Integrated Security Technologies and Solutions - Volume II CCIE Professional Development
暫譯: 整合安全技術與解決方案 - 第二卷

Aaron Woland , Vivek Santuka , Jamie Sanbower , Chad Mitchell

Integrated Security Technologies and Solutions - Volume II
  • 出版商: Cisco Press
  • 出版日期: 2019-04-06
  • 售價: $2,860
  • 貴賓價: 9.5$2,717
  • 語言: 英文
  • 頁數: 688
  • 裝訂: Paperback
  • ISBN: 1587147076
  • ISBN-13: 9781587147074
  • 相關分類: 資訊安全

    • 立即出貨(限量) (庫存=1)

買這商品的人也買了...

商品描述

The essential reference for security pros and CCIE Security candidates: identity, context sharing, encryption, secure connectivity and virtualization

 

Integrated Security Technologies and Solutions – Volume II brings together more expert-level instruction in security design, deployment, integration, and support. It will help experienced security and network professionals manage complex solutions, succeed in their day-to-day jobs, and prepare for their CCIE Security written and lab exams.

 

Volume II focuses on the Cisco Identity Services Engine, Context Sharing, TrustSec, Application Programming Interfaces (APIs), Secure Connectivity with VPNs, and the virtualization and automation sections of the CCIE v5 blueprint. Like Volume I, its strong focus on interproduct integration will help you combine formerly disparate systems into seamless, coherent, next-generation security solutions.

 

Part of the Cisco CCIE Professional Development Series from Cisco Press, it is authored by a team of CCIEs who are world-class experts in their Cisco security disciplines, including co-creators of the CCIE Security v5 blueprint. Each chapter starts with relevant theory, presents configuration examples and applications, and concludes with practical troubleshooting.

 

  • Review the essentials of Authentication, Authorization, and Accounting (AAA)

  • Explore the RADIUS and TACACS+ AAA protocols, and administer devices with them

  • Enforce basic network access control with the Cisco Identity Services Engine (ISE)

  • Implement sophisticated ISE profiling, EzConnect, and Passive Identity features

  • Extend network access with BYOD support, MDM integration, Posture Validation, and Guest Services

  • Safely share context with ISE, and implement pxGrid and Rapid Threat Containment

  • Integrate ISE with Cisco FMC, WSA, and other devices

  • Leverage Cisco Security APIs to increase control and flexibility

  • Review Virtual Private Network (VPN) concepts and types

  • Understand and deploy Infrastructure VPNs and Remote Access VPNs

  • Virtualize leading Cisco Security products

  • Make the most of Virtual Security Gateway (VSG), Network Function Virtualization (NFV), and microsegmentation

商品描述(中文翻譯)

安全專業人士和 CCIE Security 候選人的基本參考:身份、上下文共享、加密、安全連接和虛擬化

整合安全技術與解決方案 – 第二卷匯集了更多專家級的安全設計、部署、整合和支援的指導。它將幫助經驗豐富的安全和網路專業人士管理複雜的解決方案,成功應對日常工作,並為 CCIE Security 的書面和實驗考試做好準備。

第二卷專注於 Cisco 身份服務引擎、上下文共享、TrustSec、應用程式介面 (APIs)、透過 VPN 的安全連接,以及 CCIE v5 藍圖中的虛擬化和自動化部分。與第一卷類似,其強調產品間整合的特點將幫助您將以前分散的系統結合成無縫、一致的下一代安全解決方案。

作為 Cisco Press 的 Cisco CCIE 專業發展系列的一部分,本書由一組 CCIE 專家撰寫,他們在 Cisco 安全領域中是世界級的專家,包括 CCIE Security v5 藍圖的共同創作者。每一章都以相關理論開始,展示配置範例和應用,並以實用的故障排除結束。



  • 回顧身份驗證、授權和會計 (AAA) 的基本概念




  • 探索 RADIUS 和 TACACS+ AAA 協議,並使用它們管理設備




  • 使用 Cisco 身份服務引擎 (ISE) 強制執行基本的網路存取控制




  • 實施複雜的 ISE 配置檔、EzConnect 和被動身份功能




  • 透過 BYOD 支援、MDM 整合、姿態驗證和來賓服務擴展網路存取




  • 安全地與 ISE 共享上下文,並實施 pxGrid 和快速威脅控制




  • 將 ISE 與 Cisco FMC、WSA 和其他設備整合




  • 利用 Cisco Security APIs 增加控制和靈活性




  • 回顧虛擬私人網路 (VPN) 的概念和類型




  • 理解並部署基礎設施 VPN 和遠端存取 VPN




  • 虛擬化領先的 Cisco 安全產品




  • 充分利用虛擬安全閘道 (VSG)、網路功能虛擬化 (NFV) 和微分段



作者簡介

Aaron Woland, CCIE® No. 20113, is a principal engineer in Cisco’s Advanced Threat Security group and works with Cisco’s largest customers all over the world. His primary job responsibilities include security design, solution enhancements, standards development, advanced threat solution design, endpoint security, and futures.

 

Aaron joined Cisco in 2005 and is currently a member of numerous security advisory boards and standards body working groups. Prior to joining Cisco, Aaron spent 12 years as a consultant and technical trainer.

 

Aaron’s other publications include Integrated Security Technologies and Solutions - Volume I; both editions of Cisco ISE for BYOD and Secure Unified AccessCisco Next- Generation Security Solutions: All-in-one Cisco ASA FirePOWER ServicesNGIPS and AMPCCNP Security SISAS 300-208 Official Cert Guide; the CCNA Security 210-260 Complete Video Course; and many published white papers and design guides.

