Automating Cisco Security Management Solutions Using APIs

By Nick Russo
A comprehensive security architecture should include network, endpoint, and application security/visibility techniques. This course will teach you how to deploy Cisco ISE, Stealthwatch, and SMA to reinforce your cyber defenses.
Play course overview
Course info
Level
Intermediate
Updated
Aug 6, 2020
Duration
1h 34m
Table of contents
Course Overview
Course Overview 2m
Centralizing Network Access Control with Cisco ISE
Course Introduction, Prerequisites, and Business Scenario 2m Demo: Building a Basic pxGrid SDK 7m Demo: Collecting RADIUS Failures via pxGrid HTTP API 7m Demo: Collecting Security Telemetry via pxGrid Websockets 6m Demo: Developer Resources to Help You 5m Demo: Improvising a STOMP Library for Python 4m Demo: Managing Network Devices with ISE External RESTful Services (ERS) 5m Introducing Cisco Identity Services Engine (ISE) 5m Module Summary and Homework Challenge 1m
Visualizing Network Threats with Cisco Stealthwatch
Demo: Building a Generic Stealthwatch SDK Framework 6m Demo: Collecting Traffic Flows from Stealthwatch Cloud 5m Demo: Collecting Traffic Flows from Stealthwatch Enterprise 5m Demo: Creating and Viewing Stealthwatch Cloud Alerts 4m Demo: Detecting Suspicious Traffic Using Stealthwatch Enterprise 6m Demo: Developer Resources to Help You 3m Module Summary and Homework Challenge 1m Understanding the Various Stealthwatch Products 5m
Securing Email and Web Traffic with Cisco SMA
Demo: Building a General-purpose SMA SDK in Python 3m Demo: Developer Resources to Help You 3m Demo: Generating a Web Security Report via SMA API 3m Demo: Generating an Email Security Report via SMA API 2m Leveraging SMA to Secure Email (ESA) and Web (WSA) Traffic 3m Module Summary and Homework Challenge 1m
Description
Course info
Level
Intermediate
Updated
Aug 6, 2020
Duration
1h 34m
Description

Even after you've secured your networks and endpoints, a key question remains: What about the applications used by the business? How can we observe them and how can we control network access to them? In this course, Automating Cisco Security Management Solutions Using APIs, you'll explore Cisco Identity Services Engine (ISE) which provides wired and wireless network access control using the pxGrid and REST APIs. Next, you'll discover how to improve application visibility using the Netflow-based Cisco Stealthwatch family of products, helping you identify anomalies for analysis both in enterprise and cloud networks. Finally, you'll learn how to provide application-level security for common enterprise services such as web and email using Cisco Security Management Appliance (SMA) with the Email Security Appliance (ESA) and Web Security Appliance (WSA). When you're finished with this course, you'll have the skills and knowledge necessary to automate a variety of Cisco security management solutions in your production network.

About the author
Nick Russo
About the author

Nick Russo, CCDE #20160041 and CCIE #42518, is your go-to-guy for all things networking and automation. Nick loves training online and speaking at industry conferences sharing his expertise.

More from the author
Designing QoS for IP and MPLS Networks
Intermediate
1h 9m
Sep 17, 2020
Implementing and Validating QoS Designs
Intermediate
1h 19m
Sep 17, 2020
Introduction to the Automating Cisco Security Solutions (SAUTO 300-735) Exam
Intermediate
14m
Aug 13, 2020
More courses by Nick Russo
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone. My name is Nick Russo, and welcome to my course titled Automating Cisco Security Management Solutions Using APIs. Even after you've secured your networks and endpoints, consider protecting business‑critical applications like web and email, along with introducing anomaly detection. This course focuses on programmatically implementing these advanced security techniques. Specifically, we'll cover three broad Cisco product categories: Identity Services Engine, or ISE, to centrally control network access, Stealthwatch, a collection of products that passively monitor network flows, and SMA, or Security Management Appliance, used to manage web and email‑specific security solutions. After completing this course, you'll know how to design, operate, and maintain various automation scripts to help you manage these solutions in production. Before beginning this course, I'd recommend the following prerequisite courses. These first three courses provide the foundation of software development and programmability skills that are extended in this course. The content around Cisco product APIs will be especially helpful. I'm assuming you already have a strong background in Python programming. These last three courses provide useful context and Python examples in both enterprise and security environments, which builds a strong foundation for this course. I hope you'll join me on this journey to improve your automation skills with Cisco Security Management Products, at Pluralsight.

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT