This five-day course is designed to cover best practices, theory, and design principles for security design, including traditional and modern security principles such as security design specifics for campus and branch, enterprise wide area network (WAN), service provider WAN, and data center deployments. This course also includes design principles for security management, automation, and virtualization.

• Identify high level security challenges with different design architectures.
• Explain the value of implementing security solutions in any network design.
• Identify key factors in Juniper Networks security focus.
• List and describe the security platforms and solutions offered by Juniper
Networks.
• Perform the steps necessary to identify customer security requirements.
• Explain what is required to define the scope of the security design.
• Identify the data required to perform a data analysis of the customer’s existing
network and use that information in the design.
• Describe traditional security practices used to secure a network.
• Explain the added capabilities that next generation firewalls provide.
• Explain the evolution of modern security models.
• Describe intelligent networks.
• Explain how Software-Defined Secure Networking improves security in network
design.
• Explain the need for centralized Security Management.
• Describe what Junos Space Security Director can do to manage network
security.
• Describe the function of Juniper Secure Analytics in managing network security.
• List the main components of the Juniper Automation Stack.
• Explain Juniper Networks automation solutions.
• Describe the benefits of automating security.
• Describe how security works in a virtualized environment.
• Explain the benefits of service chaining.
• Describe Juniper Virtual SRX and Container SRX products.
• Describe network virtualization with VMware NSX.
• Describe the benefits of HA with security devices.
• Discuss how to handle asymmetric traffic with security devices.
• Describe different options for SRX chassis cluster deployments.
• Describe the main security concerns for the campus and the branch networks.
• Explain end-to-end security concepts.
• Describe security functions at different network layers.
• Explain network authentication and access control concepts.
• Describe common campus and branch network security design examples.
• Describe security considerations for the enterprise WAN.
• Explain when to use IPsec and NAT in the enterprise WAN.
• Explain virtual router applications for the enterprise WAN.
• Discuss security best practices in the enterprise WAN.
• Describe security in the service provider WAN.
• Discuss security best practices for the service provider WAN.
• Discuss the security requirements and design principles of the data center.
• Describe the security elements of the data center.
• Describe network security implementation options in the data center.
• Discuss network security functionality in the data center.

• Knowledge of network security concepts, including:
• Traditional and next-generation firewalls;
• IPsec VPNs;
• Network Address Translation (NAT); and
• Security intelligence.
• Knowledge of Juniper Networks products and solutions.
• Network automation and virtualization concepts.
• Basic knowledge of hypervisors and high availability concepts.
• Completion of the Juniper Networks Design Fundamentals (JNDF) course.

This course is targeted specifically for those who have a solid understanding of operation and configuration and are looking to enhance their skill
sets by learning the principles of security design.