Implementing and Operating Cisco® Security Core Technologies (SCOR)

Price
Net €
VAT €

Price
Price on Request

Duration
5 days

For companies and job seekers:
this course is 100% fundable!

Location

Course Language
English

Training Solutions
Online Live

Request a consultation Add to favorites Print as PDF

Current security requirements are growing rapidly, and modern networks need robust strategies to withstand dynamic cyber threats. This training provides a thorough overview of AI-powered security architectures for hybrid, scalable environments—practical, modern, and technically sound.

Key topics

Zero-trust approaches and adaptive security.
Automated network defense with AI.
Threat analysis, monitoring, and incident response.
Securing cloud, edge, and on-premises environments.
Cryptography, access control, and security policies.

Prerequisite
A basic understanding of network structures and security fundamentals is recommended.

Target audience
Specialists in network operations, IT security, system administration, and technical personnel who want to modernize security processes.

Strong, AI-driven security knowledge lays the foundation for more resilient IT infrastructures and supports a future-oriented approach in complex digital environments.

Print as PDF

Course content

Data security concepts

Safety aspects
Risks and protective measures
Risk management
Assessment of security vulnerabilities
CVSS analysis

Security vulnerabilities in TCP/IP

Old TCP/IP security vulnerabilities
IP error sources
Deficiencies in ICMP
TCP security issues
UDP weaknesses
Attack possibilities and paths
Reconnaissance attacks
Attacks on access rights
Man-in-the-middle attacks
DoS and DDoS attacks
Reflection and amplification attacks
Spoofing techniques
Attacks on DHCP

Frequent network attacks

Password theft
DNS attacks
DNS tunneling techniques
Attacks via websites
HTTP 302 obfuscation
Command injections
SQL injection
Cross-site scripting & request forgery
Email attacks

Attacks on endpoints

Buffer overflow
Malware
Deception attacks
Gaining control
Social engineering attacks
Web attacks
Exploit and rootkit tools
Escalation of privileges
After the exploit
Angler toolkit

Security solutions for networks

Multi-layered security strategy
Defense across the entire spectrum
Network segmentation and virtualization – overview
Stateful firewalls – basic principles
Security data at a glance
Standardization of threat data
Network protection against malware – overview
Overview of intrusion prevention systems (IPS)
Next-generation firewalls – overview
Email protection against malicious code – overview
Web security solutions – overview
Threat analysis systems – Overview
DNS security – Overview
Authentication, Authorization, Accounting – Summary
Identity and access management – overview
VPN Technologies – Overview
Security Device Form Factors – Overview

Cisco ASA Firewall Setup

Cisco ASA Deployment Options
Security Levels of ASA Interfaces
ASA Objects and Groups
Network Address Translation
ACLs for ASA Interfaces
Global ACLs on Cisco ASA
Advanced access controls for ASA
High availability concept of ASA

Install Cisco Firepower NGFW

Using Cisco Firepower NGFW
Processing rules and packets
Object management
Network Address Translation (NAT)
Prefilter settings
Access control policies
Security data
Detection policies
IPS protection policies
Malware and file management

Protection of email content

Cisco Email Security
Simple Mail Transfer Protocol (SMTP)
Email Traffic
Public/Private Listeners
Host Access Overview
Recipient Access
Email policy
Spam and graymail protection
Anti-virus/anti-malware
Outbreak Protection
Content inspection
Data loss prevention
Email encryption

Secure web content

Cisco WSA Overview
Deployment Types
User Authentication on the Network
Decryption of HTTPS Traffic
Access Controls and Profile Identification
Usage policy configuration
Protection against malware

Cisco Umbrella Integration

Cisco Umbrella structure
Installation of Cisco Umbrella
Cisco Umbrella for mobile working
Administration of Cisco Umbrella
Cisco Umbrella Investigate: Overview and concepts

VPN technologies and encryption

Importance of VPN
Different VPN models
Encryption and secure communication
Key security in cryptography
Public key infrastructure

Cisco Secure VPN connections

Site-to-site VPN architectures
Overview of IPsec VPN
Static crypto map configurations
Virtual tunnel interfaces with IPsec
Dynamic multipoint VPNs
Cisco IOS FlexVPN technology

Configuring VTI-IPsec on Cisco

Cisco IOS VTIs
Static point-to-point configuration
IPsec VPN with IKEv2
VPN setup for secure communication

Point-to-point VPNs with Cisco ASA and Firepower

Site-to-site VPNs with Cisco ASA
Configuration on Cisco ASA
Setup on Firepower NGFW

Cisco Remote VPN

VPN access
VPN techniques
SSL basics

SSL VPN setup on Cisco firewalls

Remote access: Basics
Profiles for connections
Policies for user groups
VPN setup on Cisco ASA
VPN with Cisco Firepower NGFW

