Kaspersky for Business

Partner Training &

Certification Guide
United Partner Program, 2019

This guide describes the certification requirements of the United Partner

Program, provides a list of relevant exams and corresponding learning
content.

01.02.2019
Kaspersky for Business

Table of Contents

Partner Program Certification Requirement .................................................................................................................1

Certification Requirements for Partner Status ...........................................................................................................1
List of Exams to Acquire Certificates counted towards Partner Status .....................................................................1
Partner Specializations Certification Requirement .......................................................................................................3
Hybrid Cloud Security Specialization ........................................................................................................................4
Threat Management & Defense Specialization .........................................................................................................6
Threat Intelligence Specialization ..............................................................................................................................7
Industrial Cybersecurity Specialization ......................................................................................................................8
Fraud Prevention Specialization ................................................................................................................................9
Managed Services Provider Specialization .............................................................................................................10
Technical Support Specialization ............................................................................................................................11
Exams counted towards Partner Status only ..............................................................................................................12
Exams recommended for Self-education ................................................................................................................13
Learning details...........................................................................................................................................................14
002 Kaspersky Endpoint Security and Management. Fundamentals .....................................................................14
005 Kaspersky Security for Windows Server ..........................................................................................................16
014 Kaspersky Hybrid Cloud Security. Virtualization. Agentless ............................................................................19
020 Kaspersky Hybrid Cloud Security. Public cloud protection ..............................................................................21
031 Kaspersky Hybrid Cloud Security. Virtualization. Light Agent ..........................................................................23
025 Kaspersky Anti Targeted Attack Platform, Kaspersky Endpoint Detection and Response ..............................25
040 Kaspersky Endpoint Security Cloud .................................................................................................................27
302 Kaspersky Endpoint Security and Management. Advanced ............................................................................28
Exams Q&A ................................................................................................................................................................29

Important notes

All links provided in this guide are relevant if your partner portal domain is https://www.kasperskypartners.com/.
Please make sure you are logged in to the partner portal before opening any further links in the document.
Kaspersky for Business

Partner Program Certification Requirement

Certification Requirements for Partner Status
Certification requirements for Partner Status acquiring slightly vary between regions.

Regions: Europe, Latin America

REGISTERED SILVER GOLD PLATINUM

Minimum number of “Sales Specialist” not required 1 2 3

Certificates

Minimum number of “Certified not required 1 2 3

Professional” Certificates

Regions: North America, META, APAC

REGISTERED SILVER GOLD PLATINUM

Minimum number of “Sales Specialist” not required 1 2 3

Certificates

Minimum number of “Certified not required not required 2 3

Professional” Certificates

List of Exams to Acquire Certificates counted towards

Partner Status

Sales Specialist Certification Exams Certified Professional Certification Exam

002. Exam: Kaspersky Endpoint Security and Management

S02. Exam: Kaspersky Endpoint Security for Fundamentals
Business
005. Exam: Kaspersky Security for Windows Server

020. Exam: Kaspersky Hybrid Cloud Security. Public Cloud

Protection.
S20. Exam: Kaspersky Hybrid Cloud Security
014. Exam: Kaspersky Security for Virtualization. Agentless

031. Exam: Kaspersky Security for Virtualization. Light Agent

S25. Exam: Kaspersky Threat Management 025. Exam: Kaspersky Anti Targeted Attack Platform &
and Defense Kaspersky Endpoint Detection and Response

1
Kaspersky for Business

S38. Exam: Kaspersky Industrial

CyberSecurity 038. Exam: Kaspersky Industrial CyberSecurity

S39. Exam: Kaspersky Threat Intelligence 039. Exam: Kaspersky Threat Intelligence
S40. Exam: Kaspersky Endpoint Security
Cloud 040. Exam: Kaspersky Endpoint Security Cloud

S41. Exam: Kaspersky Security for Microsoft

Office 365 041. Exam: Kaspersky Security for Microsoft Office 365

S90. Exam: Kaspersky Fraud Prevention 090. Exam: Kaspersky Fraud Prevention

2
Kaspersky for Business

Partner Specializations Certification

Requirement
Certification Requirements for Partner Specializations
Solution Managed Services Technical Support
Specializations Provider (MSP)

Minimum number of “Sales 2 See details here No specific

Specialist” Certificates requirements.
See details here
Minimum number of “Certified 1
Professional” Certificates

Minimum number of “System Not required Not required 2

Engineer” Certificates

Later in this Guide you can find lists of exams Solution Specializations
relevant for each Specialization.  Hybrid Cloud Security
 Threat Management & Defense
 Industrial CyberSecuirty
 Fraud Prevention
 Threat Intelligence

Services Specializations
 Managed Services Provider
 Technical Support

3
Kaspersky for Business

Hybrid Cloud Security Specialization

With businesses running different workloads in different environments, Kaspersky Hybrid Cloud
Security helps your customers to protect all their workloads, across all their environments –
including physical and virtual machines – in their own data centers or private clouds or in public
clouds.

