Check Point Security Administration & Security Expert Bundle (CCSA/CCSER) – Outline

Detailed Course Outline

Security Administrator

  • Describe the primary components of a Check Point Three-Tier Architecture and explain how they work together in the Check Point environment.
  • Identify the basic workflow to install Security Management Server and Security Gateway for a single-domain solution
  • Create SmartConsole objects that correspond to the organization?s topology for use in policies and rules.
  • Identify the tools available to manage Check Point licenses and contracts, including their purpose and use.
  • Identify features and capabilities that enhance the configuration and management of the Security Policy.
  • Demonstrate an understanding of Application Control & URL Filtering and Autonomous Threat Prevention capabilities and how to configure these solutions to meet an organization?s security requirements.
  • Describe how to analyze and interpret VPN tunnel traffic.
  • Identify how to monitor the health of supported Check Point hardware using the Gaia Portal and the command line.
  • Describe the different methods for backing up Check Point system information and discuss best practices and recommendations for each method.

Security Expert

  • Identify the types of technologies that Check Point supports for automation.
  • Explain the purpose of the Check Management High Availability (HA) deployment.
  • Explain the basic concepts of Clustering and ClusterXL, including protocols, synchronization, and connection stickiness.
  • Explain the purpose of dynamic objects, updatable objects, and network feeds.
  • Describe the Identity Awareness components and configurations.
  • Describe different Check Point Threat Prevention solutions.
  • Articulate how the Intrusion Prevention System is configured.
  • Explain the purpose of Domain-based VPNs
  • Describe situations where externally managed certificate authentication is used.
  • Describe how client security can be provided by Remote Access.
  • Discuss the Mobile Access Software Blade.
  • Define performance tuning solutions and basic configuration workflow.
  • Identify supported upgrade methods and procedures for Security Gateways.