Cisco Network Protection

Securing network access
Components of the Cisco security solution
AAA: Control and monitor access
Identity management with ISE
Security through TrustSec policies

802.1X access control

802.1X & EAP
EAP procedures
Role of RADIUS in 802.1X
RADIUS and authorization adjustment

802.1X authentication

Cisco Catalyst® Switch 802.1X Settings
Cisco Wireless LAN Controller (WLC) 802.1X Setup
802.1X Settings in Cisco ISE
Supplicant 802.1X Setup
Cisco Web Authentication

Endpoint security methods

Personal firewall for the host
Antivirus on the host
Intrusion prevention system for the host
Application list with whitelists and blacklists
Malware protection directly on the host
Sandbox technology
File integrity verification

AMP for end devices

Cisco AMP Architecture for Endpoints
Cisco AMP Endpoint Engines
Cisco AMP Retroactive Security Features
Device and file history in Cisco AMP
Cisco AMP for Endpoints Management

Security for networks

Determination of device levels in the network
Monitoring control safety
Protection of the administration level
Network monitoring and data
Security strategies for the Layer 2 data level
Protection mechanisms for the Layer 3 data plane

Protection at the control level

ACLs for network infrastructure
Regulate control layer
Securing the control layer
Protecting the routing protocol

Security checks Layer 2

Protection against VLAN-based attacks
Mitigation of STP attacks
Securing ports
Use of private VLANs
Enabling DHCP snooping
Performing ARP inspection
Implement storm control
Using MACsec encryption

Security at Layer 3

Antispoofing mechanisms
Return path verification for unicast
Source IP verification

Administrative security

Cisco Management Access Protection
SNMPv3
Protected access to Cisco devices
AAA for administrative access

Traffic data analysis

NTP (Network Time Protocol)
Recording and forwarding of device and network logs
Analysis of data traffic via NetFlow

Cisco Stealthwatch Enterprise Setup

Cisco Stealthwatch products at a glance
Essential components of Stealthwatch Enterprise
Flow stitching and duplicate reduction
Additional components of Stealthwatch Enterprise
Stealthwatch Enterprise and ISE integration
Stealthwatch with AI-powered analytics
Analysis of encrypted traffic
Groups of hosts
Security alerts and events
Policies for hosts, roles, and standards

Threats in the cloud

Advances in cloud computing
Models for cloud services
Security roles in the cloud
Cloud deployment types
Threats to cloud security
Managing updates in the cloud
Cloud security analysis

Cloud security

Cisco Security Approach
Cloud infrastructure protection
Application and Workload Protection
API and cloud management security
Virtualized Network Technologies
Cisco NFV examples
Threat monitoring in the cloud
Cloud access security broker
Cisco CloudLock®
OAuth and attacks

Stealthwatch Cloud deployment

Public cloud monitoring
Private network monitoring
Stealthwatch Cloud operation

Software-controlled network

SDN principles
Network control through programming
Cisco technologies and interfaces
Simple Python automations

Your training will be 100% funded

Our funding schemes are available exclusively to participants who live or work in Germany. Funding is not available outside Germany.

For career starters, job seekers, career changers, startups, experienced professionals, those looking to advance their careers, specialists, etc.

The QCG program for everyone in the company

Further information

The education voucher for all job seekers

Further information

Frequently asked questions

What is taught in Cisco SCOR training?

SCOR training provides in-depth knowledge of network security, threat detection, VPNs, firewalls, and security automation with Cisco technologies.

Who is Cisco SCOR suitable for?

Ideal for IT professionals who want to secure networks, automate security processes, and qualify for CCNP Security certification.

What prior knowledge is required for SCOR?

Basic knowledge of networks, TCP/IP, and initial experience with Cisco systems is recommended in order to effectively apply the content.

What career opportunities does SCOR offer?

SCOR certification strengthens your position in the field of cybersecurity, opens up new job opportunities, and is considered a key qualification for network and security professionals.

Is SCOR a prerequisite for CCNP Security certification?

Yes. SCOR is a mandatory module for CCNP Security certification. Additional specializations can be added flexibly.

Which Cisco technologies will be covered?

The tools covered include Cisco Firepower, Cisco Umbrella, Cisco ISE, Cisco Stealthwatch, and security appliances for various deployment scenarios.

Why is SCOR worthwhile in a professional context?

Security expertise is increasingly becoming standard in companies. SCOR imparts up-to-date know-how and offers practical skills with direct added value.

Do you have any further questions? Please contact us.

Select your nearest center: *

0800 258 258 055

website@newhorizons.de

First Name *

Surname *

Telephone Number *

Postcode *

E-Mail *

I would like to receive funding for further training – I am currently: *

Company Name

Your message

I hereby confirm that I have taken note of the privacy notice. *