Course Description

Cisco Certified Network Associate Security (CCNAS) equips you with the knowledge and skills representative of entry-level security specialist careers. This course emphasizes a hands-on approach to securing networks. A comprehensive set of tools is used to facilitate learning the fundamental principles of network and endpoint security:

  • Cisco Internetwork Operating System (IOS) software
  • Cisco Adaptive Security Appliance (ASA) software
  • Cisco Adaptive Security Device Manager (ASDM)
  • Cisco AnyConnect Secure Mobility Client
  • Cisco Academy Packet Tracer (PT)
  • WireShark Protocol Analyzer
  • Nmap with Zenmap GUI (Port Scanner)
  • TCP/IP utilities for SSH, SSL, HTTP, IPsec, RADIUS, TFTP, Syslog, SNMP, and Terminal Emulation

CCNAS incorporates both online and classroom learning by utilizing:

  • Cisco Networking Academy NetSpace eLearning portal
  • Network Development Group (NDG) NETLAB+ remote lab environment
  • Collaboration Software (Cisco Webex, Adobe Connect, Microsoft Business Skype)

The Cisco Networking Academy CCNASv2.0 course addresses all of the exam objectives for both the CCNAS 210-260 certification exam, informally known as the Implementing Cisco IOS Network Security (IINS) 3.0 certification exam, and the CompTIA Security+ SY0-401 exam.

CCNAS certification is a Department of Defense (DoD) 8570.01 Information Assurance Technical (IAT) Level I and II and Information Assurance Management (IAM) Level I certification. The DoD 8570 Directive provides guidance and procedures for the training, certification, and management of all DoD employees performing Information Assurance functions in their line of duty, who are required to carry an approved certification for their particular job role and classification.

All hands-on labs in the course are performed by remotely accessing CCNA NETLAB+ pods comprised of Cisco Catalyst switches (IoS 15.x), ASAs (ASA 9.x and ASDM 7.x), ISR G2 devices (IOS 15.x), and virtual PCs.

Learner Outcomes

Upon completion of the CCNA Security course, learners will be able to perform the following tasks:

  • Explain network threats, mitigation techniques, and the basics of securing a network
  • Secure administrative access on Cisco routers
  • Secure administrative access with authentication, authorization, and accounting (AAA)
  • Implement firewall technologies to secure the network perimeter
  • Configure intrusion prevention services (IPS) to mitigate attacks on the network
  • Describe LAN security considerations and implement endpoint and Layer 2 security features
  • Describe methods for implementing data confidentiality and integrity
  • Implement secure virtual private networks
  • Implement an ASA firewall configuration using the command-line interface (CLI)
  • Implement an ASA firewall configuration and VPNs using ASDM
  • Test network security and create a technical security policy


Learners should have completed CCNA Routing and Switching (R&S) 1 (Introduction to Networks) and CCNA R&S 2 (Routing and Switching Essentials), or Cisco Certified Entry-Level Network Technician (CCENT) certification, or equivalent knowledge and experience. Access to a computer outside of class is required to complete the assignments - the computer should support Java-enabled, browser-based Internet access.
Thank you for your interest in this course. Unfortunately, the course you have selected is currently not open for enrollment. Please complete a Course Inquiry so that we may promptly notify you when enrollment opens.
Required fields are indicated by .