What Are the Tested Skills in 350-701 SCOR Certification Exam?

Candidates who want to get the passing score in the Cisco 350-701 SCOR exam should be ready to demonstrate that they have skills in the following domains:

• Security concepts

During preparation for this topic, the candidate will learn how to explain common threats against cloud and on-premises environments. Also, they will become skilled in comparing common security vulnerabilities and will no longer have any surprises when it comes to software bugs, weak passwords, or missing encryption. Another subtopic included here covers cryptography components functions as well as hashing, encryption, SSL, and IPsec functions. Besides, applicants will become proficient in interpreting basic Python scripts and explaining North and South Bound as well as DNAC APIs for network provisioning.

• Network security

Within this domain, examinees will show their ability to compare network security solutions and deployment models related to different network security solutions and architectures. They should also understand how NetFlow and Flexible NetFlow records, components, and capabilities work. During the training classes, they will learn how to properly implement segmentation, access control policies, and management options for security solutions. Also, they will discover how to configure AAA for network and device access. Another subtopic included here will be the configuration of secure network management and site-to-site VPN.

• Securing the Cloud

The candidates will learn how to identify security solutions that contribute to cloud environment performance. Also, the comparison between the customer and provider security responsibility is also handled in this section. Another subtopic is related to DevSecOps description and application implementation. Candidates will have to demonstrate that they know how to identify security capabilities and deployment models and also understand how to configure logging and monitoring methodology. Finally, the training courses focusing on this topic will teach them essential workload and application security concepts.

• Content security

Within this topic, examinees will become experienced in implementing capture methods and traffic redirection. Also, they will know how more about web proxy identity and authentication by utilizing the user identification tools. Components like ESA, CES, or WSA will be also described in this section. Another subtopic is dedicated to web and email security verification and configuration. Secure internet gateway and web security features configuration and verification are also handled here. Candidates will learn more about how Cisco Umbrella works and what are its benefits. Finally, they will configure and verify web security controls with the help of Cisco Umbrella features.

• Endpoint protection and detection

The fifth topic will take the candidates in the area of understanding how Endpoint Protection Platforms and Endpoint Detection and Response solutions work. Also, they will become skilled in handling antimalware solutions, antivirus, dynamic file analysis, and endpoint-sourced telemetry features configuration. Another subtopic included in this section talks about endpoint device management, multifactor authentication strategy, posture assessment solutions, and endpoint patching.

• Secure network access, visibility, and enforcement

Last but not least, candidates need to be proficient in using guest services, profiling, BYOD, and posture assessment tools. They need to understand what's involved in the network access with CoA, what are the device compliance benefits, and different exfiltration techniques. It is essential that examinees demonstrate that they know the benefits of network telemetry and different Cisco components and capabilities.

Reference: https://www.cisco.com/c/en/us/training-events/training-certifications/exams/current-list/scor-350-701.html

The benefit in Obtaining the Implementing and Operating Cisco Security Core Technologies (SCOR 350-701)

This exam will help you:

• Implement security principles within an enterprise network
• Configure, troubleshoot, and manage enterprise wired and wireless networks
• Earn 64 CE credits toward recertification

This exam is for:

• Help desk technicians
• Network administrators
• Network support technicians
• Mid-level network engineers

Cisco 350-701 SCOR: Skills Outline

The Cisco 350-701 exam evaluates the applicants’ expertise in various technical areas. The skills measured in this certification test are combined in a number of objectives, which are listed below:

• Endpoint Protection & Detection (15%)

  This domain includes such technical skills as comparing Endpoint Detection and Response, as well as Endpoint Protection Platform solutions, explaining retrospective security, antimalware, antivirus, IOC, dynamic file analysis, and endpoint-sourced telemetry, explaining the importance of the endpoint patching strategy, describing endpoint posture assessment solutions, and explaining the value of asset inventory such as MDM.

• Content Security (10%)

  Answering the questions from this section requires your familiarity with implementing traffic redirection and capture methods, describing web proxy identity and authentication, comparing the components, benefits, and capabilities of Cloud-based and local web and email solutions, verifying and configuring email and web security deployment methods to protect remote and on-premises users, verifying and validating email security features, verifying and configuring web security features and secure internet gateway, and describing the benefits, components, and capabilities of Cisco Umbrella.

• Cloud Security (15%)

  The questions from this domain evaluate various skills, including one’s ability to identify security solutions for the Cloud environments, including community, public, hybrid, and private Clouds. The topic also tests your capability to explain workload and application security concepts, customize Cloud monitoring and logging methodologies, define deployment models, security capabilities, and policy management to ensure the security of Cloud. Additionally, the learners are required to show their knowledge of implementing data security and application in Cloud, describing the concepts of DevSecOps, identifying security solutions for the Cloud environments, and Cloud service models, such as SaaS, IaaS, and PaaS.

• Secure Network Access (15%)

  Within this objective, the examinees need to demonstrate their competency in describing the benefits of network telemetry, explaining exfiltration techniques, describing network access with CoA, and describing secure network access and identity management.

• Network Security (20%)

  This objective evaluates the test takers’ competency in comparing network security solutions that provide firewall capabilities and intrusion prevention, describing the deployment models of network security architectures and solutions that provide firewall capabilities and intrusion prevention, describing the components, benefits, and capabilities of Flexible NetFlow records, and verifying and configuring network infrastructure security methods (wireless, switch, router). They also need to demonstrate their knowledge of Layer 2 methods, which include network segmentation using VRF-lite and VLANs; DHCP snooping, Layer 2 and port security, storm control, Dynamic ARP inspection, defense against ARP, MAC, VLAN hopping, and DHCP rogue attacks.

• Security Concepts (25%)

  This subject area covers the learners’ proficiency in explaining DNAC APIs for network provisioning, troubleshooting, monitoring, and optimization, interpreting basic Python scripts used in calling Cisco Security appliances APIs, and describing South Bound and North Bound APIs in the SDN building. They are also required to demonstrate their ability to explain how endpoint helps the individuals overcome social engineering and phishing attacks, describe security intelligence authoring, consumption, and sharing, and compare remote access VPN and site-to-site VPN deployment types, such as DMVPN, Crypto map, IPsec, sVTI, FLEXVPN, including AnyConnect and high availability.

  This area also assesses the candidates’ expertise in comparing common security vulnerabilities such as software bugs, hardcoded and/or weak passwords, path traversal, buffer overflow, cross-site scripting/forgery, and missing encryption. Their ability to explain common threats against Cloud and on-premises environments is also tested within this domain.

The Cisco 350-701 or Implementing and Operating Cisco Security Core Technologies is a core exam that’s related to the CCNP Security, Cisco Certified Specialist-Security Core, and CCIE Security certifications. From the name, this test checks your knowledge and skills regarding the execution and operations necessary for basic security technologies.