Certification requirements
The partner should employ:
 2 Kaspersky Hybrid Cloud Security Sales Specialists
 1 Kaspersky Hybrid Cloud Security. Virtualization. Agentless Certified Professional
or 1 Kaspersky Hybrid Cloud Security. Virtualization. Light Agent Certified Professional
or 1 Kaspersky Hybrid Cloud Security. Public Cloud Protection Certified Professional

Required Exam Featured Corresponding Course Options

technologies course

Sales Specialist Accreditation

S20 Kaspersky Hybrid Cloud Kaspersky Hybrid S20 Kaspersky Hybrid Online course
Security Cloud Security Cloud Security

Questions - 15
Duration – 100 min

Take the exam

Certified Professional accreditation (you can choose any of the exams below)

020 Kaspersky Hybrid Cloud Kaspersky Hybrid 020 Kaspersky Hybrid Self-study
Security. Public Cloud Cloud Security Cloud Security. Public
Protection for Public Cloud Cloud Protection 1-day Instructor-led training
at Authorized Training
Questions - 29 Course Description Centers1
Duration – 30 min

Take the exam Course Materials

014 Kaspersky Hybrid Cloud Kaspersky 014 Kaspersky Hybrid Self-study

Security. Virtualization. Security for Cloud Security.
Agentless Virtualization Virtualization. 1-day Instructor-led training
Agentless Agentless at Authorized Training
Questions - 25 Centers
Kaspersky
Duration – 35 min Course Description
Security Center
Course Materials
Take the exam

1 Ask local Kaspersky Lab representative about availability of this course through ATC in your country
4
Kaspersky for Business

031 Kaspersky Hybrid Cloud Kaspersky 031 Kaspersky Hybrid Self-study

Security. Virtualization. Light Security for Cloud Security.
Agent Virtualization Virtualization. Light 1-day Instructor-led training
Light Agent Agent at Authorized Training
Questions - 30 Centers
Kaspersky
Duration – 45 min Course Description
Security Center Course Materials
Take the exam

5
Kaspersky for Business

Threat Management & Defense

Specialization
To guard against advanced cyberattacks, your customers need to implement additional levels of
security at the endpoint plus specialist protection against sophisticated threats, such as targeted
attacks. We offer solutions for Endpoint Detection & Response, plus Anti-Targeted Attack
protection.

Certification requirements
The partner should employ:

 Two Kaspersky Threat Management and Defense Sales Specialists

 One Kaspersky Anti Targeted Attack Platform, Endpoint Detection and Response Certified Professional

Required Exam Featured Corresponding course Course Options

products

Sales Specialist Accreditation

S25 Kaspersky Threat Kaspersky Anti S25 Kaspersky Threat Online course
Management and Defense Targeted Attack Management and Defense
Platform
Questions - 15
Duration – 100 min Kaspersky
Endpoint Detection
Take the exam and Response

Certified Professional accreditation

025 Kaspersky Anti Targeted
Attack Platform, Kaspersky
Endpoint Detection and
Response
Questions - 25
Duration – 40 min
Take the exam
Kaspersky Anti 025 Kaspersky Anti Self-study
Targeted Attack Targeted Attack Platform
Platform Kaspersky Endpoint For instructor-led course
Detection and Response access contact your local
Kaspersky
Kaspersky Lab
Endpoint Detection
Course Description representative or
and Response
education@kaspersky.com
Course Materials

6
Kaspersky for Business

Threat Intelligence Specialization

When you sell our wide range of threat intelligence services, you help your customers to ensure
their IT security teams are better equipped in the fight against cyberattacks. By accessing our
latest intelligence, your customers can gain a valuable insight into the methods, tactics and
tools that attackers are using.

Certification requirements
The partner should employ:

 Two Kaspersky Threat Intelligence Sales Specialists

 One Kaspersky Threat Intelligence Certified Professional

Required Exam Featured products Corresponding course Course Options

Sales Specialist accreditation

S39 Kaspersky Threat Kaspersky Threat S39 Kaspersky Threat Will be provided
Intelligence Intelligence Intelligence soon
Questions - 10
Duration – 100 min

Take the exam

Certified Professional accreditation

039 Kaspersky Threat Kaspersky Threat 039 Kaspersky Threat Online course
Intelligence Intelligence Intelligence
Questions - 20
Duration – 25 min

Take the exam

or find it here

7
Kaspersky for Business

Industrial Cybersecurity Specialization

Industrial control and production systems that were previously regarded as safe from attack are
increasingly being targeted by cybercriminals. Kaspersky Industrial CyberSecurity helps
businesses to protect their industrial systems on the ‘factory floor’.

Certification requirements
The partner should employ:

 Two Kaspersky Industrial CyberSecurity Sales Specialists

 One Kaspersky Industrial CyberSecurity Certified Professional

Required Exam Featured products Corresponding course Course Options

Sales Specialist accreditation

S38 Kaspersky Industrial Kaspersky Industrial S38 Kaspersky Industrial Will be provided
CyberSecurity CyberSecurity CyberSecurity soon
Questions - 15
Duration – 100 min

Take the exam

Certified Professional accreditation

038 Kaspersky Industrial Kaspersky Industrial 038 Kaspersky Industrial Online course
CyberSecurity CyberSecurity CyberSecurity
Questions - 20
Duration – 30 min

Take the exam

or find it here

8
Kaspersky for Business

Fraud Prevention Specialization

Kaspersky Fraud Prevention uses machine learning and advanced intelligence to help
businesses including financial services, retail, healthcare and gambling to protect against fraud,
while also reducing operating costs and improving the user experience’ for the business’s
customers.

