logo

Check Point Course

course overview

Click to View dates & book now

Overview

This 5-day course combines the content of the CCSA and CCSE courses over 5 days (instead of 6).

This course is not for new users to Check Point – previous certification/experience is required.

Check Point Certified Security Administrator (CCSA)

The CCSA part of the course covers everything you need to start-up, configure and manage daily operations of R81.10 Check Point Security Gateway and Management Software Blades systems on the GAiA operating system.

Learn basic concepts and develop skills necessary to administer IT security fundamental tasks.

Check Point Certified Security Expert (CCSE)

The advanced CCSE part of the course teaches how to build, modify, deploy and troubleshoot the R81.10 Check Point Security Systems on the GAiA operating system. 

Hands-on lab exercises teach how to debug firewall processes, optimize VPN performance and upgrade Management Servers.

Validate and enhance your skills and optimally manage Check Point advanced security management systems.


Audience

Technical professionals who support, install deploy or administer Check Point products, and who perform advanced deployment configurations of Check Point products. 


Skills Gained

Check Point Certified Security Administrator (CCSA)

• Know how to perform periodic administrator tasks.

• Describe the basic functions of the Gaia operating system.

• Recognize SmartConsole features, functions, and tools.

• Understand how SmartConsole is used by administrators to give user access.

• Learn how Check Point security solutions and products work and how they protect networks.

• Understand licensing and contract requirements for Check Point security products.

• Describe the essential elements of a Security Policy.

• Understand the Check Point policy layer concept.

• Understand how to enable the Application Control and URL Filtering software.

• Blades to block access to various applications.

• Describe how to configure manual and automatic NAT.

• Identify tools designed to monitor data, determine threats and recognize opportunities for performance improvements.

• Describe different Check Point Threat Prevention solutions fornetwork attacks.

• Articulate how the Intrusion Prevention System is configured, maintained and tuned.

• Understand the Infinity Threat Prevention system.

• Knowledge about Check Point’s IoT Protect.

Check Point Certified Security Expert (CCSE)

• Provide an overview of the upgrade service and options available. 

• Explain how to perform management upgrade and migration. 

• Articulate the process using CPUSE features. 

• Articulate the purpose and function of Management High Availability. 

• Explain Primary vs Secondary, Active vs Standby and Synchronization. 

• Explain disaster recovery steps in case the primary management server becomes unavailable. 

• Provide overview of Central Deployment in SmartConsole. 

• Articulate an understanding of Security Gateway cluster upgrade methods. 

• Explain about Multi Version Cluster (MVC) upgrades. 

• Discuss Gaia Commands and how they are used. 

• Explain the main processes on s and s. 

• Describe how to work with scripts and SmartTasks to configure automatic actions. 

• Explain the Management Data Plane Separation (MDPS). 

• Explain kernel operations and traffic flow. 

• Articulate Dynamic and Updatable Objects in Security Gateways.

• Explain the policy installation flow and files used. 

• Describe the use of policy installation history. 

• Explain concurrent and accelerated install policy. 

• Describe an overview of APIs and ways to use and authenticate. 

• Explain how to make changes in GAIA and management configuration. 

• Explain how to install policy using API. 

• Explain how the SecureXL acceleration technology enhances and optimizes Security Gateway performance. 

• Describe how the CoreXL acceleration technology enhances and improves Security Gateway performance. 

• Articulate how utilizing multiple traffic queues can make traffic handling more efficient. 

• Discuss Site-to-Site VPN basics, deployment and communities. 

• Describe how to analyze and interpret VPN tunnel traffic. 

• Explain Link Selection and ISP Redundancy options. 

• Explain tunnel management features. 

• Discuss Check Point Remote Access solutions and how they differ from each other. 

• Describe how client security can be provided by Remote Access . 

• Explain authentication methods including machine authentication. 

• Explain Multiple Entry Point (MEP). 

• Discuss the Mobile Access Software Blade and how it secures communication and data exchange during remote connections. 

• Describe Mobile Access deployment options. 

• Discuss various features in Mobile Access like Portals, Link Translation, running Native Applications, Reverse Proxy and more. 

• Explain basic concepts of Clustering and ClusterXL. 

• Explain about Cluster Control Protocol (CCP) and synchronization. 

• Describe advanced ClusterXL functions and modes like Load Sharing, Active-Active, VMAC mode etc. 

• Discuss Cluster Correction Layer (CCL) to provide connection stickyness. 

• Advanced Logs and Monitoring 

• Explain how to determine if the configuration is compliant with the best practices. 

• Explain how to set action items to meet the compliance. 

• Discuss how SmartEvent functions to identify critical security issues. 

• Describe the components of SmartEvent and their deployment options. 

• Discuss how SmartEvent can assist in reporting security threats. 

• Explain how to customize event definitions and set an Event Policy.

Prerequisites

Working knowledge of Windows, UNIX, networking technology, the Internet and TCP/IP.

This course is not for new users to Check Point – previous certification/experience is required.

Outline

What is Check Point? Check Point are global providers of IT network and information security solutions, providing customers with robust protection against all types of threats, reduces security complexity and lowers total cost of ownership.

Best known for its FireWall-1 product, Check Point have hardware and software products covering all aspects of IT network, endpoint and data security including the popular NGX, Pointsec, VPN, VSX, R70 and R71 products.

Check Point training and certification courses ensure that IT professionals have up to date security skills, included within our training course portfolio are the Check Point Certified Security Administrator (CCSA) and the Check Point Certified Security Expert (CCSE) certifications all designed to give delegates immediate recognition of their experience, knowledge and abilities within the security arena.

Talk to an expert

Thinking about Onsite?

If you need training for 3 or more people, you should ask us about onsite training. Putting aside the obvious location benefit, content can be customised to better meet your business objectives and more can be covered than in a public classroom. Its a cost effective option. One on one training can be delivered too, at reasonable rates.

Submit an enquiry from any page on this site and let us know you are interested in the requirements box, or simply mention it when we contact you.

All $ prices are in USD unless it’s a NZ or AU date

SPVC = Self Paced Virtual Class

LVC = Live Virtual Class

Please Note: All courses are availaible as Live Virtual Classes

Trusted by over 1/2 million students in 15 countries

Our clients have included prestigious national organisations such as Oxford University Press, multi-national private corporations such as JP Morgan and HSBC, as well as public sector institutions such as the Department of Defence and the Department of Health.