CCNA Security Overview
Learn more about the benefits and requirements associated with achieving a CCNA Security certification. (5:18 min)
Cisco Certified Network Associate Security (CCNA Security) validates associate-level knowledge and skills required to secure Cisco networks. With a CCNA Security certification, a network professional demonstrates the skills required to develop a security infrastructure, recognize threats and vulnerabilities to networks, and mitigate security threats. The CCNA Security curriculum emphasizes core security technologies, the installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices, and competency in the technologies that Cisco uses in its security structure.
Exams & Recommended Training
|Required Exam(s)||Recommended Training|
|640-554 IINS||Implementing Cisco IOS Network Security (IINS)|
|For a complete list of available network security training, visit the Security Training page.|
The following resources are suggested study materials:
- Quick Learning Module - Securing Cisco iOS Devices
- Community Recommendations for CCNA Security Studying
- Cisco Security Certification Library
- ASA Study Tips
A comprehensive list of self-study materials is also available.
Cisco Learning Network Resources
- CCNA Security Syllabus
- CCNA Security Study Group
- Certification Blog: The Importance of Security Training
- Blog: The Journey Back to CCNA Security
Get all your CCNA Security questions answered.
Learning Partner Content
The best way to prepare for this certification is to take the Cisco-approved training:
Implementing Cisco IOS Network Security (IINS)
Course content focuses on the design, implementation, and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies as examples.
» Learn More
To earn this Cisco certification, you must pass the following exam(s):
The 640-554 Implementing Cisco IOS Network Security (IINS) exam is associated with the CCNA Security certification. This exam tests a candidate's knowledge of securing Cisco routers and switches and their associated networks. It leads to validated skills for installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices and develops competency in the technologies that Cisco uses in its security infrastructure.
CCNA Security certifications are valid for three years. To recertify, pass ONE of the following before the certification expiration date:
- Pass any current Associate-level exam except for ICND1 exam or
- Pass any current 642-XXX Professional-level or any 300-XXX Professional-level exam, or
- Pass any current 642-XXX Cisco Specialist exam (excluding Sales Specialist exams or MeetingPlace Specialist exams, Implementing Cisco TelePresence Installations (ITI) exams, Cisco Leading Virtual Classroom Instruction exams, or any 650 online exams), or
- Pass any current CCIE Written Exam, or
- Pass the current CCDE Written Exam OR current CCDE Practical Exam, or
- Pass the Cisco Certified Architect (CCAr) interview AND the CCAr board review to extend lower certifications
When using a higher level of certification to extend other certifications, the expiration date of other certifications will extend to the expiration date of the higher certification (i.e.: If you have one year left on your CCNA Security certification and you earn a CCIE certification (which has a two-year certification life) then both your CCIE certification and your CCNA Security certification will expire two years from the date you achieved the CCIE certification).