CNT-270: CCNA Security

School
Business, Entrepreneurship, and Professional Development
Division
Computer Technology
Department
CISCO Academy
Academic Level
Undergraduate
Course Subject
Computer Networking - CISCO
Course Number
270
Course Title
CCNA Security
Credit Hours
4.00
Instructor Contact Hours Per Semester
62.00 (for 15-week classes)
Student Contact Hours Per Semester
62.00 (for 15-week classes)
Grading Method
A-E
Pre-requisites
CNT-220 with a C grade or better or CCNA Certification or Instructor Permission
Catalog Course Description

For students with Cisco Certified Entry Networking Technician (CCENT) training and/or equivalent experience interested in the technologies Cisco uses in its security infrastructure. Covers securing Cisco routers and switches including their installation, troubleshooting, and monitoring of network devices to maintain integrity, confidentiality, and availability of data and devices. Also includes recognizing network threats and vulnerabilities, and mitigating security threats. Laboratory activities. NOTE: Course topics help students prepare for the CCNA Security certification exam, but the exam is not included in this course. Industry certification exams are administered by an independent testing agency.

Goals, Topics, and Objectives

Core Course Topics
  1. Modern Network Security Threats
  2. How to Secure Network Devices
  3. Authentication, Authorization, and Accounting (AAA)
  4. How to Implement Firewall Technologies
  5. How to Implement Intrusion Prevention
  6. How to Secure the Local Area Network (LAN)
  7. Cryptographic Systems
  8. How to Implement Virtual Private Networks (VPNs)
  9. How to Manage a Secure Network
Core Course Learning Objectives (Separated)
  1. Describe the security threats facing modern network infrastructures.
  2. Describe network security policies.
  3. Describe how to mitigate network attacks.
  4. Secure the physical installation of and the administrative access to Cisco routers.
  5. Secure Cisco router IOS® software and configuration files.
  6. Explain the function and operation of the authentication, authorization, and accounting (AAA) protocol.
  7. Configure AAA.
  8. Describe various types of access control lists (ACLs).
  9. Design and configure ACLs to mitigate threats to Cisco routers.
  10. Describe the major types of firewalls.
  11. Configure and verify a firewall using the Cisco router IOS® software.
  12. Describe the intrusion detection system (IDS) and intrusion prevention system (IPS) technology embedded in Cisco host- and network-based IDS and IPS solutions.
  13. Configure and verify Cisco router IOS® software IPS.
  14. Describe various LAN attacks, mitigation techniques, and endpoint security mechanisms.
  15. Plan and implement mechanisms to protect against various Layer 2 attacks.
  16. Explain the fundamentals of cryptography, and how it is used to ensure authentication, data integrity, and data confidentiality.
  17. Describe and configure various types of virtual private networks (VPNs).
  18. Implement security features on a Cisco router using device management software.
  19. Create a basic security policy.

Assessment and Requirements

Assessment of Academic Achievement

Students will be assessed based on lab work, standardized multiple choice online chapter assessments, a midterm, a final exam partly developed by Cisco Systems, and a skills-based practical assessment.

Approval Dates

Effective Term
Fall 2020
ILT Approval Date
AALC Approval Date
Curriculum Committee Approval Date
Review Semester
Fall 2020