CheckPoint Certified Security Expert (CCSE) (CCSER) R81.X

 

Course Overview

This Advanced three-day course teaches how to build, modify, deploy and troubleshoot the R81.20 Check Point Security Systems on the GAiA operating system. Hands-on lab exercises teach how to debug firewall processes, optimize VPN performance and upgrade Management Servers. The goal is to learn advanced concepts and develop skills necessary to design, deploy, and upgrade Check Point Security environments.

Certifications

This course is part of the following Certifications:

Prerequisites

  • CCSA training/certification
  • Fundamental Unix and Windows knowledge, certificate management experience, system administration and networking

Course Objectives

COURSE OBJECTIVES

  • Identify basic interfaces used to manage the Check Point environment.
  • Identify the types of technologies that Check Point supports for automation.
  • Explain the purpose of the Check Management High Availability (HA) deployment.
  • Identify the workflow followed to deploy a Primary and solution Secondary servers.
  • Explain the basic concepts of Clustering and ClusterXL, including protocols, synchronization, connection stickyness.
  • Identify how to exclude services from synchronizing or delaying synchronization.
  • Explain the policy installation flow.
  • Explain the purpose of dynamic objects, updatable objects, and network feeds.
  • Understand how to manage user access for internal and external users.
  • Describe the Identity Awareness components and configurations.
  • Describe different Check Point Threat Prevention solutions.
  • Articulate how the Intrusion Prevention System is configured.
  • Obtain knowledge about Check Point's IoT Protect.
  • Explain the purpose of Domain-based VPNs.
  • Describe situations where externally managed certificate authentication is used.
  • Describe how client security can be provided by Remote Access.
  • Discuss the Mobile Access Software Blade.
  • Explain how to determine if the configuration is compliant with the best practices.
  • Define performance tuning solutions and basic configuration workflow.
  • Identify supported upgrade and migration methods and procedures for Security Management Servers and dedicated Log and SmartEvent Servers.
  • Identify supported upgrade methods and procedures for Security Gateways.

Course Content

EXCERCISES

  • Navigating the Environment and Using the Management API
  • Deploying Secondary Security Management Server
  • Configuring a Dedicated Log Server
  • Deploying SmartEvent
  • Configuring a High Availability Security Gateway Cluster
  • Working with ClusterXL
  • Configuring Dynamic and Updateable Objects
  • Verifying Accelerated Policy Installation and Monitoring Status
  • Elevating Security with HTTPS Inspection
  • Deploying Identity Awareness
  • Customizing Threat Prevention
  • Configuring a Site-to-Site VPN with an Interoperable Device
  • Deploying Remote Access VPN
  • Configuring Mobile Access VPN
  • Monitoring Policy Compliance
  • Reporting SmartEvent Statistics
  • Tuning Security Gateway Performance

Course Topics

  • Advanced Deployments
  • Management High Availability
  • Advanced Gateway Deployment
  • Advanced Policy Configuration
  • Advanced User Access Management
  • Custom Threat Protection
  • Advanced Site-to-Site VPN
  • Remote Access VPN
  • Mobile Access VPN
  • Advanced Security Monitoring
  • Performance Tuning
  • Advanced Security Maintenance

Prices & Delivery methods

Online Training

Duration
3 days

Price
  • 2,240.— €
Classroom Training

Duration
3 days

Price
  • Germany: 2,240.— €
  • Switzerland: 2,240.— €

Schedule

Instructor-led Online Training:   Course conducted online in a virtual classroom.
FLEX Classroom Training (hybrid course):   Course participation either on-site in the classroom or online from the workplace or from home.

English

European Time Zones

Online Training
Online Training
Classroom option: Houten, Netherlands
Online Training
Classroom option: Diegem, Belgium
Online Training
Classroom option: London, United Kingdom
Online Training
Classroom option: Houten, Netherlands
Online Training
Classroom option: Diegem, Belgium
Online Training
Classroom option: London, United Kingdom
Guaranteed date:   The course is guaranteed to run regardless of the number of participants. This excludes unforeseeable events (e.g. accident, illness of the trainer) which make it impossible to carry out the course.
FLEX Classroom Training (hybrid course):   Course participation either on-site in the classroom or online from the workplace or from home.

Germany

Frankfurt
Frankfurt
Frankfurt
International guaranteed dates
Houten

If you can't find a suitable date, don't forget to check our world-wide FLEX training schedule.