SECURING EMAIL WITH CISCO EMAIL SECURITY APPLIANCE SESA

Image

SECURING EMAIL WITH CISCO EMAIL SECURITY APPLIANCESESA

  • 1
  • Mira
  • Sant Cugat, ES

Descripción del curso:

El curso Securing Email with Cisco Email Security Appliance (SESA) v3.0 le muestra cómo implementar y utilizar el dispositivo de seguridad de correo electrónico de Cisco para establecer la protección de sus sistemas de correo electrónico contra el phishing, el compromiso del correo electrónico comercial y el ransomware, y para ayudar a optimizar la seguridad del correo electrónico gestión de políticas. Este curso práctico le proporciona el conocimiento y las habilidades para implementar, solucionar problemas y administrar el dispositivo de seguridad de correo electrónico de Cisco, incluidas las capacidades clave como protección avanzada contra malware, bloqueo de correo no deseado, protección antivirus, filtrado de brotes, cifrado, cuarentenas y datos Prevención de pérdidas.

Este curso lo ayuda a prepararse para tomar el examen, Securing Email with Cisco Email Security Appliance  (300-720 SESA), que lo lleva a CCNP Security y al especialista certificado: certificaciones de seguridad de contenido de correo electrónico.

Prerequisitos:

Para beneficiarse plenamente de este curso, debe tener una o más de las siguientes competencias técnicas básicas:

  • Certificación de Cisco (certificación Cisco CCENT® o superior)
  • Certificación relevante de la industria, como (ISC) 2, CompTIA Security +, EC-Council, Global Information Assurance Certification (GIAC) e ISACA
  • Carta de finalización de Cisco Networking Academy (CCNA® 1 y CCNA 2)
  • Experiencia en Windows: Microsoft [Microsoft Specialist, Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Systems Engineer (MCSE)], CompTIA (A +, Network +, Server +)

Los conocimientos y habilidades que debe tener un estudiante antes de asistir a este curso son:

  • Servicios TCP / IP, incluidos el Sistema de nombres de dominio (DNS), Shell seguro (SSH), FTP, Protocolo simple de administración de redes (SNMP), HTTP y HTTPS
  • Experiencia con enrutamiento IP

Objetivos:

Después de tomar este curso, deberías poder:

  • Describe and administer the Cisco Email Security Appliance (ESA)
  • Control sender and recipient domains
  • Control spam with Talos SenderBase and anti-spam
  • Use anti-virus and outbreak filters
  • Use mail policies
  • Use content filters
  • Use message filters to enforce email policies
  • Prevent data loss
  • Perform LDAP queries
  • Authenticate Simple Mail Transfer Protocol (SMTP) sessions
  • Authenticate email
  • Encrypt email
  • Use system quarantines and delivery methods
  • Perform centralized management using clusters
  • Test and troubleshoot.

Beneficios del Curso:

Este curso te ayudará a:

  • Implemente protección de correo electrónico de alta disponibilidad contra las amenazas dinámicas que cambian rápidamente que afectan a su organización
  • Adquirir habilidades profesionales de vanguardia centradas en la seguridad empresarial

Qué esperar en el examen:

El examen 300-720 SESA certifica su conocimiento de Cisco Email Security Appliance, incluida la administración, control de correo no deseado y antispam, filtros de mensajes, prevención de pérdida de datos, Protocolo ligero de acceso a directorios (LDAP), autenticación y cifrado de correo electrónico, y cuarentenas y entrega del sistema métodos El examen estará disponible a partir del 24 de febrero de 2020.

Después de pasar 300-720 SESA:

  • Usted obtiene el Certificado de Especialista de Cisco: certificación de seguridad de contenido de correo electrónico.
  • Haber satisfecho el requisito del examen de concentración para la nueva certificación CCNP Security. Para completar su certificación CCNP Security, apruebe el examen Implementación y funcionamiento de Cisco Security Core Technologies (350-701 SCOR) o su equivalente.