Certification requirements
The partner should employ:

 Two Kaspersky Fraud Prevention Sales Specialists

 One Kaspersky Fraud Prevention Certified Professional

Required Exam Featured products Corresponding course Course Options

Sales Specialist accreditation

S90 Kaspersky Fraud Kaspersky Fraud S90 Kaspersky Fraud Online course
Prevention Prevention Prevention
Questions - 15
Duration – 100 min

Take the exam

Certified Professional accreditation

090 Kaspersky Fraud Kaspersky Fraud 090 Kaspersky Fraud Not ready yet. Will
Prevention Prevention Prevention be available soon

9
Kaspersky for Business

Managed Services Provider Specialization

Certification requirements
 Partner should employ at least one person who attain a Certified Professional technical accreditation.
 Sales people need to study MSP Program video

Required Exam Featured products Corresponding course Course Options

Certified Professional accreditation (you can choose any of two exams below)

040 Kaspersky Endpoint Kaspersky Endpoint 040 Kaspersky Endpoint Self-study

Security Cloud Security Cloud Security Cloud
1-day Instructor-led
Questions - 20
Course Description training
Duration – 30 min
at Authorized Training
Centers2
Take the exam
Course Materials

012 Kaspersky Security
Center for Managed
Services Providers
Questions - 20
Duration – 30 min
Kaspersky Security 012 Kaspersky Security Online course
Center Center for Managed
Services Providers

Take the exam

or find it here

Recommended Learning for Technical roles

Not available Integration with 121 Kaspersky Security Online course

RMM/PSA platform Integrations for MSP

Mandatory Learning for Sales roles

Not available General MSP Program video

2 Ask local Kaspersky Lab representative about availability of this course through ATC in your country
10
Kaspersky for Business

Technical Support Specialization

Technical Support Specialization is intended for partners who want to provide the high-qualified post-sales
technical assistance to their customers when facing product malfunctions and specific related issues..

Certification requirements
The partner should have

 Gold or Platinum status within Partner Program

 2 or more technical specialists with KL Certified System Engineer accreditation.

Required Exam Featured products Corresponding course Course options

302 Kaspersky Endpoint Kaspersky Security 302 Kaspersky Endpoint Self-study

Security and Management. Center & Kaspersky Security and
Advanced Skills Endpoint Security for Management. Advanced 1-day Instructor-led
Windows. Deployment in training
Questions – 20
Enterprise infrastructure Course Description at Authorized
Duration – 40 min
Training Centers3
IMPORTANT! You can take
this exam only in case you
have successfully passed the Course Materials
exam 002 Kaspersky Endpoint
Security and Management

Register for exam

The partner’s specialists should then pass the exam on CSS Remedy system. Access to the corresponding training
and exam is provided by request.

3 Ask local Kaspersky Lab representative about availability of this course through ATC in your country
11
Kaspersky for Business

Exams counted towards Partner Status only

Selective Exams Featured products Corresponding course Course options

Sales Specialist Accreditation

S02 Kaspersky Endpoint
Security for Business
Questions - 15
Duration – 100 min
Take the exam
Kaspersky Security S02 Kaspersky Endpoint Online course
Center Security for Business
Kaspersky Endpoint
Security

S41 Kaspersky Security for Kaspersky Security S41Kaspersky Security Online course
Microsoft Office 365 for Microsoft Office for Microsoft Office 365
365
Questions - 15
Duration – 100 min
Take the exam

S40 Kaspersky Endpoint Kaspersky Endpoint S40 Kaspersky Endpoint Online course
Security Cloud Security Cloud Security Cloud
Questions - 10
Duration – 20 min
Take the exam

Certified Professional accreditation

002 Kaspersky Endpoint Kaspersky Security 002 Kaspersky Endpoint Self-study

Security and Management. Center Security and
Fundamentals Management. 3-day Instructor-led training
Kaspersky Endpoint
Fundamentals at Authorized Training
Questions - 50 Security
Centers4
Duration – 70 min
Course Description
Take the exam Course Materials

005 Kaspersky Security for Kaspersky Security KL 005 Kaspersky Self-study

Windows Server for Windows Server Security for Windows
Server 2-day Instructor-led training
Questions - 35
at Authorized Training
Duration – 60 min
Course Description Centers
Take the exam
Course Materials

041 Kaspersky Security for Kaspersky Security 041 Kaspersky Security Online course
Microsoft Office 365 for Microsoft Office for Microsoft Office 365
365
Questions - 15
Duration – 20 min
Take the exam
or find it here

4 Ask local Kaspersky Lab representative about availability of this course through ATC in your country
12
Kaspersky for Business

