CCNP Security Overview
Learn more about the benefits and requirements associated with achieving a CCNP Security certification. (5:06 min)
CCNA Security and CCNP Security Courses and Written Exams v2.0 Refresh
The courses and written exams for the Cisco CCNA Security and CCNP Security tracks have been refreshed to include the latest wireless technology and products. Learn more.
Cisco Certified Network Professional Security (CCNP Security) certification program is aligned specifically to the job role of the Cisco Network Security Engineer responsible for Security in Routers, Switches, Networking devices and appliances, as well as choosing, deploying, supporting and troubleshooting Firewalls, VPNS, and IDS/IPS solutions for their networking environments.
Prerequisites
Valid Cisco CCNA Security certification or valid Cisco CCNA certification plus the SND exam pass can act as a prerequisite.
Exams & Recommended Training
| Required Exam(s) | Recommended Training |
| 642-637 SECURE | Securing Networks with Cisco Routers and Switches (SECURE) |
| 642-618 FIREWALL | Deploying Cisco ASA Firewall Solutions (FIREWALL) |
| 642-648 VPN | Deploying Cisco ASA VPN Solutions (VPN) |
| 642-627 IPS | Implementing Cisco Intrusion Prevention System (IPS ) |
The best way to prepare for this certification is to take the Cisco-approved training:
Securing Networks with Cisco Routers and Switches (SECURE)
This five-day course is aimed at providing network security engineers with the knowledge and skills needed to secure Cisco IOS Software router- and switch-based networks, and provide security services based on Cisco IOS Software.
» Learn More
Deploying Cisco ASA Firewall Solutions (FIREWALL)
This five-day instructor-led course is aimed at providing network security engineers with the knowledge and skills that are needed to implement and maintain perimeter solutions that are based on Cisco ASA security appliances.
» Learn More
Deploying Cisco ASA VPN Solutions (VPN)
This five-day course is amied at choosing, configuring, and troubleshooting the majority of Cisco ASA adaptive security appliance remote access and site-to-site VPN features to reduce risk to IT infrastructure and its applications.
» Learn More
Implementing Cisco Intrusion Prevention System (IPS)
This five-day instructor-led course is aimed at providing network security engineers with the knowledge and skills needed to deploy Cisco IPS-based security solutions.
» Learn More
Self-Study Materials
The following resources are suggested study supplements; they are not designed to serve as a complete self-study program.
- CCNP Security Syllabus
- 642-637 SECURE Exam Topics
- 642-618 FIREWALL Exam Topics
- 642-648 VPN Exam Topics
- 642-627 IPS Exam Topics
- Cisco Learning Network - A variety of self-study materials can be found here.
Community-Generated Content
Learning Partner Content
- Partners: Log in for Partner Education Connection (PEC) curricula.
- Learning Partner Lounges - Find materials provided by Cisco Authorized Learning Partners.
To earn this Cisco certification, you must pass the following exam(s):
642-637 SECURE
The Securing Networks with Cisco Routers and Switches (SECURE v1.0) exam is associated with the CCSP and CCNP Security certifications. This exam tests a candidate's knowledge and skills needed to secure Cisco IOS Software router and switch-based networks, and provide security services based on Cisco IOS Software. Candidates can prepare for this exam by taking the Securing Networks with Cisco Routers and Switches course.
- Learn more about the 642-637 SECURE exam
- Register for the exam
- Read current exam policies and requirements
642-618 FIREWALL
Deploying Cisco ASA Firewall Solutions (FIREWALL) exam is associated with the CCSP, CCNP Security and Cisco ASA Specialist certifications. This exam tests a candidate's knowledge and skills needed to implement and maintain Cisco ASA-based perimeter solutions. Successful candidates will be able to reduce risk to the IT infrastructure and applications using Cisco ASA features, and provide detailed operations support for the Cisco ASA. Candidates can prepare for this exam by taking the Deploying Cisco ASA FIREWALL course.
- Learn more about the 642-618 FIREWALL exam
- Register for the exam
- Read current exam policies and requirements
642-648 VPN
Deploying Cisco ASA VPN Solutions (VPN) exam is associated with the CCSP, CCNP Security, Cisco ASA Specialist and Cisco IPS Specialist certifications. This exam tests a candidate's knowledge and skills needed to deploy Cisco ASA-based VPN solutions. Successful candidates will be able to reduce risk to the IT infrastructure and applications using Cisco ASA VPN features, and provide detailed operations support for the Cisco ASA. Candidates can prepare for this exam by taking the Deploying Cisco ASA VPN Solutions (VPN) course.
- Learn more about the 642-648 VPN exam
- Register for the exam
- Read current exam policies and requirements
642-627 IPS
Implementing Cisco Intrusion Prevention System v7.0 (IPS v7.0) exam is associated with the CCSP, CCNP Security and Cisco IPS Specialist certifications. This exam tests a candidate's knowledge and skills needed to deploy Cisco IPS-based security solutions. Successful graduates will be able to reduce risk to the IT infrastructure and applications using Cisco IPS features, and provide detailed operations support for the Cisco IPS. Candidates can prepare for this exam by taking the Implementing Cisco Intrusion Prevention System course.
- Learn more about the 642-627 IPS exam
- Register for the exam
- Read current exam policies and requirements
CCNP Security Certification Overview
Viewing this video requires the latest version of Adobe Flash Player with JavaScript enabled.