A great way to start the Cisco Partner Field Engineer (SSFAMP) preparation is to begin by properly appreciating the role that syllabus and study guide play in the Cisco 500-275 certification exam. This study guide is an instrument to get you on the same page with Cisco and understand the nature of the Securing Cisco Networks with Sourcefire FireAMP Endpoints exam.
Our team of experts has composed this Cisco 500-275 exam preparation guide to provide the overview about Securing Cisco Networks with Sourcefire FireAMP Endpoints exam, study material, sample questions, practice exam and ways to interpret the exam objectives to help you assess your readiness for the Cisco SSFAMP exam by identifying prerequisite areas of knowledge. We recommend you to refer the simulation questions and practice test listed in this guide to determine what type of questions will be asked and the level of difficulty that could be tested in the Securing Cisco Networks with Sourcefire FireAMP Endpoints certification exam.
Cisco 500-275 Exam Overview:
Exam Name
|
Securing Cisco Networks with Sourcefire FireAMP Endpoints |
Exam Number | 500-275 SSFAMP |
Exam Price | $300 USD |
Duration | 75 minutes |
Number of Questions | 45-55 |
Passing Score | Variable (750-850 / 1000 Approx.) |
Recommended Training | Sales Connect |
Exam Registration | PEARSON VUE |
Sample Questions | Cisco 500-275 Sample Questions |
Practice Exam | Cisco Partner Field Engineer Practice Test |
Cisco 500-275 Exam Topics:
Section | Weight | Objectives |
---|---|---|
Cisco Advanced Malware Protection Overview and Architecture | 20% |
- Describe the Cisco AMP technology and features that distinguish it from traditional malware solutions - Describe the Cisco AMP architecture, including the components of the cloud and connector - Describe the communication that occurs between the endpoints and Cisco AMP for the cloud |
Outbreak Control Menu Items | 9% |
- Understand the different types of custom detections (application blocking, advanced and simple detections) including the ways to create them - Define device flow control and describe its features - Describe whitelisting and how to create white lists |
Endpoint Policies | 9% |
- Describe the different policy elements under the General tab - Describe the settings contained in the file tab of a Cisco AMP policy - Describe the configuration options of device flow control |
Groups and Development | 12% |
- Understand the considerations one should take when planning the deployment of the Cisco AMP connector - Describe the requirements and procedures for installation of the connector |
Analysis and Reporting | 18% |
- Be familiar with general malware analysis tasks and terms for Cisco AMP - Describe the use of the dashboard including the indicators of compromise - Use the file and device trajectory feature of the Cisco AMP console - Use the file analysis features of the Cisco AMP console - Be familiar with the reporting features of Cisco AMP |
Private Cloud | 10% |
- Describe the communication that occurs between private and public clouds - Describe the items one should consider before installation of the Cisco AMP private cloud |
Accounts | 6% |
- Be familiar with the general features available in the Accounts menu - Describe the two-step authentication features of Cisco AMP |
Cisco AMP Connector | 6% |
- Describe the different scan types available to the Cisco AMP user - Describe the files used by the Cisco AMP connector - Be familiar with tools that may be used to help troubleshoot the connector |
Console Interface | 10% |
- Be familiar with the first-use interface - Describe the use and implementation of remote file fetch - Be familiar with the console interface features |
Cisco SSFAMP Exam Description:
The Securing Cisco Networks with Sourcefire FireAMP Endpoints (SSFAMP) exam (500-275) is designed for technical professionals who need to demonstrate their skills and expertise in the deployment and management of Cisco Advanced Malware Protection in their network environment.