CCNA Security Training

5 days


Course Introduction

Best Practice Training's CCNA Security Training is designed to provide the delegates with the knowledge and skills required to secure the Cisco networks. After this training, the delegates will be able to develop skilled infrastructure and effectively recognise and resolve encountered threats. The course covers basics of network security, protection of network infrastructure, threat control and containment and secure connectivity.

  • Save Your Network Devices from External Threats Using Cisco Technologies
  • Understand the Firewall and VPN Technologies used for security purposes
  • Understand the Advanced network security designs
  • Learn to recognize any intruders as a first step towards securing the networks


  • Support Engineers
  • Network Security Specialists
  • Administrators

Skills Gained

Module 1: Networking Security Fundamentals

  • Introducing Networking Security Concepts
  • Understanding Security Policies Using a Life-Cycle Approach
  • Building a Security Strategy for Borderless Networks

Module 2: Protecting the Network Infrastructure

  • Introducing Cisco Network Foundation Protection
  • Protecting the Network Infrastructure Using Cisco Configuration Professional
  • Securing the Management Plane on Cisco IOS Devices
  • Configuring AAA on Cisco IOS Devices Using Cisco Secure ACS
  • Securing the Data Plane on Cisco Catalyst Switches
  • Securing the Data Plane in IPv6 Environments

Module 3: Threat Control and Containment

  • Planning a Threat Control Strategy
  • Implementing Access Control Lists for Threat Mitigation
  • Understanding Firewall Fundamentals
  • Implementing Cisco IOS Zone-Based Policy Firewalls
  • Configuring Basic Firewall Policies on Cisco ASA Appliances
  • Understanding IPS Fundamentals
  • Implementing Cisco IOS IPS

Module 4: Secure Connectivity

  • Understanding the Fundamentals of VPN Technologies
  • Introducing Public Key Infrastructure
  • Examining IPsec Fundamentals
  • Implementing Site-to-Site VPNs on Cisco IOS Routers
  • Implementing SSL VPNs Using Cisco ASA Appliances


The delegates need to be qualified in one of the following to appear in the said exam:

  • CCENT (Cisco Certified Entry Network Technician) Certification
  • ICND1 (Interconnecting Cisco Networking Devices, Part 1) v3.0 Certification.

This training is an merger of Interconnecting Cisco Networking Devices ICND1 and Implementing Cisco IOS Networking Security. If the delegates already hold the ICND1 or the CCENT certification, they can directly continue with Implementing Cisco IOS Networking Security.

An experience of 2 years, though not mandatory, is preferred for the delegates by Cisco before appearing for the exam.

Course Outline

By the time the course comes to an end the delegate will have learnt the following concepts:

  • Common Concepts regarding Network Security
  • Secure routing and switching infrastructure
  • Install basic authentication, authorization, and accounting services
  • Implement firewalling services
  • Implement necessary site-to-site and remote access VPN services
  • Advanced security services such as intrusion protection, content security and identity management
  • Develop an all-inclusive network security policy to reduce threats against information security
  • Set-up routers with Cisco IOS software security features for administration as well as reporting functions
  • Bootstrap the Cisco ASA Firewall for use in a production network
  • Configure the Cisco ASA Firewall for remote access to a Secure Sockets Layer (SSL) VPN
  • Design a Cisco IOS zone-based firewall (ZBF) that accomplishes simple security procedures on a network
  • Configure site-to-site VPNs using Cisco IOS features
  • Configure security features on IOS switches to mitigate various Layer 2 and Layer 3 attacks
  • How a network can be compromised using freely available tools
  • Implement passwords and secrets
  • Observe the AAA concepts of authentication, authorization, and accounting by making use of the local database and the Cisco Secure ACS 5.2 as well.
  • Configure packet filtering on the perimeter router

Related Courses


Thinking about Onsite?

If you need training for 3 or more people, you should ask us about onsite training. Putting aside the obvious location benefit, content can be customised to better meet your business objectives and more can be covered than in a public classroom. It's a cost effective option.

Submit an enquiry from any page on this site, and let us know you are interested in the requirements box, or simply mention it when we contact you.

ITILv3, RESILIA, PRINCE2, PRINCE2 Agile, AgileSHIFT, MSP, M_o_R, P3M3, P3O, MoP, MoV courses on this page are offered by QA Affiliate of AXELOS Limited. ITIL, RESILIA, PRINCE2, PRINCE2 Agile, AgileSHIFT, MSP, M_o_R, P3M3, P3O,MoP, MoV are registered trademarks of AXELOS Limited. All rights reserved.

Upcoming Dates

  • GREEN This class is Guaranteed To Run.
  • SPVC - Self-Paced Virtual Class.
  • Click a Date to Enroll.
Course Location Days Cost Date
Virtual Virtual5 3514 £3514 2019-12-09
Virtual Virtual5 3514 £3514 2019-12-09
Hampshire Southampton5 3514 £3514 2020-01-06
Manchester Manchester5 3514 £3514 2020-01-06
Yorkshire Leeds5 3514 £3514 2020-01-06
Berkshire Reading5 3514 £3514 2020-01-06
Glasgow Glasgow5 3514 £3514 2020-01-06
London London5 3514 £3514 2020-01-06
Bristol Bristol5 3514 £3514 2020-01-06
Midlands Birmingham5 3514 £3514 2020-01-06
Edinburgh Edinburgh5 3514 £3514 2020-01-06
London London5 3514 £3514 2020-03-02
Hampshire Southampton5 3514 £3514 2020-03-02
Virtual Virtual5 3514 £3514 2020-03-16
Virtual Virtual5 3514 £3514 2020-04-27
London London5 3514 £3514 2020-05-04
Hampshire Southampton5 3514 £3514 2020-05-04
Virtual Virtual5 3514 £3514 2020-05-18