As Cisco has launched new Cisco certification programs since February 24, 2020, you may wonder how to prepare the new CCIE exam. To make candidates know more about the CCIE Security exam, Cisco held the 4th webinar on June 10, 2020. If you missed it, don’t be upset! This blog will introduce you to CCIE experts’ excellent points of this webinar to help you prepare for the CCIE security exam.
Generally, this webinar mainly introduced the knowledge points of the CCIE Security exam covering lab exam format, delivery, domains, preparation, etc. SPOTO has selected the most useful content for you. Let’s move on!
I. Introduction to the new CCIE Security Program
The CCIE Security exam’s first date to test was on April 27. The latest CCIE Security v6.0 program replaced CCIE Security v5.0.
- CCIE Security written exam was retired.
- The qualification exam is CCNP SPCOR (350-501)
II. CCIE Security Lab Exam Format, Delivery, Scoring & Grading
1. Lab Exam Format
CCIE Security Lab exam is an 8-hour practical exam that requires candidates to plan, design, deploy, operate, and optimize network security solutions to protect the network.
It consists of a 3-hour design section and a 5-hour deploy/operate/optimize section.
2. Lab Exam Delivery
Deploy-Operate-Optimize Module
VMs running in ESXi Environment:
- Cisco Routers
- Cisco Switches
- Cisco ASAs
- Cisco Security Appliances
- Windows
- Linux
Physical Devices:
- Cisco Switches
- Cisco ASAs
- AP
- IP Phone
Types of Access:
- Console
- SSH
- HTTPS
- VNC
3.Lab Scoring & Lab Grading
Lab Scoring:
To pass Lab= Design Min pass Score (Max 37)+DOO min Pass Score (Max 63), +Exam Cut Score
- Modules cut scores not disclosed
- Modules cut scores based on the difficulty level.
Lab Grading:
- Graded by script
- SCRIPT accommodates acceptable alternate solutions.
- Script results manually cross-checked.
III. Blueprint of CCIE Security Lab Exam
There are five domains of the CCIE Security Lab exam. The details are listed below:
Domain 1: Perimeter Security and Intrusion Prevention (20%)
Focused platforms:
- Cisco ASA
- Cisco FTD
- Cisco NGIPS
- Cisco FMC
Probable lab components:
- Access layer security using firewalls and translations.
- Core-Distribution layers high availability and high throughput using failovers and clustering.
- Campus layer security using traffic inspection.
Domain 2: Secure Connectivity and Segmentation (20%)
Focused platforms:
- Cisco Routers
- Cisco Switches
- Cisco ASAs
- Cisco ISE
Probable lab components:
- Access layer security using VPN and Cisco TrustSec.
- Core-Distribution layer security using Cisco TrustSec.
- Campus layer security using Cisco TrustSec.
Domain 3: Infrastructure Security (15%)
Focused platforms:
- Cisco Routers
- Cisco Switches
- Cisco ASAs
- Cisco ISE
- Cisco WLC
- Cisco AP
- Cisco DNAc
Probable lab components:
- Policy orchestration across various network layers.
- Data, control, and management planes protection across multiple network layers.
- Wireless network security implementation.
- Cisco SAFE model implementation.
Domain 4: Identity Management, Information Exchange, and Access Control (25%)
Focused platforms:
- Cisco Switches
- Cisco AnyConnect
- Cisco ISE
Probable lab components:
- Device onboarding via switch port authentication.
- Remote VPN onboarding via AnyConnect.
- Posture assessment and device profiling.
- ISE integration with external database and other security appliances.
Domain 5: Advanced Threat Protection and Content Security (20%)
Focused platforms:
- NGIPS
- FTD
- FMC
- FireAmp Cloud
- WSA
- ESA
- StealthWatch
Probable lab components:
- AMP for network and endpoints.
- Data protection.
- Data analytics.
- Rapid threat containment.
Preparations for CCIE Security Lab Exam
1.Cisco provides some resources for your exam preparation in terms of exam topics, learning materials, and required hardware-software devices.
- Blueprint https://learningnetwork.cisco.com/s/ccie-security-exam-topics
- Learning matrix https://learningnetwork.cisco.com/s/ccie-security?tabset-c7bf5=a72fb
- Hardware-Software device list https://learningnetwork.cisco.com/s/article/ccie-security-v6-0-equipment-and-software-list
2. Basic rules to practice labs:
- Blueprint task-based
- Virtualized
- Modular
3. Tips for the lab exam
Cisco also gives some useful tips for you on the exam day.
Thus, you have grasped the core points of the 4th Cisco webinar about the CCIE Security lab exam.
What valuable products will SPOTO offer to you to help you pass the lab exam smoothly and efficiently?
Get started to move on!
SPOTO’s CCIE Security Lab Training Course
SPOTO will launch the CCIE security lab training course soon. Let’s have a look at the syllabus first! This course is verified by our professional CCIE experts and will make you prepared the lab exam entirely with confidence.
Besides, SPOTO will introduce RACK RENTAL service in June.
The rack equipment is used in the real LAB exam, which means that you don’t need to buy the expensive rack by yourself. You can rent SPOTO’s rack to practice and grasp these technologies before the exam.
For more details about the CCIE Security Lab Training Course and Rack Rental Service, you can feel free to contact us!
More about Lab Exam
SPOTO now offers CCIE LAB Service covering many CCIE Tracks (Enterprise Infrastructure, Security, Data Center, and Service Provider, wireless, Collaboration)
- We provide three months of service and rack practice.
- We count lab service period follow your time (when we send lab materials)
- For example, if you plan to attempt the exam on October 30, we will provide pass materials on August 1
Our lab service package includes
- Workbook and solution, all materials are the same as the real exam.
- We provide racks to practice, which include IOS, init configuration and others.
- If you encounter any problems or questions during the training, our tutors will assist you by TeamView.
- We provide tutorial videos that explain workbook and solution, which also show you how to config one section by one section.
In conclusion
We hope that the info above mentioned about the CCIE security lab exam will benefit you a lot. What’s more, Cisco will hold another four webinars about the scope, overview, and preparation of CCIE certification, including CCIE, Data Center, Collaboration, Service Provider and Enterprise Wireless in the future.
If you want to be well prepared for the CCIE lab exams and catch up with the latest exam info, please follow SPOTO to enhance your IT career! Join us!
Related reading:
Newest Update!-Spotlights of 2020 Cisco Live 2nd Webinar on CCIE Lab Environment and Delivery Engine
All You Need to Know–Key Points of Cisco Live 3rd Webinar on CCIE EI Exam
Comments