Managing Enterprise Security with Cisco Security Manager v4.0 - (SSECMGT)

Managing Enterprise Security with Cisco Security Manager v4.0 - (SSECMGT) Course Description

Duration: 5.00 days (40 hours)

Cisco Career Guide

The Managing Enterprise Security with Cisco Security Manager (SSECMGT) v4.0 course is a five-day instructor-led course that is aimed at providing network security engineers with the knowledge and skills that are needed to configure and deploy Cisco Security Manager. The course also provides an overview of network security technologies, and includes case studies that are useful for deployment scenarios.

To participate in the hands-on labs in this class, you need to bring a laptop computer with the following:

- Windows 7 or 8.1 or 10 is recommended. Mac OSX 10.6 or greater is supported as well.
- Intel Celeron or better processors are preferred.
- 1 GB or more of RAM
- Browser Requirements: Internet Explorer 10 or greater or Mozilla Firefox. (Safari and Mozilla Firefox for Mac OSX)
- All students are required to have administrator rights to their PCs and cannot be logged in to a domain using any Group Policies that will limit their machine's capabilities.
- If you do not have administrator rights to your PC, you at least need permissions to download, install, and run Cisco Any Connect Client.
- If you are participating in a WebEx event, it is highly recommended to take this class at a location that has bandwidth speeds at a minimum of 1 Mbps bandwidth speeds.

Next Class Dates

Contact us to customize this class with your own dates, times and location. You can also call 1-888-563-8266 or chat live with a Learning Consultant.

Back to Top

Intended Audience for this Managing Enterprise Security with Cisco Security Manager v4.0 - (SSECMGT) Course

  • » Network security engineers that are working in the enterprise sector.

Back to Top

Course Prerequisites for Managing Enterprise Security with Cisco Security Manager v4.0 - (SSECMGT)

  • » Understanding of networking and routing (on the CCNP level, but no certification
  • » Understanding of different VPN technologies (such as DMVPN, GET VPN, and SSL VPN).
  • » Working knowledge of the Microsoft Windows operating system.

Back to Top

Managing Enterprise Security with Cisco Security Manager v4.0 - (SSECMGT) Course Objectives

  • » Present an overview of the Cisco Security Manager product, describe the main product features, and introduce the basic deployment tasks
  • » Manage configuration of Cisco ASA adaptive security appliances and Cisco FWSM firewall devices, and explain firewall event management and device configuration correlation
  • » Describe the most commonly used VPN topologies and their deployment
  • » Examine the configuration of intrusion prevention mechanisms on the Cisco IOS platform, modules, and standalone appliances, as well as explain the Cisco IPS event and configuration correlation
  • » Explain how Cisco Security Manager works with Cisco IOS devices, including the new Cisco ISR G2 routers
  • » Describe the FlexConfig functionality of Cisco Security Manager, the workflow mode of operation, and administrative tasks and integration with Cisco Secure ACS

Back to Top

Managing Enterprise Security with Cisco Security Manager v4.0 - (SSECMGT) Course Outline

