Information Technology

Cisco® Implementing Automation for Cisco® Security Solutions v1.0 (SAUI)

This course demonstrates the tools and the benefits of leveraging programmability and automation in Cisco Security Solutions, including Cisco Firepower Management Center, Cisco Firepower Threat Defense, Cisco ISE, Cisco pxGrid, Cisco Stealthwatch Enterprise, Cisco Stealthwatch Cloud, Cisco Umbrella, Cisco AMP, Cisco Threat grid, and Cisco Security Management Appliances. Students will learn how to use the API for each Cisco security solution and specific applications of when the API benefits IT security content.

3 Days 24 Hrs 11 Lessons

Cisco® Implementing Automation for Cisco® Security Solutions v1.0 (SAUI)

Course Objectives

Upon completing this course, students will be able to meet these objectives:

Understand the overall architecture of the Cisco security solutions and how APIs help enable security
Understand how to use Cisco Firepower APIs
Understand how pxGrid APIs function and their benefits
Understand what capabilities the Cisco Stealthwatch APIs offer and construct API requests to them for configuration changes and auditing purposes
Understand the features and benefits of using Cisco Stealthwatch Cloud APIs
Learn how to use the Cisco Umbrella Investigate API
Understand the Functionality provided by Cisco AMP and its APIs
Learn how to use Cisco Threat Grid APIs to analyze, search, and dispose of threats

Agenda

Role of APIs in Cisco Security Solutions
Cisco Firepower, Cisco ISE, Cisco pxGrid, and Cisco Stealthwatch APIs
Use cases and security workflow

Cisco AMP overview
Cisco AMP endpoint API
Cisco AMP use cases and workflows
Discovery 1: Query Cisco AMP endpoint APIs for verifying compliance

Introducing Cisco Identity services engine
Cisco ISE use cases
Cisco ISE APIs

Cisco pxGrid overview
WebSockets and STOMP messaging protocol
Discovery 2: Use the REST API and Cisco pxGrid with Cisco Identity services engine

Cisco threat grid overview
Cisco threat grid API
Cisco threat grid use cases and workflows
Discovery 3: Construct a Python script using the Cisco threat grid API

Cisco Umbrella investigate API overview
Cisco Umbrella investigate API: Details
Discovery 4: Query security data with the Cisco Umbrella investigate API

Cisco Umbrella reporting and enforcement APIs: Overview
Cisco Umbrella reporting and enforcement APIs: Deep dive
Discovery 5: Generate reports using the Cisco Umbrella reporting API

Review basic constructs of Firewall policy management
Design policies for automation
Cisco FMC APIs in depth
Discovery 6: Explore the Cisco Firepower management center API
Cisco FTD automation with ansible
Discovery 7: Use ansible to automate Cisco Firepower threat defense configuration
Cisco FDM API in depth
Discovery 8: Automate Firewall policies using the Cisco Firepower device manager API

Cisco Stealthwatch overview
Cisco Stealthwatch APIs: Details
Discovery 9: Automate alarm policies and create reports using the Cisco Stealthwatch APIs

Cisco Stealthwatch Cloud overview
Cisco Stealthwatch Cloud APIs: Deep dive
Discovery 10: Construct a report using Cisco stealthwatch Cloud APIs

Cisco SMA APIs overview
Cisco SMA API
Discovery 11: Construct reports using Cisco SMA APIs

FREE

Interested in course?

Buy Course

Course Type: Instructor Led

course

Cisco® Implementing Automation for Cisco® Security Solutions v1.0 (SAUI)

Course Objectives

Agenda

Lesson 1: Introducing Cisco Security APIs

Lesson 2: Consuming Cisco Advanced Malware Protection APIs

Lesson 3: Using Cisco ISE

Lesson 4: Using Cisco pxGrid APIs

Lesson 5: Using Cisco Threat Grid APIs

Lesson 6: Investigating Cisco Umbrella Security Data Programmatically

Lesson 7: Exploring Cisco Umbrella Reporting and Enforcement APIs

Lesson 8: Automating Security with Cisco Firepower APIs

Lesson 9: Operationalizing Cisco Stealthwatch and Its API Capabilities

Lesson 10: Using Cisco Stealthwatch Cloud APIs

Lesson 11: Describing Cisco Security Management Appliance APIs

Tags

FREE