Dirigido a: 

Los roles de trabajo más adecuados para el material en este curso son:

  • ingenieros de seguridad
  • Administradores de seguridad
  • arquitectos de seguridad
  • ingenieros de operaciones
  • ingenieros de redes
  • administradores de red
  • Técnicos de red o seguridad.
  • administradores de red
  • Diseñadores de sistemas
  • Integradores y socios de Cisco.

Outline del Curso:

Describing the Cisco Email Security Appliance

  • Cisco Email Security Appliance Overview
  • Technology Use Case
  • Cisco Email Security Appliance Data Sheet
  • SMTP Overview
  • Email Pipeline Overview
  • Installation Scenarios
  • Initial Cisco Email Security Appliance Configuration
  • Centralizing Services on a Cisco Content Security Management Appliance (SMA)
  • Release Notes for AsyncOS 11.x

Administering the Cisco Email Security Appliance

    • Distributing Administrative Tasks
    • System Administration
    • Managing and Monitoring Using the Command Line Interface (CLI)
    • Other Tasks in the GUI
    • Advanced Network Configuration
    • Using Email Security Monitor
    • Tracking Messages
    • Logging

Controlling Sender and Recipient Domains

    • Public and Private Listeners
    • Configuring the Gateway to Receive Email
    • Host Access Table Overview
    • Recipient Access Table Overview
    • Configuring Routing and Delivery Features

Controlling Spam with Talos SenderBase and Anti-Spam

    • SenderBase Overview
    • Anti-Spam
    • Managing Graymail
    • Protecting Against Malicious or Undesirable URLs
    • File Reputation Filtering and File Analysis
    • Bounce Verification

Using Anti-Virus and Outbreak Filters

    • Anti-Virus Scanning Overview
    • Sophos Anti-Virus Filtering
    • McAfee Anti-Virus Filtering
    • Configuring the Appliance to Scan for Viruses
    • Outbreak Filters
    • How the Outbreak Filters Feature Works
    • Managing Outbreak Filters

Using Mail Policies

    • Email Security Manager Overview
    • Mail Policies Overview
    • Handling Incoming and Outgoing Messages Differently
    • Matching Users to a Mail Policy
    • Message Splintering
    • Configuring Mail Policies

Using Content Filters

    • Content Filters Overview
    • Content Filter Conditions
    • Content Filter Actions
    • Filter Messages Based on Content
    • Text Resources Overview
    • Using and Testing the Content Dictionaries Filter Rules
    • Understanding Text Resources
    • Text Resource Management
    • Using Text Resources

Using Message Filters to Enforce Email Policies

    • Message Filters Overview
    • Components of a Message Filter
    • Message Filter Processing
    • Message Filter Rules
    • Message Filter Actions
    • Attachment Scanning
    • Examples of Attachment Scanning Message Filters
    • Using the CLI to Manage Message Filters
    • Message Filter Examples
    • Configuring Scan Behavior

Preventing Data Loss

    • Overview of the Data Loss Prevention (DLP) Scanning Process
    • Setting Up Data Loss Prevention
    • Policies for Data Loss Prevention
    • Message Actions
    • Updating the DLP Engine and Content Matching Classifiers

Using LDAP

    • Overview of LDAP
    • Working with LDAP
    • Using LDAP Queries
    • Authenticating End-Users of the Spam Quarantine
    • Configuring External LDAP Authentication for Users
    • Testing Servers and Queries
    • Using LDAP for Directory Harvest Attack Prevention
    • Spam Quarantine Alias Consolidation Queries
    • Validating Recipients Using an SMTP Server

SMTP Session Authentication

    • Configuring AsyncOS for SMTP Authentication
    • Authenticating SMTP Sessions Using Client Certificates
    • Checking the Validity of a Client Certificate
    • Authenticating User Using LDAP Directory
    • Authenticating SMTP Connection Over Transport Layer Security (TLS) Using a Client Certificate
    • Establishing a TLS Connection from the Appliance
    • Updating a List of Revoked Certificates