Exams recommended for Self-education

Required Exam Featured products Corresponding course Course options

008 Kaspersky Endpoint Kaspersky Endpoint KL 008.104: Kaspersky Self-study

Security and Security for Windows Endpoint Security and
Management. Encryption Management. Encryption Online course
Kaspersky Security
Questions - 20 Center
Course Description 1-day Instructor-led
Duration – 30 min
training at Authorized
Training Centers5
Take the exam
Course Materials

5 Ask local Kaspersky Lab representative about availability of this course through ATC in your country
13
Kaspersky for Business

Learning details
002 Kaspersky Endpoint Security and
Management. Fundamentals
The course prepares for planning, deployment and maintenance of Windows network protection systems based on
Kaspersky Endpoint Security and managed via Kaspersky Security Center. It tells about those solutions that can help
to protect a network of approximately up to 1000 endpoints in a single location. Endpoints in this course are servers
and workstations running Windows.
The lectures and laboratory sessions provide the audience with the necessary knowledge and skill to be able to:

 Describe the capabilities of Kaspersky Endpoint Security for Windows and Kaspersky Security Center
 Plan and implement an optimal Windows network protection solution based on Kaspersky Endpoint
Security and managed via Kaspersky Security Center
 Administer the deployed system

Target Audience
Microsoft Windows network administrators, information security specialists, technical support engineers, presales
engineers

Covered Technologies
 Kaspersky Security Center
 Kaspersky Endpoint Security

Course description
Unit I. Deployment
 Introduction. Basics of Kaspersky Endpoint Security for Business
 Chapter 1. How to deploy Kaspersky Endpoint Security for Business
 Chapter 2. How to install Kaspersky Security Center
 Chapter 3. How to install Kaspersky Endpoint Security on computers
 Chapter 4. How to organize computers into groups
– Lab 1.1: Install Kaspersky Security Center
– Lab 1.2: Install Kaspersky Endpoint Security
– Lab 1.3 Install Kaspersky Endpoint Security for Windows locally
– Lab 1.4 Create a structure for the managed computers

Unit II. Protection Management

 Chapter 1. How Kaspersky Endpoint Security protects computers
 Chapter 2. How to configure file protection
 Chapter 3. How to configure protection against network threats
 Chapter 4. How to configure protection against sophisticated threats
 Chapter 5. How to control network connections
 Chapter 6. How to protect a computer outside the network
 Chapter 7. What else is there in protection and why
14
Kaspersky for Business

– Lab 2.1 Configure File Threat Protection

– Lab 2.2 Configure Virus Scan tasks
– Lab 2.3 Configure exclusions for a folder
– Lab 2.4. Configure Mail Threat Protection
– Lab 2.5. Configure exclusions for Web Threat Protection
– Lab 2.6. Configure protection against ransomware
– Lab 2.7. Configure Network Threat Protection
– Lab 2.8. Configure Firewall for an out-of-office policy
– Lab 2.9. Configure exclusions from self-defense
– Lab 2.10. Configure password protection

Unit III. Security Controls

 Chapter 1. General
 Chapter 2. Application Control
 Chapter 3. Device Control
 Chapter 4. Web Control
– Lab 3.1. Configure Application Control
– Lab 3.2. Block start of unknown applications in the network
– Lab 3.3. Block USB flash drives
– Lab 3.4. Configure access rights for USB flash drives
– Lab 3.5. Configure Web Access Control

Unit IV. Maintenance

 Chapter 1. How to maintain protection
 Chapter 2. What to do daily
 Chapter 3. What to do if something has happened
 Chapter 4. What to do from time to time
– Lab 4.1 Configure the dashboard
– Lab 4.2 Configure maintenance tools
– Lab 4.3 Collect trace logs
– Lab 4.4 Back up and restore Kaspersky Security Center data

Prerequisites
To be able to master the course and efficiently fulfill the laboratory work, the students must possess the following
knowledge and skills:

 Understanding of TCP/IP, the Internet and e-mail operating principles, basic skills in administering
Microsoft Windows networks and Active Directory
 Experience with Microsoft Windows operating systems

Course Options
Self-study
 Student Guide
 Lab Guide

3-day Instructor-led training at Authorized Training Centers

15
Kaspersky for Business

005 Kaspersky Security for Windows Server

This course educates engineers how to deploy, configure and maintain Kaspersky Security for Windows Server at
midsize or large enterprises.

The training describes the actions to be taken by the administrator step by step to successfully deploy and configure
the product in a corporate network. Special attention is paid to configuring Kaspersky Security for Windows Server
to solve specific tasks, for example, protection against crypto-ransomware, or deploying Default Deny policy, or
storage protection.

Labs demonstrate today’s methods of protecting an information system. The administrator manages the whole
infrastructure from the workstation through the Kaspersky Security Center Administration Console and Kaspersky
Security Console. Almost every section of the theoretical part of the course is accompanied by a hands-on lab where
you can put your knowledge into practice and get a real feel for how the product would perform.

Target Audience
The course is aimed at Microsoft Windows system administrators who have some experience with Kaspersky
Security Center, security experts and administrators, technical support, and presale engineers.

