From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 3 Endpoint Protection and Secure Access
Unlock this course with a free trial
Join today to access over 22,600 courses taught by industry experts.
Antimalware
- [Instructor] We're now going to begin to look at some end point security fundamentals, specifically using the Cisco AMP for Endpoints solution. Protection on the endpoints themselves, is another important piece of our overall security picture. And AMP allows us to track and secure our endpoints in a specific and targeted manner. Let's first talk about the anti-malware features of Cisco AMP. Each endpoint that we have under the control of AMP, would have a lightweight AMP connector installed which is compatible with many operating systems including Windows, Linux, Mac, Android, and iOS. This allows AMP to continually monitor the file and the process activity on the endpoints for malware. And in fact, inside of AMP, if we go to the management tab at the top and we click on the download connector area, this is going to show us our different connectors that we can install on our endpoints. There are two types of policies that we have by default, which are audit policies and protect…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
(Locked)
Antimalware6m 8s
-
(Locked)
Retrospective security4m 59s
-
(Locked)
Indication of compromise (IOC)7m 3s
-
(Locked)
Antivirus4m 22s
-
Dynamic file analysis4m 39s
-
Endpoint device management3m 50s
-
(Locked)
Asset inventory6m 43s
-
(Locked)
Mobile device management (MDM)7m 16s
-
(Locked)
Multifactor authentication (MFA)5m 17s
-
(Locked)
Endpoint posture assessment6m 1s
-
(Locked)
Endpoint patching5m 16s
-
(Locked)
-
-