Email Authentication

    • Email Authentication Overview
    • Configuring DomainKeys and DomainKeys Identified MailDKIM) Signing
    • Verifying Incoming Messages Using DKIM
    • Overview of Sender Policy FrameworkSPF) and SIDF Verification
    • Domain-based Message Authentication Reporting and Conformance (DMARC) Verification
    • Forged Email Detection

Email Encryption

    • Overview of Cisco Email Encryption
    • Encrypting Messages
    • Determining Which Messages to Encrypt
    • Inserting Encryption Headers into Messages
    • Encrypting Communication with Other Message Transfer Agents (MTAs)
    • Working with Certificates
    • Managing Lists of Certificate Authorities
    • Enabling TLS on a Listener’s Host Access Table (HAT)
    • Enabling TLS and Certificate Verification on Delivery
    • Secure/Multipurpose Internet Mail Extensions (S/MIME) Security Services

Using System Quarantines and Delivery Methods

    • Describing Quarantines
    • Spam Quarantine
    • Setting Up the Centralized Spam Quarantine
    • Using Safelists and Blocklists to Control Email Delivery Based on Sender
    • Configuring Spam Management Features for End Users
    • Managing Messages in the Spam Quarantine
    • Policy, Virus, and Outbreak Quarantines
    • Managing Policy, Virus, and Outbreak Quarantines
    • Working with Messages in Policy, Virus, or Outbreak Quarantines
    • Delivery Methods

Centralized Management Using Clusters

    • Overview of Centralized Management Using Clusters
    • Cluster Organization
    • Creating and Joining a Cluster
    • Managing Clusters
    • Cluster Communication
    • Loading a Configuration in Clustered Appliances
    • Best Practices

Testing and Troubleshooting

    • Debugging Mail Flow Using Test Messages: Trace
    • Using the Listener to Test the Appliance
    • Troubleshooting the Network
    • Troubleshooting the Listener
    • Troubleshooting Email Delivery
    • Troubleshooting Performance
    • Web Interface Appearance and Rendering Issues
    • Responding to Alerts
    • Troubleshooting Hardware Issues
    • Working with Technical Support

References

    • Model Specifications for Large Enterprises
    • Model Specifications for Midsize Enterprises and Small-to-Midsize Enterprises or Branch Offices
    • Cisco Email Security Appliance Model Specifications for Virtual Appliances
    • Packages and Licenses

Outline del laboratorio

  • Verify and Test Cisco ESA Configuration
  • Perform Basic Administration
  • Advanced Malware in Attachments (Macro Detection)
  • Protect Against Malicious or Undesirable URLs Beneath Shortened URLs
  • Protect Against Malicious or Undesirable URLs Inside Attachments
  • Intelligently Handle Unscannable Messages
  • Leverage AMP Cloud Intelligence Via Pre-Classification Enhancement
  • Integrate Cisco ESA with AMP Console
  • Prevent Threats with Anti-Virus Protection
  • Applying Content and Outbreak Filters
  • Configure Attachment Scanning
  • Configure Outbound Data Loss Prevention
  • Integrate Cisco ESA with LDAP and Enable the LDAP Accept Query
  • DomainKeys Identified Mail (DKIM)
  • Sender Policy Framework (SPF)
  • Forged Email Detection
  • Configure the Cisco SMA for Tracking and Reporting

Duración:  3 días.

Precio: A consultar

Cisco Learning Credit: A consultar

INSTRUCTOR

Image

Lectures
Duration
Skill level
Language
Students
Certificate

CURRICULUM

SECTION 1: INTRODUCTION TO HANDSTANDS

Parents, students and community members are invited to attend this meeting, which discusses educational issues at the high school and its middle and elementary schools. Schools in the Kerrington cluster are: Aldiger, Caramba, Chesterfield, Cutterey, Fraiser, Johnson, Antonio, Lorney Winston, Ramos, and Westford secondary schools

Download pdf Download doc
Share
Apúntate al curso AHORA

Este sitio web utiliza cookies para que usted tenga la mejor experiencia de usuario. Si continúa navegando está dando su consentimiento para la aceptación de las mencionadas cookies y la aceptación de nuestra política de cookies.

ACEPTAR
Aviso de cookies