      1. Cisco Security Manager Overview
        1. Introducing Cisco Security Manager
          1. Product Overview
          2. Using Cisco Security Manager
          3. Installing Cisco Security Manager
          4. Cisco Security Manager Installation Procedure
          5. Working with the Cisco Security Manager User Interface
          6. New Features in Cisco Security Manager 4.0
        2. Managing Devices
          1. Preparing the Devices for Cisco Security Manager
          2. Understanding the Device View
          3. Adding Devices to Cisco Security Manager Inventory
          4. Working with Devices with Dynamically Assigned IP Addresses
          5. Understanding Device Properties
          6. Understanding Device Credentials
          7. Managing Devices
          8. Understanding Device Grouping
          9. On-Demand Out-of-Band Change Detection
        3. Managing Policies
          1. Understanding Policies
          2. Managing Policies in Device View
          3. Managing Shared Policies in Policy View
          4. Interface Roles
          5. Advanced Policy Features
          6. Policy Locking
          7. Discovering Policies
        4. Managing Objects
          1. Objects Overview
          2. Understanding the Policy Object Manager Window
          3. Overriding Global Objects for Individual Devices
          4. Selecting Objects for Policies
        5. Using Map View
          1. Understanding Maps
          2. Displaying Your Network on the Map
          3. Managing Firewall Services in Map View
          4. Managing VPNs in Map View
          5. Managing Device Policies in Map View
      2. Firewall Policy Management
        1. Managing Firewall Services
          1. Overview of Managing Firewall Services
          2. Managing Rules Tables
          3. Understanding Access Rules
          4. Understanding Access Control Settings
          5. Understanding Inspection Rules
          6. Understanding Access Rule Functions
          7. Understanding AAA Rules
          8. Understanding Web Filter Rules
          9. Understanding Transparent Firewall Rules
          10. Understanding Zone-Based Firewall Rules
          11. Understanding Interface and Global Rules
          12. Understanding Botnet Traffic Filtering
        2. Managing Firewall Devices
          1. Platform Policies on Firewall Devices
          2. NAT Policies on Firewall Devices
          3. Bridging Policies on Firewall Devices
          4. Device Administration Policies on Firewall Devices
          5. Logging Policies on Firewall Devices
          6. Multicast Policies on Firewall Devices
          7. Routing Policies on Firewall Devices
          8. Security Policies on Firewall Devices
          9. Service Policy Rules on Firewall Devices
          10. Security Contexts on Firewall Devices
        3. Event Monitoring and Rule Correlation for Firewalls
          1. Supported Devices and Events in Event Viewer
          2. EventServer Overview
          3. Cisco ASA Device Bootstrapping
          4. Introduction to Event Viewer
          5. Event-to-Policy Correlation
          6. Event Collection and Event Viewer Settings
      3. VPN Policy Configuration
        1. Managing VPNs
          1. Overview of Site-to-Site VPNs
          2. Working with VPN Topologies
          3. Working with Site-to-Site VPN Policies
          4. Configuring Advanced VPN Platforms
        2. Managing Remote Access IPsec VPNs
          1. Overview of Remote-Access VPNs
          2. Working with Policies in Remote-Access VPNs
          3. Configuring VPN Options
        3. Configuring Client-Based SSL VPNs
          1. SSL VPN Management Features and Platform Support
          2. Overview of Remote-Access SSL VPNs
          3. Bootstrapping Cisco ASA Adaptive Security Appliance for Full Tunnel SSL VPN
          4. Configuring Full Tunnel SSL VPN
        4. Configuring Clientless SSL VPNs
          1. Clientless SSL VPN Overview
          2. Clientless SSL VPN Configuration
          3. Working with Application Plug-Ins
          4. SSL VPN Portal Customization
        5. Configuring Advanced VPN Configurations
          1. Managing Cisco Security Desktop Policy
          2. Configuring DAP
          3. Creating Group Policies
          4. Creating Remote Connection Profiles
          5. Working with VPN AAA
        6. Deploying Advanced VPN Technologies
          1. DMVPN Overview
          2. Hub-and-Spoke Prerequisites
          3. Configuring DMVPN
          4. Managing DMVPN
          5. GET VPN Overview
          6. Configuring GET VPN
          7. Managing GET VPN
          8. GRE over IPsec
          9. VPN Dial Backup
          10. VRF-Aware IPsec
          11. VPN High Availability
      4. Cisco IPS Solutions Management
        1. Managing Cisco IPS Services
          1. Overview of Network Sensing
          2. Configuring Interfaces
          3. Configuring Signatures
          4. Working with IPS Signatures
          5. Configuring Anomaly Detection
          6. Configuring Event Actions
          7. Configuring Global Correlation
        2. Managing Cisco IPS Devices
          1. Managing Cisco IPS Modules and Appliances
          2. Configuring Policies for Cisco IOS IPS Devices
          3. Managing Cisco IPS Updates
        3. Managing Cisco IPS Events
          1. Cisco Security Manager IPS Event Management
          2. Mapping IPS Events to Policies
      5. Cisco IOS Device Provisioning
        1. Managing Routers
          1. Overview of Policy Management on Cisco IOS Routers
          2. Working with Platform Policies for Cisco IOS Routers
          3. NAT Policies
          4. Interface Policies
          5. Device Administration Policies
          6. Configuring Device Administration Policies
          7. Identity Policies
          8. Logging and QoS Policies
          9. Routing Policies
          10. Advanced Routing Configuration Options
          11. Zone-Based Firewall
        2. Using the Cisco Catalyst 6500 Series Switch and Cisco 7600 Series Router Device Manager
          1. Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers Overview
          2. Managing Policies for Catalyst 6500 Series Switches and 7600 Series Routers
      6. Management, Deployment, and Administration of FlexConfigs in Cisco Security Manager
        1. Managing FlexConfigs
          1. Understanding FlexConfig
          2. Creating FlexConfig Policy Objects
          3. Working with FlexConfig
        2. Managing Activities and Workflow Deployments
          1. Managing Activities
          2. Working with Activities
          3. Managing Deployment
        3. Implementing Integration Between Cisco Security Manager and Cisco Secure ACS
          1. Understanding Roles in Cisco Security Manager
          2. Understanding RBAC with Cisco Secure ACS
          3. Configuring Cisco Secure ACS and Cisco Security Manager for RBAC Integration
        4. Backing Up and Restoring Cisco Security Manager Databases
          1. Database Backup in Cisco Security Manager
          2. Database Restore in Cisco Security Manager
        5. Using Monitoring, Troubleshooting, and Diagnostic Tools
      7. Lab
        1. Configuring Device Bootstrap and Testing Connectivity
        2. Importing Devices
        3. Defining Interface Roles and Usage
        4. Creating Policy Objects
        5. Managing Firewall Policy-Policy Sharing
        6. Managing Firewall Policy-Policy Inheritance
        7. Configuring NAT and Inspecting Configuration Commands Prior to Deployment
        8. Configuring Event Monitoring and Configuration Correlation for Firewalls
        9. Managing SSL VPN Deployment Using Cisco AnyConnect
        10. Managing Clientless SSL VPN Deployment
        11. Managing DMVPN Deployment
        12. Managing GET VPN Deployment
        13. Configuring the Cisco IOS IPS
        14. Configuring the Cisco IPS Module
        15. Configuring Event Monitoring and Configuration Correlation for IPSs
        16. Configuring the Cisco IOS Software Router
        17. Managing DHCP Devices with the CiscoWorks Auto Update Server
        18. Configuring FlexConfigs
        19. Configuring Cisco Secure ACS and Cisco Security Manager Integration

