Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0

Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0


Course Duration: 5 Days

The Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0 course shows you how to deploy and use Cisco Firepower® Next-Generation Intrusion Prevention System (NGIPS). This hands-on course gives you the knowledge and skills to use the platform features and includes firewall security concepts, platform architecture and key features; in-depth event analysis including detection of network-based malware and file type, NGIPS tuning and configuration including application control, security intelligence, firewall, and network-based malware and file controls; Snort® rules language; file and malware inspection, security intelligence, and network analysis policy configuration designed to detect traffic patterns; configuration and deployment of correlation policies to take action based on events detected; troubleshooting; system and user administration tasks, and more.

This course helps you prepare to take the exam, Securing Networks with Cisco Firepower (300-710 SNCF), which leads to CCNP Security and Cisco Certified Specialist – Network Security Firepower certifications. The 300-710 SNCF exam has a second preparation course as well, Securing Networks with Cisco Firepower Next Generation Firewall (SSNGFW). 


  • Describe the components of Cisco Firepower Threat Defense and the managed device registration process. 
  • Detail Next-Generation Firewalls (NGFW) traffic control and configure the Cisco Firepower system for network discovery. 
  • Implement access control policies and describe access control policy advanced features. 
  • Configure security intelligences features and the Advanced Malware Protection (AMP) for Networks implementation procedure for file control and advanced malware protection. 
  • Implement and manage intrusion and network analysis policies for NGIPS inspection. 
  • Describe and demonstrate the detailed analysis techniques and reporting features provided by the Cisco Firepower Management Center.
  • Integrate the Cisco Firepower Management Center with an external logging destination. 
  • Describe and demonstrate the external alerting options available to Cisco Firepower Management Center and configure a correlation policy.
  • Describe key Cisco Firepower Management Center software update and user account management features. 
  • Identify commonly misconfigured settings within the Cisco Firepower Management Center and use basic commands to troubleshoot a Cisco Firepower Threat Defense device.
Module 1: Cisco Firepower Threat Defense Overview
Module 2: Cisco Firepower NGFW Device Configuration
Module 3: Cisco Firepower NGFW Traffic Control
Module 4: Cisco Firepower Discovery
Module 5: Implementing Access Control Policies
Module 6: Security Intelligence
Module 7: File Control and Advanced Malware Protection
Module 8: Next-Generation Intrusion Prevention Systems
Module 9: Network Analysis Policies
Module 10: Detailed Analysis Techniques
Module 11: Cisco Firepower Platform Integration
Module 12: Alerting and Correlation Policies
Module 13: Performing System Administration
Module 14: Troubleshooting Cisco Firepower
After you pass 300-710 SNCF:
  • You earn the Cisco Certified Specialist - Network Security Firepower 
  • You will have satisfied the concentration exam requirement for new CCNP Security certification. To complete CCNP Security, you also need to pass the Implementing and Operating Cisco Security Core Technologies (300-701 SCOR) exam or its equivalent.
  • Technical understanding of TCP/IP networking and network architecture
  • Basic familiarity with the concepts of Intrusion Detection Systems (IDS) and IPS
Course ID:

Show Schedule for: