Description: This exam consists of 50 random questions with a 60 minute time limit. Each student is guaranteed 2 attempts within the 60 day subscription period to pass the exam. After successfully passing the exam, certificates are available within 48 hours of achieving a score of 70% or better. To print your certificate, go to "My Courses" and click the "certificate" link below the course title.
The proficiencies assessed in this certification program are as follows: IDS/IPS & RNA Technology:
Understand what is meant by the term "Correlation"
Know basic security principals and attack techniques
Understand the various IDS/IPS evasion techniques
Be familiar with the basics of TCP/IP network protocols
Understand Impact and what data is required to calculate it
Be familiar with the Sourcefire Intrusion Sensor, Sourcefire RNA and Sourcefire Defense Center architectural components
System Settings, Policy & Health Monitoring:
Understand the functionality of the Access List configuration
Know the effect certain settings may have on the performance of the Defense Center
In general, be familiar with the various Defense Center/Intrusion Sensor/RNA system policy settings
Know the various options for managing time synchronization between Sourcefire 3D System devices
Be able to define what is meant by a System Policy
Understand the various options for database management for the various Sourcefire 3D System components
Know the types of policies available on the Sourcefire 3D System and what each one does
Be familiar with how the various health policy color codes help administrators determine the health state of the installation at-a-glance
Content Provider:
Sourcefire
Technical Requirements: Windows 2000/2003/XP/Vista or MAC OS X 10.5
Supported browsers: IE7 (SP2 or higher) and FireFox 3.0 (or higher)
