Blog
Cisco introduces CCIE Security 400-251 V5.0 Written and Lab Exam
- July 16, 2016
- Posted by: Paul Adam
- Category: CCIE Security 350-018 V4.1
Cisco just published yet another update to CCIE Security Written and lab exams dubbed as Exam 400-251 (v5.0). It is quiet interesting to see another update rolling out on the back of an older one (350-018 V4.1) which took effect from July 25th 2016! Yet another interesting thing to see is v5.0 also implies changes to Cisco Security Lab exam as well.
Nonetheless, I am excited to see that Cisco is aggressively updating the exam blueprint to keep pace with the changes taking place in the security and networking industries. As I scanned through the changes in the official Cisco announcement, I noticed the following key areas that are worth noting.
- As we know, Cisco is an acquisition machine and recently snapped up Lancope (NBA/NetFlow), OpenDNS (cloud-delivered security), and SourceFire (FirePower product line) security companies. Both newly acquired and organically built (ex. ACI)products and solutions are now part of the new CCIE Security blueprint (v5.0)
- Overall exam blueprint now seems more consolidated (8 versus 6 exam sections)
- Identity Management, Information Exchange, and Access Control is the largest content contributor to the exam now (22% and 24% of the written and lab exams respectively)
- Security infrastructure products for perimeter security and intrusion prevention is the second largest content area when it comes written and lab exam content (21% and 23% of the written and lab exams respectively)
- It seems finally all of the VPN content is now consolidated into Secure Connectivity and Segmentation area (17% and 19% of the written and lab exams respectively)
- Infrastructure Security, Virtualization, and Automation now includes Cisco ACI and virtualized security domain
- There is no change to Evolving Technologies section across v4.1 and v5.0 exam blueprint. It continues to include SDN, Cloud and Internet of Things (IoT)
- Last but not least, Cisco also seems to be stepping up on transparency around the CCIE exam content with a lot of details for each section.
CCIE Security V5.0 (takes effect on Jan 31 2017) | Domain Description | Written Exam % |
---|---|---|
Perimeter Security and Intrusion Prevention | Cisco FirePOWER, Cisco ASA, Cisco IOS ZBFW, DDoS Mitigation | 21% |
Advanced Threat Protection and Content Security | AMP Solutions and Security Protocols | 17% |
Secure Connectivity and Segmentation | IKE/IPSec, TrustSec, GETVPN, DMVPN, FlexVPN, Security protocols and algorithms | 17% |
Identity Management, Information Exchange, and Access Control | ISE, RADIUS/TACACS+, WLAN Security and Protocols | 22% |
Infrastructure Security, Virtualization, and Automation | Attacks, Cisco ACI, standard bodies, Cisco DNA/SAFE, NetFlow, ACLs etc. | 13% |
Evolving Technologies | Cloud, SDN, IoT | 10% |
Do you believe that Cisco got the exam blueprint changes right? Share your take with us in the comments.
For more details, you can refer to the official Cisco announcement here.
Leave a Reply Cancel reply
0 (0) Today, we live in a world where there is nothing, and I mean nothing, off the limits for cyberattacks and particularly ransomware attacks. Our hospitals, our universities, oil pipelines, and now even our meat is under cyberattack. The cyberattack that flattened the IT operations at JBS Foods over the weekend turns out was […]
0 (0) Ransomware has been a growing menace for years, but there has been a marked increase, during the recent months, in sophistication and level of innovation in this portion of the cybercrime underbelly. If you didn’t know, cybercrime comes in many different types, such as email and internet fraud, identity theft, financial theft like […]
0 (0) It’s time to check your Pulse. I mean your Pulse Connect Secure VPN appliance. Hackers have been exploiting several previously known and one zero-day vulnerabilities affecting Pulse Connect Secure aka PCS VPN appliances. They are targeting defense, government, and financial organizations around the world. According to FireEye, several threat actors have been exploiting […]
5 (1) OK, we now have another supply chain attack that could become the next big hack. When April fools’ jokes were being published online, one company known as Codecov discovered something that was far from a joke. So, who is Codecov? Codecov is one of the many DevOps tools out there. It provides hosted […]
5 (1) So, what is Ethical Hacking? Well, it is hacking ethically. OK, that was not helpful. There are two types of hacking, white hat hacking, black hat hacking. They use similar tools and have similar goals, so then what is the difference. Well, there is one big difference and that has to do with […]