The 350-018 CCIE Security exam is an assessment of expert-level knowledge and skills of professional to explain, implement, configure, maintain and troubleshoot of security products and solutions of Cisco. The professionals must also be proficient with the fundamentals of internetworking and best practices in the industry. The exam covers the products and solutions of Cisco including device hardening, identity services, intrusion prevention, policy management, virtual private networks (VPNs) and firewalls for both IPv6 and IPv4 environments.
Why is this exam required?
The exam is designed to assess the expertise of a network security professional in establishing the network security position through testing, deploying, configuring, maintaining and troubleshooting network security appliances and IOS software of Cisco.An individual passing this exam are considered expert-level professionals in the field of network security and typically take up the job of network security engineers.
The certification to this exam is Cisco Certified Internetwork Expert Security (CCIE Security) that distinguishesprofessionals with a credential that establishes their expertise in implementing, maintaining and supportingthe cisco solutions relating to network security while adhering to the latest technologies and best practices in the industry.
Though there are no official prerequisites for the CCIE Security certification, the professionals are required to pass a written exam first and then also succeed in the related lab exam for getting the certification.
Objectives of the Exam
The 350-018 CCIE Security exam is divided into seven domains that are equally important and critical to be understood. Each domain has different weight age in the exam however it is important to fully cover each subject of every domain. Following are the seven domains with their percentage in the exam:
- Infrastructure, Connectivity, Communications, and Network Security (11%)
This section requires the candidates to have the knowledge about the basics of network infrastructure, network connectivity, network communications and network security. The topics in this section broadly cover all the four aspects of Cisco networks including basics of network addressing, Local Area Network (LAN) Switching, Open Systems Interconnect (OSI) layers; IP multicast and mobile networks; technologies relation to authorization and authentication, wireless, and Virtual Private Networks (VPN); and protocols for routing, tunneling and User Datagram Protocol (UDP) which is part of the Transmission Control Protocol (TCP)/ Internet Protocol (IP) suite.
- Security Protocols (15%)
Knowledge of the security protocols is among the important requirements for the exam. The candidates need to know about the various protocols such as IP security (IP Sec), Datagram Transport Layer Security (DTLS), Remote Authentication Dial-In User Service (RADIUS), Terminal Access Controller Access-Control System Plus (TACACS+), Web Cache Communication Protocol (WCCP), Domain Name System Security Extension (DNSSEC) and many other protocols.
- Application and Infrastructure Security (10%)
The candidates also need to have knowledge of security relating to application and infrastructure. This section requires candidates to have information on various related topics such as Hypertext Transfer Protocol (HTTP), Dynamic Host Configuration Protocol (DHCP), Trivial File Transfer Protocol (TFTP), syslog, PC over IP technology etc. and also on management of the unessential services.
- Threats, Vulnerability Analysis, and Mitigation (10%)
The exam also covers the security threats, analysis of the weaknesses in the security and mitigating the weaknesses to ensure an effective functioning. This domain requires the candidate to have knowledge on the common threats to the networks, software and operating system and Quality of Service (QoS). They also need to know the concepts for preventing any kind of network intrusion, tools to address the security threats, assessment of posture and endpoints, content filtering, and packet filtering and inspection.
- Cisco Security Products, Features, and Management (20%)
This is the most important domain in terms of the coverage in the exam content that requires the candidates to have in-depth knowledge on the security products, features and management of Cisco. The candidates need to have knowledge on Adaptive Security Appliance (ASA), Catalyst 6500 Series ASA Services Modules, Intrusion Prevention Systems (IPS), Identity Services Engine (ISE), Network Admission Control (NAC) Appliance Server, IOS firewalls and NAT, AAA protocols and application etc. The candidates must also know the components and functionality of ScanSafe, Cisco security Appliances for web and email and security management.
- Cisco Security Technologies and Solutions (17%)
This is another important section from exam point of view and requires the candidates to have insights on features of router hardening, NetFlow, VPN solutions, load balancing and failover, wireless security, network segregation, packet and content filtering, and application of QoS for security.
- Security Policies and Procedures, Best Practices, and Standards (8%)
The candidates also need to aware about the best practices, policies, procedures and standards relating to the security aspects.
With attainment of the prestigious CCIE Security certification, the professionals gain a reputation of being distinct experts in the field of network security by the employers. The CCIE certification being recognized internationally as most trusted expert-level certification for network security professionals, will open high-compensation employment opportunities as network security engineer in the most reputed IT companies across the world.