Prerequisites:

The knowledge and skills that the learner should have before attending this course are as follows:

• One-year experience on Check Point products. Working knowledge of Windows, UNIX, networking technology, the Internet and TCP/IP is recommended.

Course Objectives:

Upon completing this course, the learner will be able to meet these overall objectives:

Security Administrator

• Describe the primary components of a Check Point Three-Tier Architecture and explain how they work together in the Check Point environment.
• Identify the basic workflow to install Security Management Server and Security Gateway for a single-domain solution
• Create SmartConsole objects that correspond to the organization?s topology for use in policies and rules.
• Identify the tools available to manage Check Point licenses and contracts, including their purpose and use.
• Identify features and capabilities that enhance the configuration and management of the Security Policy.
• Demonstrate an understanding of Application Control & URL Filtering and Autonomous Threat Prevention capabilities and how to configure these solutions to meet an organization?s security requirements.
• Describe how to analyze and interpret VPN tunnel traffic.
• Identify how to monitor the health of supported Check Point hardware using the Gaia Portal and the command line.
• Describe the different methods for backing up Check Point system information and discuss best practices and recommendations for each method.

Security Expert

• Identify the types of technologies that Check Point supports for automation.
• Explain the purpose of the Check Management High Availability (HA) deployment.
• Explain the basic concepts of Clustering and ClusterXL, including protocols, synchronization, and connection stickyness.
• Explain the purpose of dynamic objects, updatable objects, and network feeds.
• Describe the Identity Awareness components and configurations.
• Describe different Check Point Threat Prevention solutions.
• Articulate how the Intrusion Prevention System is configured.
• Explain the purpose of Domain-based VPNs
• Describe situations where externally managed certificate authentication is used.
• Describe how client security can be provided by Remote Access.
• Discuss the Mobile Access Software Blade.
• Define performance tuning solutions and basic configuration workflow.
• Identify supported upgrade methods and procedures for Security Gateways.