350-701 SCOR Exam Topics and Mapping to the CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide

Imagemap
350-701 SCORSecurity Concepts (25%)Explain common threats against on-premis ...Compare common security vulnerabilities ...Describe functions of the cryptography c ...Compare site-to-site VPN and remote acce ...Describe security intelligence authoring ...Explain the role of the endpoint in prot ...Explain North Bound and South Bound APIs ...Explain DNAC APIs for network provisioni ...Interpret basic Python scripts used to c ...Network Security (20%)Compare network security solutions that ...Describe deployment models of network se ...Describe the components, capabilities, a ...Configure and verify network infrastruct ...Layer 2 methods (Network segmentation us ...Device hardening of network infrastructu ...Implement segmentation, access control p ...Implement management options for network ...Configure AAA for device and network acc ...Configure secure network management of p ...Configure and verify site-to-site VPN an ...Site-to-site VPN utilizing Cisco routers ...Remote access VPN using Cisco AnyConnect ...Debug commands to view IPsec tunnel esta ...Securing the Cloud (15%)Identify security solutions for cloud en ...Public, private, hybrid, and community c ...Cloud service models: SaaS, PaaS, IaaS ( ...Cloud-delivered security solutions such ...Describe the concept of DevSecOps (CI/CD ...Implement application and data security ...Identify security capabilities, deployme ...Configure cloud logging and monitoring m ...Describe application and workload securi ...Content Security (15%)Implement traffic redirection and captur ...Describe web proxy identity and authenti ...Compare the components, capabilities, an ...Configure and verify web and email secur ...Configure and verify email security feat ...Configure and verify secure internet gat ...Describe the components, capabilities, a ...Configure and verify web security contro ...Endpoint Protection and Detection (10%)Compare Endpoint Protection Platforms (E ...Explain antimalware, retrospective secur ...Configure and verify outbreak control an ...Describe justifications for endpoint-bas ...Describe the value of endpoint device ma ...Describe the uses and importance of a mu ...Describe endpoint posture assessment sol ...Explain the importance of an endpoint pa ...Secure Network Access, Visibility, and E ...Describe identity management and secure ...Configure and verify network access devi ...Describe network access with CoADescribe the benefits of device complian ...AAA benefits of device compliance and ap ...Explain exfiltration techniques (DNS tun ...Describe the benefits of network telemet ...Describe the components, capabilities, a ...Cisco StealthwatchCisco Stealthwatch CloudpxGridUmbrella InvestigateCisco Cognitive Threat AnalyticsCisco Encrypted Traffic AnalyticsCisco AnyConnect Network Visibility Modu ...
hide
350-701 SCOR
hide
Network Security (20%)
leaf
Compare network security solutions that provide intrusion prevention and firewall capabilities User Link
leaf
Describe deployment models of network security solutions and architectures that provide intrusion prevention and firewall capabilities User Link
leaf
Describe the components, capabilities, and benefits of NetFlow and Flexible NetFlow records User Link
hide
Configure and verify network infrastructure security methods (router, switch, wireless) User Link
leaf
Layer 2 methods (Network segmentation using VLANs and VRF-lite; Layer 2 and port security; DHCP snooping; Dynamic ARP inspection; storm control; PVLANs to segregate network traffic; and defenses against MAC, ARP, VLAN hopping, STP, and DHCP rogue attacks User Link
leaf
Device hardening of network infrastructure security devices (control plane, data plane, management plane, and routing protocol security) User Link
leaf
Implement segmentation, access control policies, AVC, URL filtering, and malware protection User Link
leaf
Implement management options for network security solutions such as intrusion prevention and perimeter security (Single vs. multidevice manager, in-band vs. out-of-band, CDP, DNS, SCP, SFTP, and DHCP security and risks) User Link
leaf
Configure AAA for device and network access (authentication and authorization, TACACS+, RADIUS and RADIUS flows, accounting, and dACL) User Link
leaf
Configure secure network management of perimeter security and infrastructure devices (secure device management, SNMPv3, views, groups, users, authentication, and encryption, secure logging, and NTP with authentication) User Link
hide
Configure and verify site-to-site VPN and remote access VPN User Link
leaf
Site-to-site VPN utilizing Cisco routers and IOS User Link
leaf
Remote access VPN using Cisco AnyConnect Secure Mobility client User Link
leaf
Debug commands to view IPsec tunnel establishment and troubleshooting User Link
hide
Content Security (15%)
leaf
Implement traffic redirection and capture methods User Link
leaf
Describe web proxy identity and authentication including transparent user identification User Link
leaf
Compare the components, capabilities, and benefits of local and cloud-based email and web solutions (ESA, CES, WSA) User Link
leaf
Configure and verify web and email security deployment methods to protect on-premises and remote users (inbound and outbound controls and policy management) User Link
leaf
Configure and verify email security features such as SPAM filtering, antimalware filtering, DLP, blacklisting, and email encryption User Link
leaf
Configure and verify secure internet gateway and web security features such as blacklisting, URL filtering, malware scanning, URL categorization, web application filtering, and TLS decryption User Link
leaf
Describe the components, capabilities, and benefits of Cisco Umbrella User Link
leaf
Configure and verify web security controls on Cisco Umbrella (identities, URL content settings, destination lists, and reporting) User Link
hide
Secure Network Access, Visibility, and Enforcement (15%)
leaf
Describe identity management and secure network access concepts such as guest services, profiling, posture assessment and BYOD User Link
leaf
Configure and verify network access device functionality such as 802.1X, MAB, WebAuth User Link
leaf
Describe network access with CoA User Link
hide
Describe the benefits of device compliance and application control User Link
leaf
AAA benefits of device compliance and application control6 User Link
leaf
Explain exfiltration techniques (DNS tunneling, HTTPS, email, FTP/SSH/SCP/SFTP, ICMP, Messenger, IRC, NTP) User Link
leaf
Describe the benefits of network telemetry User Link
hide
Describe the components, capabilities, and benefits of these security products and solutions User Link
leaf
Cisco Stealthwatch User Link
leaf
Cisco Stealthwatch Cloud User Link
leaf
pxGrid User Link
leaf
Umbrella Investigate User Link
leaf
Cisco Cognitive Threat Analytics User Link
leaf
Cisco Encrypted Traffic Analytics User Link
leaf
Cisco AnyConnect Network Visibility Module (NVM) User Link
hide
Security Concepts (25%)
hide
Explain common threats against on-premises and cloud environments User Link
leaf
On-premises: viruses, trojans, DoS/DDoS attacks, phishing, rootkits, man-in-the-middle attacks, SQL injection, cross-site scripting, malware
leaf
Cloud: data breaches, insecure APIs, DoS/DDoS, compromised credentials
leaf
Compare common security vulnerabilities such as software bugs, weak and/or hardcoded passwords, SQL injection, missing encryption, buffer overflow, path traversal, cross-site scripting/forgery User Link
leaf
Describe functions of the cryptography components such as hashing, encryption, PKI, SSL, IPsec, NAT-T IPv4 for IPsec, pre-shared key and certificate based authorization User Link
leaf
Compare site-to-site VPN and remote access VPN deployment types such as sVTI, IPsec, Cryptomap, DMVPN, FLEXVPN including high availability considerations, and AnyConnect User Link
leaf
Describe security intelligence authoring, sharing, and consumption User Link
leaf
Explain the role of the endpoint in protecting humans from phishing and social engineering attacks User Link
leaf
Explain North Bound and South Bound APIs in the SDN architecture User Link
leaf
Explain DNAC APIs for network provisioning, optimization, monitoring, and troubleshooting User Link
leaf
Interpret basic Python scripts used to call Cisco Security appliances APIs User Link
hide
Securing the Cloud (15%)
hide
Identify security solutions for cloud environments User Link
leaf
Public, private, hybrid, and community clouds User Link
leaf
Cloud service models: SaaS, PaaS, IaaS (NIST 800-145) User Link
leaf
Cloud-delivered security solutions such as firewall, management, proxy, security intelligence, and CASB User Link
leaf
Describe the concept of DevSecOps (CI/CD pipeline, container orchestration, and security User Link
leaf
Implement application and data security in cloud environments User Link
leaf
Identify security capabilities, deployment models, and policy management to secure the cloud User Link
leaf
Configure cloud logging and monitoring methodologies User Link
leaf
Describe application and workload security concepts User Link
hide
Endpoint Protection and Detection (10%)
leaf
Compare Endpoint Protection Platforms (EPP) and Endpoint Detection & Response (EDR) solutions User Link
leaf
Explain antimalware, retrospective security, Indication of Compromise (IOC), antivirus, dynamic file analysis, and endpoint-sourced telemetry User Link
leaf
Configure and verify outbreak control and quarantines to limit infection User Link
leaf
Describe justifications for endpoint-based security User Link
leaf
Describe the value of endpoint device management and asset inventory such as MDM User Link
leaf
Describe the uses and importance of a multifactor authentication (MFA) strategy User Link
leaf
Describe endpoint posture assessment solutions to ensure endpoint security User Link
leaf
Explain the importance of an endpoint patching strategy User Link