CCIE Security certification is a very popular direction at present. Many students choose this direction. We all want to know as much as possible about the exam in this direction. Today, SPOTO will talk to you about the written exam of CCIE security certification.
How many questions are there in CCIE security written exam?
The exam code of CCIE security certification is (SCOR 350-701) and it is about the implementation and operation of Cisco Security core technology. The current written exam is still version 1.0. It is the same as the written exam of CCNP security certification. Therefore, in terms of difficulty, as long as you master the knowledge points of the exam, it is relatively easy to pass the written exam. Some people ask how many questions there are in the written exam of CCIE security. Generally, there are 100 questions. If you can answer 70 and above questions correctly, you can pass the written exam. Moreover, most of the questions in the exam are multiple-choice questions. Therefore, if you want to take the CCIE certification exam spoto training course you should make up your mind not to give it up halfway. Next, SPOTO will introduce what CCIE security written exam will test.
What does CCIE security written exam test? This written exam tests candidates’ knowledge of implementing and operating core security technologies, including network security, cloud security, content security, endpoint protection and detection, secure network access, visibility and execution.
Security related concepts account for a large proportion, with a quarter of them. Knowledge points mainly explain common threats to local and cloud environments; Common security vulnerabilities, such as software errors, weak passwords and / or hard coded passwords, SQL injection, lack of encryption, buffer overflow, path traversal, cross site scripting / forgery, etc.
The proportion of network security is smaller than that of security in the exam content. It mainly concerns comparing network security solutions that provide intrusion prevention and firewall functions; Describing the components, functions and advantages of NetFlow and Flexible NetFlow records; Configuring and verifying network infrastructure security methods (routers, switches, wireless); Implementing segmentation, access control strategy, AVC, URL filtering and malware protection.
The two modules of cloud protection and content security account for 30%. Cloud protection requires candidates to master and determine the security solution of the cloud environment; Compare the security responsibilities of customers and suppliers of different cloud service models; Realize application and data security in cloud environment; Determine security capabilities, deployment models, and policy management to protect the cloud. Content security is the method of traffic redirection and packet capture. It concerns describing network proxy identity and authentication, including transparent user identification, and comparing the components, functions and advantages of local and cloud based e-mail and Web solutions (ESA, CES, WSA).
The remaining 25% of module contents are about endpoint protection and detection, secure network access, visibility and execution. Endpoint protection and detection is to learn to compare Endpoint Protection Platform (EPP) and endpoint detection and response (EDR) solutions; Describe the reasons for endpoint based security; Describe endpoint state assessment solutions to ensure endpoint security. Secure network access, visibility and execution describe the concepts of identity management and secure network access, such as visitor service, analysis, status evaluation and BYOD, configure and verify the functions of network access devices, such as 802.1X, MAB and WebAuth, use CoA to describe network access and so on.
In fact, you don’t have to figure out the number of the CCIE Security written exam questions. The real important thing is to understand and master the knowledge points assessed, and then you will find it easy to pass the certification.