Back to Top

Do you have the right background for Managing Enterprise Security with Cisco Security Manager v4.0 - (SSECMGT)?

Skills Assessment

We ensure your success by asking all students to take a FREE Skill Assessment test. These short, instructor-written tests are an objective measure of your current skills that help us determine whether or not you will be able to meet your goals by attending this course at your current skill level. If we determine that you need additional preparation or training in order to gain the most value from this course, we will recommend cost-effective solutions that you can use to get ready for the course.

Our required skill-assessments ensure that:

  1. All students in the class are at a comparable skill level, so the class can run smoothly without beginners slowing down the class for everyone else.
  2. NetCom students enjoy one of the industry's highest success rates, and pass rates when a certification exam is involved.
  3. We stay committed to providing you real value. Again, your success is paramount; we will register you only if you have the skills to succeed.
This assessment is for your benefit and best taken without any preparation or reference materials, so your skills can be objectively measured.

Take your FREE Skill Assessment test »

Back to Top

Award winning, world-class Instructors

David M.
- Networking expert with several Cisco certifications, including CCENT, CCNA, CCDA, CCSI, and CCVP. - Has taught over 90 courses at NetCom Learning. - Average rating of 8.75 out of 9 on student evaluation reports.


David has been in the Networking field for the past eleven years and holds several Cisco certifications. He has been an instructor since 2005 and has taught over 90 courses at NetCom Learning.

David is an extremely enthusiastic trainer with a raw passion towards teaching and delivering Cisco information and takes great pride in his career as an instructor, which has lead him to develop and deliver the class in his own unique way; very professional and knowledgeable, yet pleasant and enjoyable. His classes have a high passing rate for students taking certification exams, and averages 8.75 out of 9 on evaluation reports.
Michael G.
- Over 22 years of professional experience in the IT field, including more than a decade as a Certified Trainer.
- An expert in Cisco's Routing, Switching, Security, Voice and Wireless areas, as well as select Microsoft, Novell, CompTIA, Sun and CWNP courses.
- High-skilled and acclaimed instructor. Has trained over 900 students at Netcom Learning.


Michael has over 22 years of professional experience in the IT field, including more than a decade as a Certified Trainer. An expert in Cisco's Routing, Switching, Security, Voice and Wireless areas, Michael also teaches select Microsoft, Novell, CompTIA, Sun and CWNP courses.

Michael's dedication and passion for teaching is unmatched. He has trained over 900 students at Netcom Learning since 2006 and his evaluation scores average 8.7 out of 9.
William D.
- Bachelors and Masters in Mathematics from University of Pennsylvania, in addition to several IT certifications.
- Over 20 years of experience in the IT industry; background ranges from engineering, administration and escalation support in networks.


William is a highly-skilled IT professional with Bachelors and Masters Degree in Mathematics from University of Pennsylvania. He has been working in the IT industry for over 20 years, with experience in engineering, administration and escalation support in networks ranging from small to large scale complex enterprise environments.

As a Cisco and CompTIA Subject Matter Expert, he holds several certifications, including Cisco CCNA, CCNP, and CCIE. William is one of NetCom's top trainers, consistently scoring high marks in student evaluations.

See more...   See more instructors...

Back to Top

Recent Client Testimonials & Reviews

Very knowledgeable instructor. True subject matter expert.

- Dameon R.

Course(s) Taken

» Implementing Cisco Voice Communications and QoS v8.0 - CVOICE

The instructor knows his material very well.

- Hung N.

Course(s) Taken

» Implementing Cisco Voice Communications and QoS v8.0 - CVOICE

Good Training company with whom we have a history.

-Swaminathayer M.
Course(s) Taken

» Deploying Cisco ASA Firewall Solutions v2.0 - FIREWALL

  More testimonials »  

Back to Top