Covered Technologies
 Kaspersky Security for Windows Server

Course description
Unit I. General
 Main functions of Kaspersky Security for Windows Server
 Advantages of Kaspersky Security for Windows Server
 Specifics of Kaspersky Security for Windows Server
 How malware gets on a computer
 What malware does on a computer
 How KSWS protects against threats
 Protection components of Kaspersky Security for Windows Server
 Management components of Kaspersky Security for Windows Server
 Licensing
 System requirements

Unit II. Deployment

 Deployment order
 How to prepare Kaspersky Security Center Administration Server
 How to prepare the installation package of Kaspersky Security for Windows Server
 How to install Kaspersky Security for Windows Server
 How to install Kaspersky Security Console
 Configuring update and on-demand scan tasks

Unit III. File system protection

 File threat protection

 Protecting Docker containers
16
Kaspersky for Business

 Protecting the Windows Subsystem for Linux compatibility layer

 Protection against ransomware and blocking untrusted devices
 Protection for Remote Desktop Services

Unit IV. Remote Desktop Services

 Web Threat Protection
 Web Control
 Mail Threat Protection
 Operation modes of the Traffic Security component
 Exploit Prevention

Unit V. Server control components

 Applications Launch Control
 Device Control
 Firewall Management

Unit VI. System inspection

 File Integrity Monitor
 Log Inspection protection component
 Integration with SIEM

Unit VII. Storage protection

 Integration with storages
 Anti-Cryptor for NetApp
 ICAP + Squid

Unit VIII. Additional settings

 Service management
 Managing performance
 How to configure scanning for shared cluster resources
 Collecting diagnostic information
 How to check protection health

Prerequisites
Basic understanding of networking technologies: TCP/IP, DNS, email, web. Basic Windows Server
2008/2012/2016 and Linux managing skills. Basic knowledge of information security principles. Understanding of
contemporary threats and information technologies.

Course Options
Self-study
 Presentation
 Lab Guide

2-day Instructor-led training at Authorized Training Centers

17
Kaspersky for Business

008 Kaspersky Endpoint Security and

Management. Encryption
This course describes how to protect data using encryption tools implemented in Kaspersky Security Center and
Kaspersky Endpoint Security. The course consists of presentations and labs. Upon successful completion of this
course, students will be able to plan deployment of encryption, monitor the results and maintain correct work with
encrypted data.

Target Audience
Microsoft Windows network administrators, information security specialists, technical support engineers, presales
engineers and other specialists who use Kaspersky Security Center and Kaspersky Endpoint Security for Windows.

Covered Technologies
 Kaspersky Security Center
 Kaspersky Endpoint Security

Course description
Introduction
Chapter 1. Preparing to Enable Encryption
Chapter 2. Encryption of Hard Drives
Chapter 3. Disk Encryption Using BitLocker
Chapter 4. File and Folder Encryption
Chapter 5. Removable Drives Encryption
– Lab 1. Preparing to Enable Encryption
– Lab 2. Enabling Full Disk Encryption
– Lab 3. Computer Access Recovery
– Lab 4. Disk Encryption Using BitLocker
– Lab 5. Enabling File Level Encryption
– Lab 6. Exchanging Data with External Users
– Lab 7. Using Removable Drives in Portable Mode

Prerequisites
To be able to successfully master the course, the learners must have experience with Kaspersky Security Center
and Kaspersky Endpoint Security for Windows.

Course Options
Self-study
 Student Guide
 Lab Guide
 Online course

1-day Instructor-led training at Authorized Training Centers

18
Kaspersky for Business

014 Kaspersky Hybrid Cloud Security.

Virtualization. Agentless
The course is devoted to Kaspersky Hybrid Cloud Security. Virtualization. Agentless. This product is designed to
protect VMware vSphere virtual environments and allows considerably decreasing the deployment and support
expenses by removing the agent from the protected virtual machines.
The course instructs technical experts how to prepare the virtual environment and install KSV. Protection setup and
maintenance are covered.
Upon successful completion of this course, students will be able to:

 Describe the capabilities of Kaspersky Security for Virtualization and explain its advantages when
compared with the traditional protection solutions
 Deploy protection in a virtualized datacenter
 Configure protection policies and use the monitoring tools of Kaspersky Security Center and VMware
vSphere for maintenance

Target Audience
Customers and partners who use virtual environments

Covered Technologies
 Kaspersky Security for Virtualization. Agentless
 Kaspersky Security Center

Course description
Chapter 1. General
 What is NSX
 NSX as a Security Platform
 Kaspersky Security for Virtualization. Operation Principles
 Which Product to Select for Protecting a VMware Virtual Infrastructure

Chapter 2. Deployment
 Prepare Guest Operating System
 Prepare NSX for Installing the File Antimalware Protection Component
 Prepare NSX for Installing the Network Protection Component
 Register Kaspersky Security for Virtualization with NSX
 Install the Components of Kaspersky Security for Virtualization
 Initial Setup
 More About Deployment
– Lab 1. Configure NSX for the File Antimalware Protection Component of Kaspersky Security for
Virtualization
– Lab 2 .Configure NSX for the Network Protection Component of Kaspersky Security for Virtualization
– Lab 3. Register Kaspersky Security for Virtualization services with NSX
– Lab 4. Deploy the Protection Components of Kaspersky Security for Virtualization
– Lab 5. Activate Kaspersky Security for Virtualization

