2 1.2.b Implement IOS/ASA connectors
1.2.3 1.2.c Install AnyConnect web security module
1.2.4 1.2.d Web usage control
1.2.5 1.2.e Describe AVC
1.2.6 1.2.f Describe antimalware
1.2.7 1.2.g Describe decryption policies
1.3 1.3 Implement Cisco WSA
1.3.1 1.3.a Implement data security
1.3.2 1.3.b Define traffic redirection, capture methods
1.4 1.4 Implement Cisco ESA
1.4.1 1.4.a Describe the features and functionality
1.4.2 1.4.b Implement email encryption
1.4.3 1.4.c Adopt anti-spam policies
1.4.4 1.4.d Use virus outbreak filter
1.4.5 1.4.e Implement DLP policies
1.4.6 1.4.f Use anti-malware
1.4.7 1.4.g Adopt inbound and outbound policies
Authentication
1.4.8 1.4.h
2.0 Threat Defense (23%)
2.1 Implement network ISPs
2.1.a Define traffic redirection, capture methods
2.1.b Configure network IP
2.1.c Describe signatures
2.1.d Implement event actions
2.1.e Configure event overrides
2.1.f Implement risk ratings
2.1.g Describe router based IP
2.2 Configure Device Hardening per Best Practices
2.2.a IPS
2.2.b Security appliances for content
2.3 Implement Network IPPS
2.3.a Describe signatures
2.3.b Configure blocking
2.3.c Implement anomaly detector
3.0 Devices GUIs & Secured CLI (16%)
3.1 Implement Content Security
4.0 Troubleshooting and Monitoring Tools (19%)
4.1 Configure IME/IP logging for IPS
4.2 Monitor Content Security
4.3 Monitor Cisco Security IntelliShield
5.0 Threat Defense Architectures (8%)
Design IPS solution
6.0 Content Security Architectures (12%)
6.1 Design web security solution
6.2 Design email security solution
6.3 Design application security solution
Examcollection offers Cisco VCE files!
