JNCIP-SEC (Security)

JNCIP-SEC (Security)

Designed for experienced networking professionals with advanced knowledge of the Juniper Networks Junos OS for SRX Series devices, this written exam verifies the candidate’s understanding of advanced security technologies and related platform configuration and troubleshooting skills.

 

All Courses Idea

JNCIP-SEC exam topics are based on the content of the recommended instructor-led training courses, as well as the additional resources.

  • Exam code: JN0-635
  • Written exam
  • Administered by Pearson VUE
  • Exam length: 120 minutes
  • Exam type: 65 multiple choice questions
  • Pass/fail status is available immediately

Describe the concepts, operation, or functionality of firewall filters and ACLs

  • Selective packet processing
  • Troubleshooting with firewall filters
  • Filter-based forwarding

Given a scenario, demonstrate how to configure, troubleshoot, or monitor firewall filters

Given a scenario, demonstrate how to troubleshoot or monitor security policies or security zones

  • Tools
  • Logging and tracing
  • Other outputs

Describe the concepts, operation, or functionality of Juniper ATP

  • Collectors
  • Custom rules
  • Mitigation

Given a scenario, demonstrate how to configure or monitor Juniper ATP

Describe the concepts, operation, or functionality of edge security features

  • Hardware support
  • SecIntel
  • IPS
  • Corero DDoS mitigation
  • ATP

Describe the concepts or operation of security compliance

  • RBAC
  • Security Director
  • AAA and SAML integration

Describe the concepts, operation, or functionality of threat mitigation

  • Malware identification or mitigation
  • Malicious lateral traffic identification or mitigation
  • Zero trust micro segmentation

Given a scenario, demonstrate how to configure or monitor threat mitigation

Describe the concepts, operation, or functionality of the logical systems

  • Administrative roles
  • Security profiles
  • LSYS communication

Describe the concepts, operation, or functionality of the tenant systems

  • Master and tenant admins
  • TSYS capacity

Describe the concepts, operation, or functionality of Layer 2 security

  • Transparent mode
  • Mixed mode
  • Secure wire
  • MACsec

Given a scenario, demonstrate how to configure or monitor Layer 2 security

Describe the concepts, operation, or functionality of advanced NAT functionality

  • Persistent NAT
  • DNS doctoring
  • IPv6 NAT

Given a scenario, demonstrate how to configure, troubleshoot, or monitor advanced NAT scenarios

Describe the concepts, operation, or functionality of advanced IPsec application

  • Remote access VPNs
  • Hub-and-spoke VPNs
  • PKI
  • ADVPNs
  • Routing with IPsec
  • Overlapping IP addresses
  • Dynamic gateways
  • IPsec CoS

Given a scenario, demonstrate how to configure, troubleshoot, or monitor advanced IPsec functionality