Chapter 3. Configuring Protection

19
Kaspersky for Business

 Kaspersky Security for Virtualization Policy

 Real-Time Protection
 On-Demand Scanning
 Network Protection
 How to Enable Protection for a Virtual Machineon
– Lab 6. Configure a Protection Policy for Kaspersky Security for Virtualization
– Lab 7. Enable Protection

Chapter 4. How Kaspersky Security for Virtualization Works

 How Kaspersky Security for Virtualization Scans Files
 How Kaspersky Security for Virtualization Optimizes Scanning
 If File Protection Does Not Work
 How Kaspersky Security for Virtualization Protects Against Network Threats
– Lab 8. Test File Protection
– Lab 9. On-Demand Scanning
– Lab 10. Test Network Protection

Chapter 5. Maintenance
 Monitoring
 Troubleshooting NSX and Integration Server

Prerequisites
 Basic knowledge of virtualization, VMware vSphere and ESX hypervisor
 Basic skills of using Kaspersky Security Center

Prior to taking this training, we strongly recommend attending the course 002

Course Options
Self-study
 Student Guide
 Lab Guide

1-day Instructor-led training at Authorized Training Centers

20
Kaspersky for Business

020 Kaspersky Hybrid Cloud Security.

Public cloud protection
Contemporary IT world steadily moves towards cloud services. More and more companies are migrating their
computational resources to the cloud to cut down expenses and add flexibility.

One of the services delivered by cloud providers is infrastructure as a service (IaaS). If customers use IaaS, they
are to protect their data themselves. Kaspersky Hybrid Cloud Security solution can help them solve this task. It
integrates with IaaS by Amazon Web Services and Microsoft Azure. This course explains how to deploy the
solution, configure it, and maintain.

Covered Technologies
 Kaspersky Security Center 10 SP3
 Kaspersky Security 10.1 for Windows Server
 Kaspersky Endpoint Security 10 for Linux

Target Audience
The course is intended for presale and technical support engineers, as well as experts rendering professional
services.

Course description
Unit I. Introduction: What you should know about KHCS, AWS, etc.
 Chapter 1. Cloud technologies
 Chapter 2. What is Kaspersky Hybrid Cloud Security?
 Chapter 3. Introduction to Amazon Web Services: Architecture, terms, main services
 Chapter 4. Kaspersky Hybrid Cloud Security use cases
 Chapter 5. How Kaspersky Hybrid Cloud Security is licensed

Unit II. Deploying Kaspersky Security Center in AWS

 Chapter 1. Scenarios and requirements
 Chapter 2. How to prepare AWS
 Chapter 3. How to deploy KSC from AWS Marketplace
 Chapter 4. How to complete the setup wizards
 Chapter 5. How to improve the settings

Unit III. Deploying protection in AWS

 Chapter 1. Scenarios and requirements
 Chapter 2. Deploying protection by installation tasks (using Amazon SSM)
 Chapter 3. Deploying protection by scripts from KSC web server
 Chapter 4. Deploying protection through Puppet
 Chapter 5. Deploying protection through Chef

Unit IV. Advanced scenarios and maintenance

 Chapter 1. How to discover computers in AWS from a non-AWS KSC server
 Chapter 2. How to use SSM for deployment from a non-AWS KSC server
21
Kaspersky for Business

 Chapter 3. How to use SSM for deployment onto non-AWS servers

 Chapter 4. How to move the Administration Server to another server in AWS

Unit V. Using Kaspersky Security for Windows Server

 Chapter 1. General
 Chapter 2. Real-Time Protection
 Chapter 3. Anti-Cryptor and Host Blocker
 Chapter 4. Applications Launch Control

Prerequisites
Knowledge of IT technologies, cloud technologies, and information security; understanding of malware.

Course Options
Self-study
 Student Guide
 Lab Guide

1-day Instructor-led training at Authorized Training Centers

22
Kaspersky for Business

031 Kaspersky Hybrid Cloud Security.

Virtualization. Light Agent
Kaspersky Security for Virtualization. Light Agent pulls together all the best of Kaspersky Endpoint Security and
Kaspersky Security for Virtualization. Agentless: supreme protection level and efficient use of resources. The
product can be installed on the most popular hypervisors:

 VMware vSphere
 Microsoft Hyper-V
 Citrix XenServer
 KVM

This course teaches how to make the best of the installation, protection settings, maintenance, and configuration of
virtual environments for optimal program operation.

Upon successful completion of this course, students will be able to:

 Describe the capabilities of Kaspersky Security for Virtualization and explain its advantages when
compared with the traditional and agentless protection solutions;
 Design and implement optimal protection for a virtual environment;
 Maintain the deployed protection system.

Target Audience
Customers and partners who use virtual environments.