 

Aaron is one of only five inaugural members of the Hall of Fame Elite for Distinguished Speakers at Cisco Live, and he is a security columnist for Network World, where he blogs on all things related to security. His other certifications include GHIC, GCFE, GSEC, CEH, MCSE, VCP, CCSP, CCNP, and CCDP, among others.

 

You can follow Aaron on Twitter: @aaronwoland.

 

Vivek Santuka, CCIE® No. 17621, is a consulting systems engineer at Cisco and is a security consultant to some of Cisco’s largest customers. He has over 13 years of experience in security, focusing on identity management and access control. Vivek is a member of multiple technical advisory groups.

 

Vivek holds two CCIE certifications: Security and Routing and Switching. In addition, he holds RHCE and CISSP certifications and is a Distinguished Speaker at Cisco Live.

 

Vivek is also the coauthor of the Cisco Press books AAA Identity Management Security and Integrated Security Technologies and Solutions – Volume I.

 

You can follow Vivek on Twitter: @vsantuka.

 

Jamie Sanbower, CCIE® No. 13637 (Routing and Switching, Security, and Wireless), is a principal systems engineer for Cisco’s Global Security Architecture Team. Jamie has been with Cisco since 2010 and is currently a technical leader and member of numerous advisory and working groups.

 

With over 15 years of technical experience in the networking and security industry, Jamie has developed, designed, implemented, and operated enterprise network and security solutions for a wide variety of large clients. He is coauthor of the Cisco Press book Integrated Security Technologies and Solutions - Volume I.

 

Jamie is a dynamic presenter and is a Cisco Live Distinguished Speaker. Prior to Cisco, Jamie had various roles, including director of a cyber security practice, senior security consultant, and senior network engineer.

 

Chad Mitchell, CCIE® No. 44090, is a technical solutions architect at Cisco supporting the Department of Defense and supporting agencies. In his daily role, he supports the sales teams as a technical resource for all Cisco security products and serves as the Identity Services Engine subject matter expert for Cisco’s US Public Sector team.

 

Chad has been with Cisco since 2013 supporting the DoD and other customers and is a contributing member to the Policy & Access Technical Advisors Group. Prior to joining Cisco, Chad spent 7 years as a deployment engineer and systems administrator implementing Cisco security products for customers.

 

While his primary area of expertise is enterprise network access control with ISE, Chad is well versed on all Cisco security solutions such as ASA firewalls, Firepower NGFW/IPS/IDS, and Stealthwatch, to name a few; he also has first-hand experience deploying these solutions in customer production environments.

作者簡介(中文翻譯)

,CCIE® 編號 20113,是思科(Cisco)高級威脅安全小組的首席工程師,負責與全球最大的客戶合作。他的主要工作職責包括安全設計、解決方案增強、標準開發、高級威脅解決方案設計、端點安全和未來技術。

於2005年加入思科,目前是多個安全諮詢委員會和標準機構工作小組的成員。在加入思科之前,擔任顧問和技術培訓師已有12年。

的其他出版物包括《綜合安全技術與解決方案 - 第一卷》;《思科 ISE 用於 BYOD 和安全統一訪問》的兩個版本;《思科下一代安全解決方案:全方位思科 ASA FirePOWER 服務》,《NGIPS 和 AMP》,《CCNP Security SISAS 300-208 官方認證指南》,《CCNA Security 210-260 完整視頻課程》以及許多已發表的白皮書和設計指南。

是思科大會(Cisco Live)傑出演講者名人堂的五位創始成員之一,並且是《Network World》的安全專欄作家,專注於與安全相關的所有事務。他的其他認證包括 GHIC、GCFE、GSEC、CEH、MCSE、VCP、CCSP、CCNP 和 CCDP 等。

您可以在 Twitter 上關注 :@aaronwoland。

,CCIE® 編號 17621,是思科的顧問系統工程師,並且是一些思科最大客戶的安全顧問。他在安全領域擁有超過13年的經驗,專注於身份管理和訪問控制。 是多個技術諮詢小組的成員。

擁有兩項 CCIE 認證:安全和路由與交換。此外,他還擁有 RHCE 和 CISSP 認證,並且是思科大會的傑出演講者。

也是思科出版社書籍《AAA 身份管理安全》和《綜合安全技術與解決方案 - 第一卷》的共同作者。

您可以在 Twitter 上關注 :@vsantuka。

,CCIE® 編號 13637(路由與交換、安全和無線),是思科全球安全架構團隊的首席系統工程師。 自2010年以來一直在思科工作,目前是技術領導者和多個諮詢及工作小組的成員。

擁有超過15年的網絡和安全行業技術經驗, 為各種大型客戶開發、設計、實施和運營企業網絡和安全解決方案。他是思科出版社書籍《綜合安全技術與解決方案 - 第一卷》的共同作者。

是一位充滿活力的演講者,也是思科大會的傑出演講者。在加入思科之前, 擔任過多個職位,包括網絡安全實踐的主任、高級安全顧問和高級網絡工程師。

,CCIE® 編號 44090,是思科的技術解決方案架構師,支持國防部及其相關機構。在他的日常工作中,他作為所有思科安全產品的技術資源支持銷售團隊,並擔任思科美國公共部門團隊的身份服務引擎(Identity Services Engine)主題專家。

自2013年以來一直在思科工作,支持國防部及其他客戶,並且是政策與訪問技術顧問小組的貢獻成員。在加入思科之前, 擔任了7年的部署工程師和系統管理員,為客戶實施思科安全產品。

雖然他的主要專業領域是使用 ISE 的企業網絡訪問控制,但 對所有思科安全解決方案(如 ASA 防火牆、Firepower NGFW/IPS/IDS 和 Stealthwatch 等)也非常熟悉;他還在客戶生產環境中部署這些解決方案方面擁有第一手經驗。

類似商品

最後瀏覽商品 (2)