Basic networking knowledge: Understanding IP addressing, routing, and network protocols.
Experience with firewalls and security solutions: While not mandatory, familiarity with basic firewall and security concepts will be helpful.
The CCSA certification is designed for network security administrators who work with Check Point products. This certification provides foundational knowledge in configuring and managing Check Point’s security solutions and prepares candidates for real-world security management tasks
Introduction to Check Point Security Architecture
Overview of Check Point’s security solutions.
Basic concepts of firewall architecture and security policy.
Understanding the Check Point Security Management architecture (Security Gateway, Security Management Server, and SmartConsole).
Check Point Security Gateway Installation and Configuration
Installing and configuring Check Point Security Gateway on Gaia.
Basic networking and firewall concepts.
Configuring network interfaces, routing, and basic network topology.
Firewall Policy and Rule Base Configuration
Introduction to Security Policies and rule base concepts.
Creating and managing firewall rules to control traffic.
Working with objects, address translations, and services in policy rules.
User Authentication and Identity Awareness
Configuring user authentication methods (LDAP, Radius).
Implementing Identity Awareness for controlling access to resources.
Enabling UserCheck for user feedback and notification.
Network Address Translation (NAT)
Configuring source and destination NAT.
Understanding NAT types (Static, Hide, Manual).
NAT debugging and troubleshooting.
VPN (Virtual Private Network) Configuration
Introduction to site-to-site VPNs.
Configuring VPN communities, gateways, and encryption settings.
Basic VPN troubleshooting and monitoring.
Threat Prevention and Security Features
Enabling and configuring intrusion prevention system (IPS) and antivirus.
Understanding and configuring URL filtering, Application Control, and Anti-Bot.
Basic introduction to Check Point's ThreatCloud and security intelligence.
Monitoring and Troubleshooting
Using SmartView for monitoring traffic, events, and logs.
Troubleshooting tools like SmartLog, SmartView Monitor, and CPview.
Managing logs and interpreting firewall logs.
Backups and Recovery
Configuring backup policies for Check Point devices.
Restoring configurations and recovering from system failures.
Labs:
Security Gateway installation and configuration.
Policy rule creation and management.
Configuring NAT, VPN, and Identity Awareness.
Setting up basic Threat Prevention features (IPS, Antivirus).
Monitoring traffic and troubleshooting security issues.