Cisco Protecting Against Malware Threats with Cisco AMP for Endpoints v6.0 (SSFAMP)

4.6 out of 5 rating

Jump to dates


3 Days

18 CPD hours

This course is intended for

Security administrators
Security consultants
Network administrators
Systems engineers
Technical support personnel
Cisco integrators, resellers, and partners


Identify the key components and methodologies of Cisco Advanced Malware Protection (AMP) Recognize the key features and concepts of the AMP for Endpoints product Navigate the AMP for Endpoints console interface and perform first-use setup tasks Identify and use the primary analysis features of AMP for Endpoints Use the AMP for Endpoints tools to analyze a compromised host Analyze files and events by using the AMP for Endpoints console and be able to produce threat reports Configure and customize AMP for Endpoints to perform malware detection· Create and configure a policy for AMP-protected endpoints Plan, deploy, and troubleshoot an AMP for Endpoints installation Use Cisco Orbital to pull query data from installed AMP for Endpoints connectors Describe the AMP Representational State Transfer (REST) API and the fundamentals of its use Describe all the features of the Accounts menu for both public and private cloud installations


This course shows you how to deploy and use Cisco AMP for Endpoints, a next-generation endpoint security solution that prevents, detects, and responds to advanced threats. Through expert instruction and hands-on lab exercises, you will learn how to implement and use this powerful solution through a number of step-by-step attack scenarios. You?ll learn how to build and manage a Cisco AMP for Endpoints deployment, create policies for endpoint groups, and deploy connectors. You will also analyze malware detections using the tools available in the AMP for Endpoints console, Cisco Threat Grid, and the Cisco Orbital Advanced Search Tool.

Course Outline
  • Introducing Cisco AMP Technologies
  • Introducing AMP for Endpoints Overview and Architecture
  • Navigating the Console Interface
  • Using Cisco AMP for Endpoints
  • Identifying Attacks
  • Analyzing Malware
  • Managing Outbreak Control
  • Creating Endpoint Policies
  • Working with AMP for Endpoint Groups
  • Using Orbital for Endpoint Visibility
  • Introducing AMP REST API
  • Navigating Accounts
Training Insurance Included!

When you organise training, we understand that there is a risk that some people may fall ill, become unavailable. To mitigate the risk we include training insurance for each delegate enrolled on our public schedule, they are welcome to sit on the same Public class within 6 months at no charge, if the case arises.

What people say about us

Find out more about this course

Interested in alternative dates? Would like to book a private session of this course for your company? Or for any other queries please simply fill out the form below.