Security Administrator R82 (CCSA)

Security Administrator

COURSE GOAL

Learn how to to access and navigate the Gaia Portal and the Gaia CLI, manage Administrator access, create and configure Network Objects, create new Security Policies, configure Ordered Layers and a Shared Inline Layer, elevate the traffic view and monitor system states, configure Identity Awareness, elevate security with HTTPS Inspection, configure Application Control and URL Filtering, and configure Autonomous Threat Prevention.

Certification Exam

This course prepares for exam #156-215-82

Course Schedule

WHO SHOULD ATTEND?

Security Administrators, Security Engineers, Security Analysts, Security Consultants, Security Architects

PREREQUISITES:

Working knowledge of Unix-like and Windows operating systems and TCP/IP Networking.
Recommended – Check Point Deployment Administrator (CPDA) course.

COURSE TOPICS

  • Introduction to Quantum Security
  • Administrator Account Management
  • Object Management
  • Security Policy Management
  • Policy Layers
  • Security Operations Monitoring
  • Identity Awareness
  • HTTPS Inspection
  • Application Control and URL Filtering
  • Threat Prevention Fundamentals

COURSE OBJECTIVES

  • Identify the primary components of the Check Point Three-Tier Architecture and explain how they
  • work together in the Check Point environment.
  • Explain the purpose of SmartConsole administrator accounts.
  • Identify useful features for administrator collaboration, such as session management, concurrent administration, and concurrent policy installation.
  • Explain the purpose of SmartConsole Objects.
  • Give examples of SmartConsole Physical and Logical Objects.
  • Explain the purpose of Security Policies.
  • Identify the essential elements of a Security Policy.
  • Identify features and capabilities that enhance the configuration and management of the Security Policy.
  • Demonstrate an understanding of the Check Point policy layer concept.
  • Explain how policy layers affect traffic inspection.
  • Explain the purpose of Security Operations Monitoring.
  • Tune the Log Server configuration.
  • Use predefined and custom queries to filter the logging results.
  • Monitor the state of Check Point systems.
  • Explain the purpose of the Identity Awareness solution.
  • Identify the essential elements of Identity Awareness.
  • Explain the purpose of the HTTPS Inspection solution.
  • Identify the essential elements of HTTPS Inspection.
  • Explain the purpose of the Application Control and URL Filtering solutions.
  • Identify the essential elements of Application Control and URL Filtering.
  • Explain the purpose of the Threat Prevention solution.
  • Identify the essential elements of Autonomous Threat Prevention.

LAB TASKS

  • Explore Gaia on the Management/Log Servers and Gateways
  • Connect to SmartConsole and Navigate Views
  • Create New Administrators and Assign and TestProfiles
  • Manage Concurrent Administrator Sessions
  • Take Over Another Session and Verify Session Status
  • View and Modify Network Objects
  • Modify and Verify the Security Policy
  • Install and Test the Security Policy
  • Configure and Deploy the Ordered Layer Rules
  • Create and Test an Inline DMZ Layer
  • Configure Log Management
  • Enhance Rulebase View, Rules, and Logging
  • Review Logs and Search for Data
  • Monitor the Status of the Systems
  • Adjust the Security Policy for Identity Awareness
  • Configure the Identity Collector
  • Define the User Access Role
  • Enable HTTPS Inspection
  • Deploy the Security Gateway Certificate
  • Test and Analyze Policy with HTTPS Inspection
  • Create and Adjust Application Control and URL Filtering Rules
  • Enable Autonomous Threat Prevention