Most of the common DOS attack mitigation strategies (good overview here) are configurable on the CBS 3020. There's no "one step lockdown" like the autosecure feature on routers but the configuration guide covers all of the details on setting the individual mechanisms (DHCP Snooping, DAI, IP source guard, etc.) you may wish to employ.
Getting Started
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: