Firewall Essentials

Cybersecurity Academy Advanced Courses

The planned actions may be carried out in classroom or online format

Firewall Essentials

This course introduces students to general defense strategies for enterprise security network architecture.
Students will learn about the processes used for setting up security, networking, accounts, zones, and security policies of next generation firewalls. Students will also learn about technologies such as App-ID, WildFire, User ID, decryption, and logging procedures used to fortify and supplement the platform approach to enterprise network defense. Finally, students will learn about Secure Access Service Edge (SASE) technologies and services including Zero Trust Operations and Information Technology, SD
WAN Instant-ON device integration, Cloud Access Security Brokers (CASB), Cloud Secure Web Gateway
(CSWG), and Autonomous Digital Experience Management (ADEM).

NIST/NICE Alignment and Work Roles:

Implementation and Operation – Systems Administration (IO-WRL-005)
Protection and Defense – Infrastructure Support (PD-WRL-004)
Implementation and Operation – Systems Security Analysis (IO-WRL-006)

Potential Job Roles:

  • Systems Administrator;
  • Security Architect;
  • Systems Security Analyst;
  • Cyber Defense Analyst.

Course Objectives:

  • Review industry leading firewall platforms, architecture, and defense capability.
  • Demonstrate and apply configuration of firewall interfaces, zones, and virtual routers.
  • Configure and manage virtual routing and filtering on next generation firewalls.
  • Analyze security policy rules to enforce network segmentation.
  • Outline and construct security policies to identify unknown application software.
  • Identify how to configure App-ID to reduce the attack surface.
  • Identify and configure security, file blocking, and DoS protection policies.
  • Configure the firewall to block traffic from malicious domains, and URLs.
  • Describe WildFire deployment options and configure WildFire updates.
  • Identify the main components of User-ID and configure user to group names.
  • Configure SSL/TLS forward proxy and inbound inspection deployment.
  • Monitor threat and traffic information using logs, reports and the firewall ACC.
  • Examine the functionality of Zero Trust, including Zero Trust Users.
  • Explain the features and components of Prisma SD-WAN architecture.
  • Analyze the value proposition for implementing SASE Edge Security.
  • Examine the criteria and processes for securely architecting SASE Networks.
  • Explain how Cloud Access Security Broker services help identify risks.
  • Identify how Next-Gen CASB identifies SaaS/IaaS/web application usage.
  • Analyze how Next-Gen CASB implements Machine-Learning based App-ID.
  • Describe how ADEM observes connections and collects endpoint information.