Skip to main Content

Implementing Cisco Network Security

  • Course Code IINS
  • Duration 5 days
  • Version 3.0

Additional Payment Options

  • GTC 37 inc. VAT

    GTC, Global Knowledge Training Credit, please contact Global Knowledge for more details

  • CLC Accepted inc. VAT

Public Classroom Price


excl. VAT

Request Group Training Add to Cart

Course Delivery

This course is available in the following formats:

  • Company Event

    Event at company

  • Public Classroom

    Traditional Classroom Learning

  • Virtual Learning

    Learning that is virtual

Request this course in a different delivery format.

Course Overview


This is a five-day instructor-led course that focuses on the design, implementation and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies. All IOS examples and hands on experience is done using the IOS CLI.  IPS is covered at the theoretical level from the perspective of FirePower technologies. Site-to-Site VPN configuration is covered on both IOS and the Cisco ASA . Modern malware examples are provided, cryptographic techniques use stronger hashing and encryption algorithms, and current versions of IOS, Cisco ASA and Cisco AnyConnect are highlighted.

More labs have been incorporated  to ensure the maximum amount of hands on experience possible. There are two types of labs: Discovery and Challenge. A discovery is a guided lab exercise. Explicit directions are provided to the student to guide them through the activity. Along with the directions are scenarios and explanations specifying why the student is implementing the subject technology and the results after configuration are demonstrated.

Challenges, on the other hand, are evaluation labs. The set of tasks is provided to the student, but directions are not provided. There are job aids which the student may utilize, providing information such as IP addresses and command syntax, but no specific description of procedures. An answer key is available for students who wish to verify their techniques. The instructors will of course be on hand to revisit any areas that may need further clarification.

Course Schedule


Target Audience


This course is aimed at individuals wishing to gain an understanding of Cisco Security on the network or those looking to obatin the Cisco Certified Network Associate for Security Cerification.

Course Objectives


After you complete this course you should be able to:

  • Describe the current threat landscape
  • Secure the management and control planes of network devices
  • Describe threat defense technologies
  • Secure the management and control planes of network devices
  • Configure AAA on Cisco IOS devices
  • Implement secure management for the Cisco ASA and Cisco IOS routers and switches
  • Secure the control plane
  • Secure the management and control planes of network devices
  • Implement layer 2 infrastructure security
  • Implement layer 2 protocol security
  • Configure management access and NAT on the Cisco ASA
  • Configure access control and service policies on the Cisco ASA
  • Describe IPsec
  • Implement a client-based remote access VPN
  • Implement a clientless remote access VPN
  • Describe IDS and IPS
  • Describe endpoint protection
  • Describe content security
  • Describe advanced network security architectures

Course Content


Security Concepts

  • Threatscape
  • Threat Defense Technologies
  • Security Policy and Basic Security Architectures
  • Cryptographic Technologies

Secure Network Devices

  • Implementing AAA
  • Management Protocols and Systems
  • Securing the Control Plane

Layer 2 Security

  • Securing Layer 2 Infrastructure
  • Securing Layer 2 Protocols


  • Firewall Technologies
  • Introducing the Cisco ASA v9.2
  • Cisco ASA Access Control and Service Policies
  • Cisco IOS Zone Based Firewall


  • IPsec Technologies
  • Site-to-Site VPN
  • Client Based Remote Access VPN
  • Clientless Remote Access VPN

Advanced Topics

  • Intrusion Detection and Protection
  • Endpoint Protection
  • Content Security
  • Advanced Network Security Architectures


  • Challenge Lab 1: Configure AAA and Secure Remote Administration
  • Challenge Lab 2: Configure Secure Network Management Protocols
  • Challenge Lab 3: Configure Secure EIGRP Routing
  • Challenge Lab 4: Configure Secure Layer 2 Infrastructure
  • Challenge Lab 5: Configure DHCP Snooping and STP Protection
  • Challenge Lab 6: Configure Interfaces and NAT on the Cisco ASA
  • Challenge Lab 7: Configure Network Access Control with the Cisco ASA
  • Challenge Lab 8: Configure Site-to-Site VPN on IOS
  • Challenge Lab 9: Configure AnyConnect Remote Access VPN on ASA
  • Challenge Lab 10: Configure Clientless SSL VPN on the ASA

Course Prerequisites


Attendees should meet the following prerequisites:

  • ICND1 - Interconnecting Cisco Network Devices Part 1 is required.

Test Certification


Recommended preparation for exams:

  • 210-260 - IINS Implementing Cisco Network Security

Delegates wishing to obtain the CCNA Security Certification will also need to have passed the ICND1 exam or the CCNA Routing and Switching composite exam.

Follow on Courses


Delegates looking to progress their Cisco Security Certification should consider the following courses.

  • SENSS -Implementing Cisco Edge Network Security Solutions
  • SIMOS - Implementing Cisco Secure Mobility
  • SISAS  - Implementing Cisco Secure Access Solutions
  • SITCS  - Implementing Cisco Threat Control Systems
The following are recommended for further study:
Cookie Control toggle icon