How to Prepare for CCIE Security Lab Exam

What is Cisco CCIE (Cisco Certified Internetwork Expert)
Cisco Certified Internetwork Experts are the IT jargons that are accepted globally. These experts are tagged as jargons of IT domain because of being a certified internetwork expert; they are not only just meant for their brand, but also benefited with various financial and non- financial incentives like handsome remuneration, decent designations, attractive employee’s schemes etc. As the certified engineer they have a privilege of being in a select band of elite technocrats that cut above the rest. The ever growing IT dynamics, telecom and ITES industries are always in a urge to find and recruit such IT jargons. Thus, Armed with CCIE all over you ought to taste success like no another.
Recommended Read:
- Interview Question Bank: Top 300+ CCIE Interview Questions
- Self-Study Guide: EIGRP – Enhanced Interior Gateway Routing Protocol
- How to Become CCIE Expert | Tips from Experts
- CCIE Security v5 Blueprint | Detailed Examination Pattern
CCIE Tracks:
WHAT IS CCIE SECURITY:
CCIE Security that is Cisco Certified internetwork Experts in Security, since past 15 years has increased its demand manifolds. It is one of the most prestigious and demanded IT Networking Certification. It is the most prestigious track under CCIE certification as they provide high pay scale, top designations in the most renowned technocrats such as HCL, Orange, AT&T, Dimension Data etc are just to name the few. The opportunities are hostile which provides recognitions not nationally but globally as security is the utmost priority in any industry and this track of CCIE upgrades one’s knowledge for the same. Being the world transforming into a IT village people with sound knowledge and skills to architect, engineer, implement, troubleshoot and support the full suite of security technology and derive probable results and interpretations and thus, supplementing with fruitful results to the best and latest industries with sincere efforts to secure systems from change in dynamism, threats, vulnerabilities are highly demanded. Presently, there are just 55,000 networking engineers in this track in the entire world, whereas, technically this figure are required in India alone.
CCIE EXAMINATION PROCESS:
CCIE Security Version 5.0 exam unifies written and lab examination topics into a very defined and structured curriculum whilst specifically lying emphasis towards tracks pertaining to which examination to be given and relative weightage of each track.
The written examination 400-251 is a 2 hour examination with 90-110 questions to be answered in the allotted time frame. Questions asked pertains to designs, implementation, operate, troubleshoot complex security technologies and solutions. Outside materials for references are strictly prohibited being the examination closed book.
The CISCO CCIE Security lab examination version5.0 is a rigorous 8 hours examination that requires to design, implement, troubleshoot complex security scenarios for a given specification. Troubleshooting skills is the need of an hour in those essential 8 hours of examination, it is therefore, advisable to have a strong base and sound knowledge in this very aspect, as this examination is the deciding factor for your awaited certification.
CCIE LAB EXAMINATION:
As mentioned earlier CCIE Security lab examination is a very important examination to be successfully cleared with utmost sincerity as this tests your implementation, configuring, troubleshooting and conceptual skills.
Following are the essential topics suggested that is, required for you to be a jack at:
The 8-hour lab format consists of 3 modules that need to be taken during the day of the exam:
Module 1: Troubleshooting module (2 hours)
Module 2: Diagnostic Module (1 hour)
Module 3: Configuration Module (5 hours)
It’s thereby very close to pertain production of the network having various security components providing various layers of security at different parts in the network.
Below is the diagram which accurately explains the passing criteria:
CCIE SECURITY LAB EXAM BLUEPRINT:
DOMAIN |
Written Exam (%) | Lab Exam[%] |
---|---|---|
1.0 Perimeter Security and Intrusion Prevention | 21% | 23% |
2.0 Advanced Threat Protection and Content Security | 17% | 19% |
3.0 Secure Connectivity and Segmentation | 17% | 19% |
4.0 Identity Management, Information Exchange, and Access Control | 22% | 24% |
5.0 Infrastructure Security, Virtualization, and Automation | 13% | 15% |
6.0 Evolving Technologies | 10% | N/A |
It’s rightly said “ practice makes the man perfect” and clearing CCIE Lab Examination is considered as a victory which every IT jargons strives for, hence, to be a tadd confident expert in those 8 hours of your examination following are the lab equipment which one must be familiar with:
Passing the lab exam requires a depth of understanding difficult to obtain without hands-on experience. Early in your preparation candidates should arrange access to equipment similar to that used on the exam.
Virtual Machines:
Security Appliances
- Cisco Identity Services Engine (ISE): 2.1.0
- Cisco Secure Access Control System (ACS): 5.8.0.32
- Cisco Web Security Appliance (WSA): 9.2.0
- Cisco Email Security Appliance (ESA): 9.7.1
- Cisco Wireless Controller (WLC): 8.0.133
- Cisco Firepower Management Center Virtual Appliance: 6.0.1 and/or 6.1
- Cisco Firepower NGIPSv: 6.0.1
- Cisco Firepower Threat Defense: 6.0.1
Core Devices
- IOSv L2: 15.2
- IOSv L3: 15.5(2)T
- Cisco CSR 1000V Series Cloud Services Router: 3.16.02.S
- Cisco Adaptive Security Virtual Appliance (ASAv): 9.6.1
Others
- Test PC: Microsoft Windows 7
- Active Directory: Microsoft Windows Server 2008
- Cisco Application Policy Infrastructure Controller Enterprise Module : 1.2
- Cisco Unified Communications Manager: 8.6.(1)
- FireAMP Private Cloud
- AnyConnect 4.2
Physical Devices
Cisco Catalyst Switch
- C3850-12S: 16.2.1
Cisco Adaptive Security Appliance
- 5512-X: 9.6.1
Cisco 2504 Wireless Controller
- 2504: 8.0.133.0
Cisco Aironet
- 1602E: 15.3.3-JC
Cisco Unified IP Phone
- 7965: 9.2(3)
That being said, the CCIE lab examination is located in the selected areas only. CCIE R&S, Security, Collaboration, Service Provider, Wireless And Data Centre lab examinations student have the option of Banglore [India] centre. In case, you can arrange to go abroad following are the centres wherein you can enrol:
- Bejing, PRC
- Brussels, Belgium
- Dubai, UAE
- Hong Kong, PRC
- San Jose, USA
- RTP, USA
- Sydney, Australia
Some Popular Designations for CCIE Security Engineers
Popular Companies Hiring CCIE Security Engineers
POPULAR COMPANIES | SALARY IN RUPEES |
---|---|
Cisco Systems INC. | 595,976-18,64,469 |
HCL Technologies ltd. | 350,000-16,20,000 |
Orange Business Services | 13,00,000 |
Juniper Networks INC. | 20,00,000 |
Microland | 15,00,000 |
CONCLUSION:
CCIE Security is a very complex examination to be cleared for in one single attempt. So, as to clear and channelize your efforts into appropriate direction be handy with lab equipment, sound knowledge of the recent trends, changing dynamism is of utmost importance. As mentioned, your CCIE Security lab examination shall be your deciding factor whether you will avail the most awaited certification or not. So, to be known by as technical jargons your efforts are counted from today!