Check Point Certified Security Expert (CCSE)

This course is designed for anyone seeking Check Point Certified Security Expert (CCSE) certification. This core course covers the expertise needed to identifying basic interfaces used to manage the Check Point environment, identify the types of technologies that Check Point supports for automation, explain the purpose of the Check Management High Availability (HA) deployment, identify the workflow followed to deploy a Primary and solution Secondary servers, explain the basic concepts of ClusterXL, including protocols, synchronization, explain the policy installation flow, explain the purpose of dynamic objects and network feeds, understand how to manage user access for internal and external users, describe the Identity Awareness components and configurations, describe different Check Point Threat Prevention solutions, obtain knowledge about Check Point’s IoT Protect, explain the purpose of Domain-based VPNs.

This 90hrs (Lectures + hands-on Lab) training is for anyone seeking Check Point Certified Security Expert (CCSE) certification and training is designed for personnel involved in deploying, configuring, and managing Check Point firewall including device configuration, routing, traffic control, and NAT. Candidates will learn how to install a Security Management Server and a Security Gateway in a distributed environment, configure objects, rules and settings to define a security policy, work with multiple concurrent administrators and define permission profiles, perform expert tasks, as specified in job descriptions.

The key to a high success rate is based on the program’s objectives as follows:

• Course contents are based on Check Point (CCSE) course outlines.
• Dedicated Monitoring to evaluate and report candidate’s progress.
• Extensive hands-on lab exercises.
• Industry acclaimed, experienced and certified instructors.

Objectives:

• Check Point Certified Security Expert (CCSE) course is an expert and advanced level course which includes learning and gaining detailed knowledge on Checkpoint Firewall, Clustering and Acceleration, Advanced User Management, Advanced IPsec VPN and Remote Access, Auditing and Reporting. Networking Aspirants can take this course and prepare for exam as well as upgrade their knowledge in Security Domain.
• The Checkpoint CCSE Training helps a professional to get updated to new sets of checkpoint firewall technologies and Check Point system information and discuss best practices and recommendations for each method.

Topics:

• Identify basic interfaces used to manage the Check Point environment.
• Identify the types of technologies that Check Point supports for automation.
• Explain the purpose of the Check Management High Availability (HA) deployment.
• Identify the workflow followed to deploy a Primary and solution Secondary servers.
• Explain the basic concepts of Clustering and ClusterXL, including protocols, synchronization, connection stickyness.
• Identify how to exclude services from synchronizing or delaying synchronization.
• Explain the policy installation flow.
• Explain the purpose of dynamic objects, updatable objects, and network feeds.
• Understand how to manage user access for internal and external users.
• Describe the Identity Awareness components and configurations.
• Describe different Check Point Threat Prevention solutions.
• Articulate how the Intrusion Prevention System is configured.
• Obtain knowledge about Check Point’s IoT Protect.
• Explain the purpose of Domain-based VPNs.
• Describe situations where externally managed certificate authentication is used.
• Describe how client security can be provided by Remote Access.
• Discuss the Mobile Access Software Blade.
• Explain how to determine if the configuration is compliant with the best practices.
• Define performance tuning solutions and basic configuration workflow.
• Identify supported upgrade and migration methods and procedures for Security Management Servers and dedicated Log and SmartEvent Servers.
• Identify supported upgrade methods and procedures for Security Gateways.