Security Certifications – Cisco
Cisco Systems offers seven networking certification paths covering areas such as routing and switching, storage networking, voice and wireless. Among these paths is a security certifications path which has three levels: Associate, Professional and Expert. All Cisco certifications are specific to their proprietary networks. Many employers that use Cisco products require their network security staff to obtain these certifications and sometimes won’t hire an experienced person who does not have the appropriate certification.
Security Certifications Available
Cisco Certified Network Associate - Security (CCNA – Security) - This Associate level security certification validates a security professional’s knowledge of how to develop a security infrastructure, recognize threats and vulnerabilities to networks and how to mitigate security threats in a Cisco network environment. The Cisco Certified Network Associate certification is a pre-requisite for this certification.
Cisco Certified Security Professional (CCSP) – This is the Professional level security certification which validates advanced knowledge of Cisco network security. It focuses on specific knowledge of Cisco security features including the Intrusion Prevention System(IPS), Cisco Security Agent (CSA) and the Adaptive Security Appliance (ASA), among others. The CCNA-Security certification is a pre-requisite for this certification.
Cisco Certified Internetwork Expert - Security (CCIE – Security) – This Expert level security certification validates a person’s expertise with specific security protocols and components and with IP and IP routing. There are no pre-requisites for this certification although Cisco highly recommends having three to five years experience before attempting the exams.
Preparing for Exams
Certificate candidates can take certificate training at locations that include independent training centers, Cisco authorized training centers, or one of Cisco’s own training centers. Depending on the provider, there are a variety of training options which give students flexibility in determining how to complete their training:
- Standard onsite training
- Training at employer’s location
- Boot-camp training which are intensive multi-day programs
- Virtual classrooms in which an instructor teaches the class to remote students at a set time
- Self-study videos
Cisco provides additional free study aids such as self-assessments, e-learning videos and an online technology library which are all available from their Cisco Learning Center website. These learning aids are not intended to be the only source of training for a certificate.
Training for these certifications can be quite expensive or very reasonable, depending on the training option and the certificate. At the high-end, one training center offers a boot-camp for the CCSP certification that includes 154 hours of instruction over 14 days at a cost of about $8000. At the other end of the spectrum, a self-study CCNA-Security training video can be purchased at a price of about $300.
Exam Content
CCNA - Security – This exam covers the securing of Cisco routers and switches and their associated networks. The skills needed for installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices are also tested. Knowledge of Cisco-specific technologies used in its security infrastructure is included as well.
CCSP – There are three required exams for this certification plus one elective exam:
Required exams
- Securing Networks with Cisco Routers and Switches
- Securing Networks with ASA Foundations
- Implementing Cisco Intrusion Prevention Systems
Elective exams – only one of the three needs to be passed
- Securing Networks with ASA Advanceds
- Implementing Cisco Security Monitoring, Analysis, and Response Systems
- Implementing Cisco NAC Appliances
CCIE Security – There are two parts to this certification; a written exam which must be passed before taking a lab exam. The written exam takes two hours and the lab exam takes eight hours. The lab exam is a timed test of the candidate’s ability to get a secure network running. It also includes four open-ended questions to test a person’s Core Knowledge.
Taking Exams
Exams must all be taken at a Pearson Vue location which are available worldwide. Some of these exam locations also provide Cisco training classes. In the case of boot-camp style training, these locations usually include exam taking at the end of the boot-camp.
Maintaining Certifications
CCNA Security – This certification is valid for three years. In order to recertify, a person must pass a CCNA Concentration exam (wireless, security or voice) or they may pass a Professional level, Expert level written exam or Specialist exam.
CCSP – Valid for three years, this certification can be recertified by passing any professional level exam or expert level written exam. This will automatically extend Associate and Professional level certifications for another three years.
CCIE Security – This certification is only valid for two years. Certificate holders must take a recertification exam to maintain the certification. They can take any Expert level written exam or lab exam.
Who Should get CISCO Certification?
CCNA Security – This certification is appropriate for those looking to move into roles such as Network Security Specialist, Security Administrator and Network Security Support Engineer within a Cisco environment.
CCSP – Candidates for CCSP certification are typically experienced Network Security Specialists, Security Administrators and Network Security Support Engineers. Some employers will require security employees become certified while other candidates obtain certification to support career goals.
CCIE Security – This certification is appropriate for the most senior network security professionals who have responsibility for end-to-end security of networks.
Evaluating Training Options
When evaluating the training options, the following factors should be considered:
- Style of training - For some people it is better to take time off work to attend an intensive boot-camp while for others, attending a virtual class one night a week from home may work best.
- Cost – For those who are paying for the training themselves, choosing a low-cost option, even if not the ideal learning environment, may be the only realistic option.
- Pass Exam Guarantee – To avoid having to pay for training again if the test is not passed the first time, many opt for a vendor who will provide re-training for free if the exam is not passed.
About Cisco Systems
Cisco Systems is a public, multi-national corporation that sells complete network systems and network management tools to organizations worldwide. It was founded in 1984 by a group of Stanford computer scientists and became a publicly traded company in 1990.
Online Course Finder
Find the path to your
education in 3 easy steps.