Cisco 100-160 Certification Exam Syllabus

100-160 Syllabus, CCST Cybersecurity Exam Questions PDF, Cisco 100-160 Dumps Free, CCST Cybersecurity PDF, 100-160 Dumps, 100-160 PDF, CCST Cybersecurity VCE, 100-160 Questions PDF, Cisco CCST Cybersecurity Questions PDF, Cisco 100-160 VCEA great way to start the Cisco Certified Support Technician (CCST) Cybersecurity preparation is to begin by properly appreciating the role that syllabus and study guide play in the Cisco 100-160 certification exam. This study guide is an instrument to get you on the same page with Cisco and understand the nature of the Cisco CCST Cybersecurity exam.

Our team of experts has composed this Cisco 100-160 exam preparation guide to provide the overview about Cisco Certified Support Technician (CCST) Cybersecurity exam, study material, sample questions, practice exam and ways to interpret the exam objectives to help you assess your readiness for the Cisco CCST Cybersecurity exam by identifying prerequisite areas of knowledge. We recommend you to refer the simulation questions and practice test listed in this guide to determine what type of questions will be asked and the level of difficulty that could be tested in the Cisco CCST Cybersecurity certification exam.

Cisco 100-160 Exam Overview:

Exam Name
 Cisco Certified Support Technician (CCST) Cybersecurity
Exam Number 100-160 CCST Cybersecurity
Exam Price $125 USD
Duration 50 minutes
Number of Questions 40-50
Passing Score Variable (750-850 / 1000 Approx.)
Exam Registration PEARSON VUE
Sample Questions Cisco 100-160 Sample Questions
Practice Exam Cisco Certified Support Technician (CCST) Cybersecurity Practice Test

Cisco 100-160 Exam Topics:

Section Objectives
Essential Security Principles - Define essential security principles
  • Vulnerabilities, threats, exploits, and risks; attack vectors; hardening; defense-indepth; confidentiality, integrity, and availability (CIA); types of attackers; reasons for attacks; code of ethics

- Explain common threats and vulnerabilities

  • Malware, ransomware, denial of service, botnets, social engineering attacks (tailgating, spear phishing, phishing, vishing, smishing, etc.), physical attacks, man in the middle, IoT vulnerabilities, insider threats, Advanced Persistent Threat (APT)

- Explain access management principles

  • Authentication, authorization, and accounting (AAA); RADIUS; multifactor authentication (MFA); password policies

- Explain encryption methods and applications

  • Types of encryption, hashing, certificates, public key infrastructure (PKI); strong vs. weak encryption algorithms; states of data and appropriate encryption (data in transit, data at rest, data in use); protocols that use encryption
Basic Network Security Concepts - Describe TCP/IP protocol vulnerabilities
  • TCP, UDP, HTTP, ARP, ICMP, DHCP, DNS

- Explain how network addresses impact network security

  • IPv4 and IPv6 addresses, MAC addresses, network segmentation, CIDR notation, NAT, public vs. private networks

- Describe network infrastructure and technologies

  • Network security architecture, DMZ, virtualization, cloud, honeypot, proxy server, IDS, IPS

- Set up a secure wireless SoHo network

  • MAC address filtering, encryption standards and protocols, SSID
- Implement secure access technologies
  • ACL, firewall, VPN, NAC
Endpoint Security Concepts
- Describe operating system security concepts
  • Windows, macOS, and Linux; security features, including Windows Defender and host-based firewalls; CLI and PowerShell; file and directory permissions; privilege escalation
- Demonstrate familiarity with appropriate endpoint tools that gather security assessment information
  • netstat, nslookup, tcpdump
- Verify that endpoint systems meet security policies and standards
  • Hardware inventory (asset management), software inventory, program deployment, data backups, regulatory compliance (PCI DSS, HIPAA, GDPR), BYOD (device management, data encryption, app distribution, configuration management)
- Implement software and hardware updates
  • Windows Update, application updates, device drivers, firmware, patching
- Interpret system logs
  • Event Viewer, audit logs, system and application logs, syslog, identification of anomalies
- Demonstrate familiarity with malware removal
  • Scanning systems, reviewing scan logs, malware remediation
Vulnerability Assessment and Risk Management
- Explain vulnerability management
  • Vulnerability identification, management, and mitigation; active and passive reconnaissance; testing (port scanning, automation)
- Use threat intelligence techniques to identify potential network vulnerabilities
  • Uses and limitations of vulnerability databases; industry-standard tools used to assess vulnerabilities and make recommendations, policies, and reports; Common Vulnerabilities and Exposures (CVEs), cybersecurity reports, cybersecurity news, subscription services, and collective intelligence; ad hoc and automated threat intelligence; the importance of updating documentation and other forms of communication proactively before, during, and after cybersecurity incidents; how to secure, share and update documentation
- Explain risk management
  • Vulnerability vs. risk, ranking risks, approaches to risk management, risk mitigation strategies, levels of risk (low, medium, high, extremely high), risks associated with specific types of data and data classifications, security assessments of IT systems (information security, change management, computer operations, information assurance)
- Explain the importance of disaster recovery and business continuity planning
  • Natural and human-caused disasters, features of disaster recovery plans (DRP) and business continuity plans (BCP), backup, disaster recovery controls (detective, preventive, and corrective)
Incident Handling
- Monitor security events and know when escalation is required
  • Role of SIEM and SOAR, monitoring network data to identify security incidents (packet captures, various log file entries, etc.), identifying suspicious events as they occur
- Explain digital forensics and attack attribution processes
  • Cyber Kill Chain, MITRE ATT&CK Matrix, and Diamond Model; Tactics, Techniques, and Procedures (TTP); sources of evidence (artifacts); evidence handling (preserving digital evidence, chain of custody)
- Explain the impact of compliance frameworks on incident handling
  • Compliance frameworks (GDPR, HIPAA, PCI-DSS, FERPA, FISMA), reporting and notification requirements
- Describe the elements of cybersecurity incident response
  • Policy, plan, and procedure elements; incident response lifecycle stages (NIST Special Publication 800-61 sections 2.3, 3.1-3.4)

Cisco CCST Cybersecurity Exam Description:

The Cisco Certified Support Technician Cybersecurity (100-160) exam validates a candidate's skills and knowledge of entry-level cybersecurity concepts and topics, including security principles, network security and endpoint security concepts, vulnerability assessment and risk management, and incident handling.

Rating: 5 / 5 (1 vote)