Live Chat
Monday - Friday 8am - 6pm EST Chat Now
Contact Us
Monday - Friday 8am - 8pm EST 1-800-268-7737 Other Contact Options

Cart () Loading...

    • Quantity:
    • Delivery:
    • Dates:
    • Location:


SSFAMP – Protecting Against Malware Threats with Cisco AMP for Endpoints v5.0

New – Learn how to build and manage a Cisco AMP for Endpoints deployment, create policies for endpoint groups, and deploy connectors. You will also analyze malware detections using powerful tools available in the AMP for Endpoints console.

GK# 4179

Course Overview


In this lab-intensive course, you will be introduced to the powerful features of Cisco AMP for Endpoints software. You will learn about the operational use of the product through a number of step-by-step attack scenarios.


  • Delivery Format:
  • Date:
  • Location:
  • Access Period:


What You'll Learn

  • Identify the key components and methodologies of Cisco Advanced Malware Protection (AMP)
  • Recognize the key features and concepts of the AMP for Endpoints product
  • Navigate the AMP for Endpoints console interface and perform first-use setup tasks
  • Identify and use the primary analysis features of AMP for Endpoints
  • Use the AMP for Endpoints tools to analyze a compromised host
  • Describe malware terminology and recognize malware categories
  • Analyze files and events by using the AMP for Endpoints console and be able to produce threat reports
  • Use the AMP for Endpoints tools to analyze a malware attack and a ZeroAccess infection
  • Configure and customize AMP for Endpoints to perform malware detection
  • Create and configure a policy for AMP protected endpoints
  • Plan, deploy, and troubleshoot an AMP for Endpoints installation
  • Describe the AMP Representational State Transfer (REST) API and the fundamentals of its use
  • Describe all the features of the Accounts menu for both public and private cloud installations


Viewing outline for:

Virtual Classroom Live Outline

  1. Introduction to Cisco AMP Technologies
  2. AMP for Endpoints Overview and Architecture
  3. Console Interface and Navigation
  4. Using AMP for Endpoints
  5. Detecting an Attacker
  6. Modern Malware
  7. Analysis
  8. Analysis Case Studies
  9. Outbreak Control
  10. Endpoint Policies
  11. Groups and Deployment
  13. Accounts


Viewing labs for:

Virtual Classroom Live Labs

Lab 1: Accessing AMP for Endpoints

Lab 2: Attack Scenario

Lab 3: Attack Analysis

Lab 4: Analysis Tools and Reporting

Lab 5: Zbot Analysis

Lab 6: Outbreak Control

Lab 7: Endpoint Policies

Lab 8: Groups and Deployment

Lab 9: Testing Your Policy Configuration

Lab 10: REST API

Lab 11: User Accounts


  • Technical understanding of TCP/IP networking and network architecture
  • Technical understanding of security concepts and protocols

Who Should Attend


The primary audience for this course is security administrators, security consultants, network administrators, systems engineers, technical support personnel, and channel partners and resellers.

Vendor Credits


This course can be purchased with Cisco Learning Credits (CLCs).

Course Delivery

This course is available in the following formats:

Virtual Classroom Live

Experience expert-led online training from the convenience of your home, office or anywhere with an internet connection.

Duration: 3 day

Request this course in a different delivery format.