Exam description:
This exam tests your knowledge of implementing security automated solutions, including: Programming concepts RESTful APIs Data models Protocols Firewalls Web DNS Cloud and email security ISE
Area : Automation DevNet Security
Status : Active
Exam start on : 24-02-2020 end on :
Duration (minutes): 90
Questions : min None - max None
Score :
Cost :
Language :
Format : Closed Book
Delivery : Testing center - Proctored
Note : None
Exam topics:
1.0 - Network Programmability Foundation - 10%
1.2 - Describe characteristics of API styles (REST and RPC)
1.3 - Describe the challenges encountered and patterns used when consuming APIs synchronously and asynchronously
1.4 - Interpret Python scripts containing data types, functions, classes, conditions, and looping
1.5 - Describe the benefits of Python virtual environments
1.1 - Utilize common version control operations with git (add, clone, push, commit, diff, branching, and merging conflict)
1.6 - Explain the benefits of using network configuration tools such as Ansible and Puppet for automating security platforms
2.0 - Network Security - 35%
2.1 - Describe the event streaming capabilities of Firepower Management Center eStreamer API
2.2 - Describe the capabilities and components of these APIs
2.2.a - Firepower (Firepower Management Center and Firepower Device Management)
2.2.b - ISE
2.2.c - pxGRID
2.2.d - Stealthwatch Enterprise
2.6 - Construct API requests using Stealthwatch API
2.6.a - perform configuration modifications
2.6.b - generate rich reports
2.3 - Implement firewall objects, rules, intrusion policies, and access policies using Firepower Management Center API
2.4 - Implement firewall objects, rules, intrusion policies, and access policies using Firepower Threat Defense API (also known as Firepower Device Manager API)
2.5 - Construct a Python script for pxGrid to retrieve information such as endpoint device type, network policy and security telemetry
3.0 - Advanced Threat & Endpoint Security - 30%
3.1 - Describe the capabilities and components of these APIs
3.1.a - Umbrella Investigate APIs
3.1.b - AMP for endpoints APIs
3.1.c - ThreatGRID API
3.2 - Construct an Umbrella Investigate API request
3.3 - Construct AMP for endpoints API requests for event, computer, and policies
3.4 - Construct ThreatGRID APIs request for search, sample feeds, IoC feeds, and threat disposition
4.0 - Cloud, Web, and Email Security - 25%
4.1 - Describe the capabilities and components of these APIs
4.1.a - Umbrella reporting and enforcement APIs
4.1.b - Stealthwatch cloud APIs
4.1.c - Cisco Security Management Appliance APIs
4.2 - Construct Stealthwatch cloud API request for reporting
4.3 - Construct an Umbrella Reporting and Enforcement API request
4.4 - Construct a report using Cisco Security Management Appliance API request (email and web)