Technology
Microfine™ Granularity
Adaptive Threshold Estimation
Virtual Identifiers
Scan Prevention
Source Tracking
Protocol Anomaly
Custom ASICs
White Papers
FAQs
Overview Presentation
DoS Articles
 

IntruGuard Certified DDoS Mitigation Engineer (ICDME)

Put your knowledge and experience to the test. Achieve ICDME certification and accelerate your career.

Benefits of ICDME Membership

Once you’re certified, make sure you’re familiar with the resources and benefits available to certified ICDMEs:

ICDME Plaque and Certificate
As an official ICDME, you will receive an engraved plaque and certificate, shipped to the address listed in your profile within 10-12 weeks. Please make sure your contact information is up-to-date.

Discussion Forums
ICDMEs are invited to participate in several discussion forums:

ICDME Technical Exchange: an online forum restricted to active ICDMEs for expert-level discussion of DDoS Mitigation solutions and product issues. IntruGuard will introduce you to an online community for networking professionals for sharing questions, suggestions and information.

Exam Objectives

Training is not the ICDME program objective. Rather, the focus is on identifying experts capable of understanding and navigating the subtleties, intricacies and challenges of DDoS mitigation. To become certified, you must pass both a written qualification exam AND the corresponding oral exam. This section provides general information on CCIE exams; detailed information on the topics covered in the exams is found in the Track Details.

The ICDME certification validates the ability to install, configure, operate, and troubleshoot medium-size data centers installations of IntruGuard products. The curriculum includes basic mitigation of security threats.

Exam Outline:

  • Fundamentals and Concepts of firewall, IPS, Switches, Routers and DDos attacks and mitigation
  • Installation and Initial Configuration of IntruGuard IG200/2000
  • User Authentication, Mutli-VID, Network Scan, Port Scan, Dark Address Scan,
  • Access Control Lists (ACLs)
  • Configuration of Thresholds
  • Interpreting Events
  • Diagnostics
  • Archive, restore, administrative tasks

 

 

Sample Questions:

1. Which of the following is NOT a way to set thresholds?

  • Using One-Click Threshold Wizard
  • Manually setting each Threshold
  • Using SNMP Manager
  • Setting All Thresholds to factory defaults.

2. What is a prerequisite for running one-click wizard?

  • Setting of at least one threshold
  • Setting of access control lists
  • Generation of Traffic Statistics Reports
  • All of the above.

3. Adaptive Limit ensures

  • Thresholds are kept below minimum thresholds
  • Thresholds are kept above minimum thresholds
  • Thresholds are kept below Adaptive Limit
  • Thresholds are kept at Adaptive Limit.

4. ACL for denying a source is a

  • A per VID operation
  • Operation that affects globally
  • Can be done independently on a per VID basis and globally as well
  • Cannot be done with current software/firmware release

5. An admin wants to deny a whole subnet. ACL – deny source allows only specific IP addresses to be added. What’s her next choice to achieve the results:

  • Use VIDs
  • Use port scan feature
  • Use dark address scan feature
  • Use network scan feature


Want to get more details:

Click here.

Pictures from a recent award ceremony.