Covered Technologies
 Kaspersky Security for Virtualization. Light Agent
 Kaspersky Security Center

Course description
Introduction
 Virtualization
 Protection for virtual machines
 Kaspersky Security for Virtualization Light Agent: structure and operation principles

Chapter 1. Deployment
 Planning
 Preparation
 Installation of Protection Server
 Deployment of Light Agents
– Lab 1 Preparing for the Protection Server Installation
– Lab 2 Installing the Protection Server
– Lab 3 Installing the License
– Lab 4 Light Agent Pre-Installation
– Lab 5 Installing the Light Agent on a Persistent Virtual Machine
– Lab 6 Installing the Light Agent on Linux

23
Kaspersky for Business

– Lab 7 Protection for Network Folders

– Lab 8 Protecting Non-Persistent Virtual Machines

Chapter 2. Management
 Kaspersky Security for Virtualization Light Agent Management principles
 Configuration of protection parameters (compared to Kaspersky Endpoint Security)
 Protection monitoring
– Lab 9 Dynamic Mode for VDI
– Lab 10 Fault Tolerance

Chapter 3. Scaling and maintenance

 How Light Agents find Protection Servers
 Scaling Protection Server resources
 Specifics of Protection Server discovery by Light Agents
 Specifics of the Protection Servers' compatibility with automatic load balancing in a cluster of hypervisors
 Specifics of Device Control use on virtual machines
 Modifying Protection Server settings
– Lab 11 Scan Queue

Prerequisites
 Basic knowledge of virtualization, Microsoft Hyper-V, VMware vSphere, and ESX hypervisor
 Basic skills of using Kaspersky Security Center

Prior to taking this training, we strongly recommend attending the course 002

Course Options
Self-study
 Presentation
 Lab Guide

1-day Instructor-led training at Authorized Training Centers

24
Kaspersky for Business

025 Kaspersky Anti Targeted Attack

Platform, Kaspersky Endpoint Detection and
Response
Targeted attacks and advanced threats are extremely dangerous for businesses. They can result in downtime,
confidential data leakage, or reputation damage. Once cybercriminals penetrate a network, they may remain
unnoticed for many years and cause much harm to the organization. Therefore, proactive defense and early threat
detection are of ultimate importance nowadays. Kaspersky Lab offers Kaspersky Anti Targeted Attack Platform and
Kaspersky Endpoint Detection and Response to protect against targeted attacks and advanced threats. The
solution unites cutting-edge technologies and global analytics to early react to criminal activities and counter
attacks at all stages. The solution is a part of integrated approach to protection from new threats and response to
information security incidents.
Target Audience
The course is intended for presale and technical support engineers who work with Kaspersky Anti Targeted Attack
Platform and Kaspersky Endpoint Detection and Response, as well as experts who render professional services.

Covered Technologies
 Kaspersky Anti Targeted Attack Platform
 Kaspersky Endpoint Detection and Response

Course description
Chapter 1. General

 New information security threats and challenges

 Countering targeted attacks
 Kaspersky Anti Targeted Attack Platform and Kaspersky Endpoint Detection and Response

Chapter 2. Deployment planning

 Typical deployment schemas

 Sizing
 Licensing model

Chapter 3. Kaspersky Anti Targeted Attack Platform

 Sandbox server installation and configuration

 Central Node installation and configuration
 Sensor installation and configuration
 Adding a license, updating the databases, and system health check
 Integration with infrastructure and configuration backup
 Managing users and roles
 Threat detection technologies
 Monitoring and reporting
 Integration with SIEM systems
 Integration with Kaspersky Private Security Network and Kaspersky Secure Mail Gateway

Chapter 4. Kaspersky Endpoint Detection and Response

25
Kaspersky for Business

 What is Endpoint Sensor?

 Enabling the response capability
 Adding a license
 Connecting the Central Node to KSC Administration Server
 Installing and configuring a dedicated Endpoint Sensor
 Activating Endpoint Sensor functionality in KES
 Sensor as a proxy for Endpoint Sensors
 Managing Endpoint Sensors. Detection technologies

Chapter 5. Handling security events

Course Options
Self study

 Student Guide
 Lab Guide

2-days instructor-led training delivered by Kaspersky Lab

ask you account manager for next available training session

26
Kaspersky for Business

040 Kaspersky Endpoint Security Cloud

This 1-day course covers the deployment and maintenance of our Kaspersky Endpoint Security Cloud. Course
materials are designed as a series of how-to scenarios that are based on what administrators would do when using
the solution: from signing up and deploying KES to renewals and updates. Some scenarios will be useful for MSP
partners, others are more relevant for direct customers, but most of them are universal and suitable for both
audiences.

Target Audience
Microsoft Windows network administrators, information security specialists

Covered Technologies
 Kaspersky Endpoint Security Cloud

Course description
What This Course Is About
 What We Will Tell You in This Course and What Not
 What Is the Purpose of This Product and What Makes It Different
 How Labs Are Organized
 Course Outline

What Is Kaspersky Endpoint Security Cloud?

 What Constitutes Kaspersky Endpoint Security Cloud
 Important Technologies of Kaspersky Endpoint Security Cloud
 How Kaspersky Endpoint Security Cloud Is Licensed
 What Makes KES Cloud Different from KSOS and KESB?

