Hi vAdmins and Security Administrators,
Recently VMware by Broadcom introduced the VMware vDefend Security for VCF 5.x Administrator exam (6V0-21.25), which leads to the VMware Certified Professional – Private Cloud certification.
So time for a review!
In this blog post I would like to share exam experience including preparation tips.
Certification details:
The VMware Certified Professional – Private Cloud Security Administrator (VCP-PCS Admin) certification validates the skills required to secure a VMware Cloud Foundation private cloud using distributed and gateway firewalls, advanced threat prevention, and security intelligence to enable zero-trust architectures with VMware vDefend. To achieve this level of certification, candidates must pass this proctored exam that is based on a combination of training material, commonly referenced product documentation, and real-world job scenarios. This exam targets IT Professionals using VMware vDefend in a Pre-Sales, Architect, Implementer, or Support role.
Certification Paths:
There has recently been a new exam policy that also makes it possible to obtain this certification without the pre-requirement of taking a course in advance or already being VCP certified.
It is recommended to gain practical knowledge of VMware vDefend and Advanced Threat Prevention including following the official training “VMware vDefend Security for VCF 5.x Administrator Training.
This training will focus on several aspects of VMware vDefend Security, including how to secure a Private Cloud Data Center, the vDefend Architecture, Management, Visibility, Lateral Protection, Security Automation, Security Operation, RBAC and Malware Prevention.
Minimal Qualified Candidate:
The Minimally Qualified Candidate has experience securing a VMware Cloud Foundation private cloud using distributed and gateway firewalls, advanced threat prevention, and security intelligence to enable zero-trust architectures with VMware vDefend.
Preparation essentials worth considering
It’s essential to focus on several key areas and you can easily determine this by yourself! The exam guide covers all the topics and sections which are included in this specific exam, including section percentage. I believe this is key information to spot your knowledge gaps! Based on the exam section, I suggest focusing your preparation on the topics below:
VMware vDefend Firewall Architecture
VMware vDefend Firewall Management
NTA (Network Traffic Analysis) & NDR (Network Detection and Response)
IDPS (Intrusion Detection and Prevention System)
Malware Prevention Detection
Consider exploring all these subjects during the recommended training program. Additionally, I highly recommend gaining some hands-on experience. If you do not have access to a VMware SDDC environment you can practice with VMWare Hands-on Labs.
I definitely recommend the following HOLs as preparation:
Secure VMware Cloud Foundation with VMware vDefend Firewall [HOL-2572-01-ANS-L
Module 1: Introduction to vDefend for VMware Cloud Foundation
Module 2: Using vDefend Firewall to Secure the Management Workload Domain
Module 3: Using vDefend Firewall to Secure Application in the VI Workload Domain
VMware vDefend Firewall w/ Advanced Threat Protection [HOL-2570-02-ANS-L]
Module 1 – vDefend Intrusion Detection/ Prevention System (IDS/IPS) (30min)
Module 2 – vDefend Malware Detection / Prevention (30min)
Module 3 – vDefend Network Traffic Analysis (10min)
Module 4 – vDefend Network Detection & Response (45min)
Module 5 – vDefend Security Automation (30 minutes)
Secure VMware Cloud Foundation with VMware vDefend Firewall [HOL-2572-01-ANS-L]
Module 1 – vDefend Distributed Firewall (45 minutes)
Module 2 – URL Analysis and FQDN Filtering iSIM (30 minutes)
Module 3 – NAPP Introduction (30 minutes)
Module 4 – Security Intelligence (45 minutes)
My Exam Experience
This is a 75-item exam with a passing score of 70%, consist out of choice, Multiple-Choice-Multiple-Selection items. I found the questions clearly formulated and focused on practical experience. I had enough time to answer all the questions including reviewing. During this exam there were a couple of questions where you have to select “all that apply answers” sometimes I found it difficult to determine if I had to select two or three “correct answers” , because it is not described how many answers you have to mark in the questions. PRO tip, select all answers and a pop-up window will show you what the maximum is!
During this exam there are also a number of true or false questions, these are mainly based on the capabilities of VMware vDefend (including ATP). If you follow the course and/or have knowledge then you can answer these well.
As I mentioned before, this exam is also based on practical experience . For me it is relevant to pay some extra attention to section 5 Troubleshooting, section 8 Protecting Container Workloads and section 13 Troubleshooting.
Exam report
A valuable new feature that has been added recently is the provisional examination score report. This report dissects your performance in each domain according to the sections specified in the official exam guide, offering valuable insights into your strengths and areas that need improvement, see the exam score report below:
Final thoughts
I think it’s a significant step forward that a training program and certification are now available specifically targeting the security aspects of VMware Cloud Foundation environments. This specialized training and certification center on effectively utilizing and managing VMware vDefend (including ATP) in day-to-day operations. I would strongly advised all VCF administrators vested with security duties to engage in this training initiative!
I trust that this blog post has ignited a spark within you to kick off your journey towards achieving the newest VCP VCP Security certification from VMware by Broadcom. Enjoy the preparation process and may you achieve great success in earning your badge!
End of this post.
Disclaimer: Please note that the views expressed in this blog are solely my own and should be treated as personal opinions. This content does not hold any legal or authoritative standing.