Course Globe - Cisco Training for the English Speaking World

Home Locations Cisco Training Courses Cisco Security Implementing Cisco Security Monitoring, Analysis & Response System (MARS)

Cisco Course Categories

Free Newsletter Sign Up

Course Details

Implementing Cisco Security Monitoring, Analysis & Response System (MARS )

Who should attend

Customer

Channel Partner

Reseller

Employee

Course certification

This course is part of the following Certifications:

Cisco Certified Security Professional (CCSP)

Prerequisites

Fundamental knowledge of implementing network security / CCSP or Security CQS and working knowledge of routing and switching / CCNA

Course Objectives

After completing this course the delegate will be able to:

Describe the MARS solution, features and functions in context to the issues of security incidents and security information in an enterprise network.

Cover the basic physical installation process.

Add Cisco security and network devices into MARS appliance.

Add Non-Cisco security and network devices into MARS appliance.

Configure security devices to generate interesting events that constitute an attack scenario and have MARS collect the interesting events for incident investigation.

Discuss attack mitigation and false positive confirmation in context to MARS appliance.

Configure appliance to perform Incident Investigation and attack mitigation.
Explain how to create, view and save a long-duration query and reports on the MARS appliance.

Configure the MARS appliance to send an alert.

Describe and configure rules that detect interesting patterns of network activity.

Use management features in the MARS appliance to assign event, addressing, service, and user information.

Configure hardware maintenance chores like viewing audit trail, data archiving, hot swapping hard drives, upgrading software on MARS appliance.

Provide overview of MARS Global Controller.

Provide overview of Log Parser Templates.

Course Contents

Cisco Systems offers the Mitigation and Response System (MARS) family of high performance, scalable appliances for threat management, monitoring and mitigation, enabling customers to make more effective use of network and security devices by combining network intelligence, context correlation, vector analysis, anomaly detection, hotspot identification and automated mitigation capabilities. CS MARS solutions empower customers to readily and accurately identify, manage and eliminate network attacks and maintain network compliance.

MARS Introduction and Task Flow / Provide overview of MARS technology and STM Task Flow Overview.

Lab 1-1 Accessing MARS 20 appliance.

Configuring MARS,Configure administration tasks in the MARS system using User Interface.

Lab 2-1 Adding Cisco Reporting Devices into MARS

Lab 2-2 Adding non-Cisco Reporting Devices into MARS

MARS Incident Investigation Configure MARS for incident investigation, create query and send alerts.

Lab 3-1 Generating Summary Reports

Lab 3-2 Configure appliance to perform Incident Investigation and attack mitigation.

Lab 3-3 Creating Queries and Reports.

MARS Rules and Management Use MARS User Interface to configure rules, management and system maintenance features.

Lab 4-1 Distributed Threat Mitigation Lab

Lab 4-2 Create a Custom Parser

MARS Global Controller, Provide overview of MARS Global Controller

Price (excl. VAT): £ 1645 GBP

Duration: 4 days

Dates: Weekly

Online Training: Available

LOCATIONS

Locations : Cities as shown below

United States

Check Price

Anchorage, AK
Little Rock, AR
Phoenix, AZ
Tempe, AZ
Tucson, AZ
Anaheim, CA
Burbank, CA
Glendale, CA
Irvine, CA
Los Angeles, CA
Mountain View, CA
Redwood City, CA
Sacramento, CA
San Diego, CA
San Francisco, CA
San Jose, CA
Santa Clara, CA
Denver, CO
Hartford, CT
Washington, DC
Ft. Lauderdale, FL
Jacksonville, FL
Miami, FL
Orlando, FL
Tampa, FL
Atlanta, GA
Honolulu, HI
Boise, ID
Chicago, IL
Chicago (Schaumburg)
Oakbrook, IL
Indianapolis, IN
Kankas City, KS
Louisville, KY
New Orleans, LA
Boston, MA
Boxborough, MA
Westford, MA
Baltimore, MD
Columbia, MD
Elkridge, MD
Rockville, MD
Detroit, MI
Minneapolis, MN
St. Louis, MO
Charlotte, NC
Raleigh / Durham, NC
Omaha, NE
Edison, NJ
Montvale, NJ
Edison / Morristown, NJ
Albuquerque, NM
Las Vegas, NV
Reno, NV
Albany, NY
New York, NY
Rochester, NY
Cincinnati, OH
Cleveland, OH
Columbus, OH
Oklahoma City, OK
Portland, OR
Philadelphia, PA
Pittsburgh, PA
Nashville, TN
Austin, TX
Dallas, TX
Houston, TX
Richardson, TX
San Antonio, TX
Salt Lake City, UT
Dulles, VA
Herndon / Reston, VA
Norfolk, VA
Richmond, VA
Tysons Corner, VA
Seattle, WA
Milwaukee, WI

Canada

Check Price

Calgary, AB
Edmonton, AB
Vancouver, BC
Winnipeg, MB
St. John's, NL
Halifax, NS
Mississauga , ON
Ottawa, PM
Toronto, ON
Montreal, QC
Quebec City, QC
Regina, SK

United Kingdom

Check Price

London
Wakefield
Coventry
Wokingham
Birmingham
Manchester
Liverpool
Leeds
Newcastle
Bristol
Cardiff
Reading
Milton Keynes
Exeter
Glasgow
Edinburgh
Aberdeen
Belfast
Online

Ireland

Check Price

Dublin
Shannon
Cork
Galway
Limerick
Sligo

South Africa

Check Price

Johannesburg
Cape Town
Durban
Germiston
Pretoria
Port Elizabeth
Bloemfontein

Singapore

Check Price

Singapore

New Zealand

Check Price

Auckland
Wellington
Christchurch
Hamilton
Tauranga
Dunedin

HongKong

Check Price

Hong Kong

Australia

Check Price

Canberra
Melbourne
Adelaide
Perth
Brisbane
Darwin
Cairns
Newcastle
Alice Springs
Hobart
Sydney

Joomla SEF URLs by Artio

Course Globe
ProNet Expert Limited

8 Albany Street
Edinburgh, EH1 3QB
United Kingdom

Phone: +44 (0) 20 3287 - 0044
Email: info@courseglobe.com

Pentesting Training

Cisco, CCNA, CCDA, CCNP, CCDP, CCSP, CCIP, CCVP. CCIE, CCDE, Cisco IOS, Cisco Systems, the Cisco Systems logo,and Networking Academy are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned on this Web site are the property of their respective owners. courseglobe.com is not responsible for the content of external links and cannot assure that all of them work. Copyright 2009 courseglobe.com