Choose a layout and drag widgets onto your Overview Page to customize it. Widgets placed on the page below can be configured by selecting the symbol.
Loading...
The Understanding Cisco Cybersecurity Fundamentals (SECFND) exam (210-250) is a 90-minute, 60−70 question assessment that is associated with the Cisco CCNA Cyber Ops certification. Candidates can prepare for this exam by taking the Understanding Cisco Cybersecurity Fundamentals (SECFND) v1.0 course. This exam tests a candidate's understanding of cybersecurity basic principles, foundational knowledge, and core skills needed to grasp the more associate-level materials in the second required exam, Implementing Cisco Cybersecurity Operations (SECOPS).
The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.
Download Complete List of Topics in PDF format
1.0 Network Concepts | 12% | Show Details |
1.1 Describe the function of the network layers as specified by the OSI and the TCP/IP network models 1.2 Describe the operation of the following
1.3 Describe the operation of these network services
1.4 Describe the basic operation of these network device types
1.5 Describe the functions of these network security systems as deployed on the host, network, or the cloud:
1.6 Describe IP subnets and communication within an IP subnet and between IP subnets 1.7 Describe the relationship between VLANs and data visibility 1.8 Describe the operation of ACLs applied as packet filters on the interfaces of network devices 1.9 Compare and contrast deep packet inspection with packet filtering and stateful firewall operation 1.10 Compare and contrast inline traffic interrogation and taps or traffic mirroring 1.11 Compare and contrast the characteristics of data obtained from taps or traffic mirroring and NetFlow in the analysis of network traffic 1.12 Identify potential data loss from provided traffic profiles | ||
2.0 Security Concepts | 17% | Show Details |
2.1 Describe the principles of the defense in depth strategy 2.2 Compare and contrast these concepts
2.3 Describe these terms
2.4 Describe these security terms
2.5 Compare and contrast these access control models
2.6 Compare and contrast these terms
2.7 Describe these concepts
| ||
3.0 Cryptography | 12% | Show Details |
3.1 Describe the uses of a hash algorithm 3.2 Describe the uses of encryption algorithms 3.3 Compare and contrast symmetric and asymmetric encryption algorithms 3.4 Describe the processes of digital signature creation and verification 3.5 Describe the operation of a PKI 3.6 Describe the security impact of these commonly used hash algorithms
3.7 Describe the security impact of these commonly used encryption algorithms and secure communications protocols
3.8 Describe how the success or failure of a cryptographic exchange impacts security investigation 3.9 Describe these items in regards to SSL/TLS
| ||
4.0 Host-Based Analysis | 19% | Show Details |
4.1 Define these terms as they pertain to Microsoft Windows
4.2 Define these terms as they pertain to Linux
4.3 Describe the functionality of these endpoint technologies in regards to security monitoring
4.4 Interpret these operating system log data to identify an event
| ||
5.0 Security Monitoring | 19% | Show Details |
5.1 Identify the types of data provided by these technologies
5.2 Describe these types of data used in security monitoring
5.3 Describe these concepts as they relate to security monitoring
5.4 Describe these NextGen IPS event types
5.5 Describe the function of these protocols in the context of security monitoring
| ||
6.0 Attack Methods | 21% | Show Details |
6.1 Compare and contrast an attack surface and vulnerability 6.2 Describe these network attacks
6.3 Describe these web application attacks
6.4 Describe these attacks
6.5 Describe these endpoint-based attacks
6.6 Describe these evasion methods
6.7 Define privilege escalation 6.8 Compare and contrast remote exploit and a local exploit |
The place on the Cisco Learning Network where you can ask questions and share ideas with other members as you prepare for your Certification. Join Now.