Maricopa Community Colleges  CNT184   20056-20086 
Official Course Description: MCCCD Approval: 07/22/08
CNT184 20056-20086 L+L 3 Credit(s) 4 Period(s)
Cisco Secure Intrusion Detection Systems
Knowledge and skills needed to design, install, and configure a Cisco Intrusion Detection Solution (IDS) for small, medium and enterprise networks.
Prerequisites: CNT181 or permission of Instructor.
Go to Competencies    Go to Outline
 
MCCCD Official Course Competencies:
 
CNT184   20056-20086 Cisco Secure Intrusion Detection Systems
1. Describe basic network security and intrusion detection terminology. (I)
2. Design a Cisco Intrusion Detection System (IDS) protection solution for small, medium, and enterprise customers. (I)
3. Explain the different intrusion detection technologies and evasive techniques. (II)
4. Identify the Cisco Intrusion Detection System (IDS) sensor platforms and describe their features. (II)
5. Install and configure a Cisco Intrusion Detection System (IDS) Sensor. (II)
6. Identify capabilities of the Cisco Intrusion Detection System Module for Catalyst switches. (II)
7. Identify capabilities of the Cisco Network Module for high end Cisco routers. (II)
8. Describe the Cisco Intrusion Detection System (IDS) architecture. (II)
9. Create and implement customized intrusion detection signatures. (III)
10. Create alarm exceptions to reduce alarms and possible false positives. (III)
11. Configure a Cisco Intrusion Detection System (IDS) Sensor to perform device management of supported blocking devices. (III)
12. Install and configure the Cisco Security Agent. (IV)
13. Describe the Cisco Intrusion Detection System (IDS) signatures and determine the immediate threat posed to the network. (IV, V)
14. Tune Cisco Intrusion Detection System (IDS) signatures to work optimally in unique network environments. (IV, V)
15. Perform maintenance operations such as signature updates and software upgrades. (V)
16. Manage a large scale deployment of Cisco IDS Sensors with Cisco Intrusion Detection System (IDS) Management and Monitoring software. (V)
Go to Description    Go to top of Competencies
 
MCCCD Official Course Outline:
 
CNT184   20056-20086 Cisco Secure Intrusion Detection Systems
    I. Introduction to Network Security
        A. Network security
        B. Network Security and Cisco
      II. Intrusion detection and intrusion protection technologies
          A. Intrusion Detection Overview
          B. Cisco Intrusion Protection Overview
          C. Cisco intrusion detection system architecture
          D. Intrusion Detection System modules
        III. Network-based Intrusion Detection System Configuration
            A. Capturing traffic
            B. Sensor configuration
            C. Signature configuration
            D. Signature response
            E. Cisco Intrusion Detection System (IDS) Alarms and Signatures
            F. Cisco intrusion detection system device manager and event viewer
          IV. Host-based Intrusion Protection
              A. Cisco Security Agent Installation
              B. Cisco Security Agent Software setup
              C. Signature configuration
              D. Host-based Intrusion Detection System (IDS) response
              E. Alerts and event monitoring
            V. Enterprise Intrusion Detection System (IDS) monitoring and reporting
                A. Intrusion Detection System (IDS) management through Intrusion Detection System (IDS) Device Manager
                B. Intrusion Detection System (IDS) maintenance and fine tuning
                C. Sensor management
            Go to Description    Go to top of Competencies    Go to top of Outline