JNCIP-SEC (Security)
Designed for experienced networking professionals with advanced knowledge of the Juniper Networks Junos OS for SRX Series devices, this written exam verifies the candidate’s understanding of advanced security technologies and related platform configuration and troubleshooting skills.
All Courses Idea
JNCIP-SEC exam topics are based on the content of the recommended instructor-led training courses, as well as the additional resources.
- Exam code: JN0-635
- Written exam
- Administered by Pearson VUE
- Exam length: 120 minutes
- Exam type: 65 multiple choice questions
- Pass/fail status is available immediately
Describe the concepts, operation, or functionality of firewall filters and ACLs
- Selective packet processing
- Troubleshooting with firewall filters
- Filter-based forwarding
Given a scenario, demonstrate how to configure, troubleshoot, or monitor firewall filters
Given a scenario, demonstrate how to troubleshoot or monitor security policies or security zones
- Tools
- Logging and tracing
- Other outputs
Describe the concepts, operation, or functionality of Juniper ATP
- Collectors
- Custom rules
- Mitigation
Given a scenario, demonstrate how to configure or monitor Juniper ATP
Describe the concepts, operation, or functionality of edge security features
- Hardware support
- SecIntel
- IPS
- Corero DDoS mitigation
- ATP
Describe the concepts or operation of security compliance
- RBAC
- Security Director
- AAA and SAML integration
Describe the concepts, operation, or functionality of threat mitigation
- Malware identification or mitigation
- Malicious lateral traffic identification or mitigation
- Zero trust micro segmentation
Given a scenario, demonstrate how to configure or monitor threat mitigation
Describe the concepts, operation, or functionality of the logical systems
- Administrative roles
- Security profiles
- LSYS communication
Describe the concepts, operation, or functionality of the tenant systems
- Master and tenant admins
- TSYS capacity
Describe the concepts, operation, or functionality of Layer 2 security
- Transparent mode
- Mixed mode
- Secure wire
- MACsec
Given a scenario, demonstrate how to configure or monitor Layer 2 security
Describe the concepts, operation, or functionality of advanced NAT functionality
- Persistent NAT
- DNS doctoring
- IPv6 NAT
Given a scenario, demonstrate how to configure, troubleshoot, or monitor advanced NAT scenarios
Describe the concepts, operation, or functionality of advanced IPsec application
- Remote access VPNs
- Hub-and-spoke VPNs
- PKI
- ADVPNs
- Routing with IPsec
- Overlapping IP addresses
- Dynamic gateways
- IPsec CoS
Given a scenario, demonstrate how to configure, troubleshoot, or monitor advanced IPsec functionality