Chapter 2. How to Install Kaspersky Endpoint Security Cloud

 Prepare
 Sign Up
 Connect Computers and Mobile Devices

Chapter 3. What to Do After the Installation

 What to Do Immediately
 What to Do Daily
 How to Adjust Settings
 What to Do If a Smartphone Is Lost
 What a Service Provider Is to Do
 What to Do If There Are Many Computers
 How to Migrate to a Newer Version

Course Options
Self-study
 Student Guide
 Lab Guide

1-day Instructor-led training at Authorized Training Centers

27
Kaspersky for Business

302 Kaspersky Endpoint Security and

Management. Advanced
The course is intended for system administrators and information security specialists having experience with
Kaspersky Security Center and Kaspersky Endpoint Security for Windows in small networks who want to learn how
to plan protection for large or geographically distributed corporate networks.

Target Audience
Microsoft Windows network administrators who have experience with Kaspersky Security Center and Kaspersky
Endpoint Security for Windows

Covered Technologies
 Kaspersky Security Center
 Kaspersky Endpoint Security for Windows

Course description
 Chapter 1. Traffic Management
 Chapter 2. Update Agents and Connection Gateways
 Chapter 3. Using Several Administration Servers
 Chapter 4. Managing Administrators
 Chapter 5. Special Features
– Lab 1. Update Agents
– Lab 2. Connection Gateway
– Lab 3. Moving Computers to Another Administration Server
– Lab 4. Network Agent Profiles
– Lab 5. Creating Hierarchy
– Lab 6. Inheritance of Policies and Tasks
– Lab 7. Updating in Hierarchy
– Lab 8. Deploying Applications across Hierarchy
– Lab 9. Separation of Privileges
– Lab 10. Testing Updates

Prerequisites
To be able to master the course and efficiently fulfill the laboratory work, the students must have experience with
Kaspersky Security Center and Kaspersky Endpoint Security for Windows.

Course Options
Self-study
 Student Guide
 Lab Guide

1-day Instructor-led training at Authorized Training Centers

28
Kaspersky for Business

Exams Q&A
General Exams Q&A
Q: How to prepare for an exam?

A: To prepare for an exam, we recommend attending the corresponding course delivered by an Authorized
Training Center (ATC). You can find a list of ATCs here. If there is no ATC near you, you can use a Student Guide
and a Lab Guide, or Courseware Presentation to study the training content yourself or take an online course if
available. Your real-life practical experience is very important. We recommend working with the product prior to
taking the technical exam.

All sales exams have corresponding online courses."

Q: What does an exam look like? What is the passing score?

A: An exam is an online test that you need to complete within a specified amount of time. Please make sure you
can allocate the required time and check the quality of your internet connection.

The test consists of multiple-choice questions with single and multiple answers. For multiple-answer questions, all
correct and incorrect answers are taken into account. In most cases the passing score is 70%. If it differs, the
corresponding passing score will be specified for the exam. You can get an idea of what a technical exam looks
like by viewing the test exam “KLE 002.10: Kaspersky Endpoint Security and Management. Fundamentals”
published here <https://support.kaspersky.com/learning/certification/kle_002.10_trial> (you will be re-directed to
another portal; please open the link in a new tab). It consists of 12 questions; there is no time limit.

Q: Is it mandatory to take the training course before an exam?

A: There are no technical restrictions preventing you from accessing the exam without taking the training course
first. However, we strongly recommend using the training content to help you prepare. It will give you a holistic view
of the product/solution.

Q: What if I fail an exam?

A: Don't give up. If it’s a sales exam, you can try passing it again. There is no limit to the number of attempts. Still,
it makes sense to review the training content once again before retaking the exam.

If it’s a technical exam, you have three attempts to pass it. We strongly recommend studying the product carefully
before retaking an exam. If you don’t pass after three attempts, you need to wait three months until the exam
becomes available to you.

Q&A about accreditation certificates and their

relevance to the Partner Program
Q: What is the period of validity of a certificate?

A: Your certificate states the date of issue and the version of exam passed. The exam may become outdated, as
can your certificate, but only in terms of the Partner Program. As a personal accomplishment, the certificate does
not have an expiry date.

29
Kaspersky for Business

Q: How can I find out if my exam/certificate is valid for a Partner Status and/or Specialization?

A: It should be in the list of exam certificates valid for Partner Status/Specializations (please see the page
Accreditations and Exams).

In accordance with the United Program rules, your exam certificate is valid for a Partner Status and/or
Specialization at the specified check date if:

 It’s the most recent version of the exam, or

 The most recent version of the exam was published no earlier than 90 days prior to the check date.

Q: I successfully passed an exam. What do I have to do to make my certificate count towards a Partner
Status or Specialization?

A: If your certificate is valid for Partner Status, it will be taken into account automatically. Your company profile
administrator will see your certificate in the company’s list of achievements.

Your company needs to apply for a selected Specialization. We then check your compliance with the Specialization
requirements.

Kaspersky Lab

Enterprise Cybersecurity:
www.kaspersky.com/enterprise
Cyber Threats News: www.securelist.com
IT Security News: business.kaspersky.com

#truecybersecurity
#HuMachine

www.kaspersky.com
© 2017 AO Kaspersky Lab.
All rights reserved. Registered trademarks and service marks are
the property of their respective owners

30