PCCSA Exam Information and Guideline
Palo Alto Networks Certified Cybersecurity Associate
Below are complete topics detail with latest syllabus and course outline, that will help you good knowledge about exam objectives and topics that you have to prepare. These contents are covered in questions and answers pool of exam.
Exam Name : Cybersecurity Associate
Exam Number : PCCSA
Exam Duration : 60 minutes
Questions in Exam : 50
Passing Score : 70%
Exam Registration : PEARSON VUE
Real Questions : Palo Alto PCCSA Real Questions
VCE Practice Test : Palo Alto Networks Certified Cybersecurity Associate Practice Test
The Palo Alto Networks Certified Cybersecurity Associate (PCCSA) possesses knowledge of cutting-edge technology available today to manage the cyber threats of tomorrow. The PCCSA certification should be pursued by students and individuals new to cybersecurity to validate up-to-date knowledge on cyber-threats and cyber-security.
Section Objectives Cybersecurity Foundation 1. Cybersecurity Landscape
- Modern computing trends
- New application framework and threat vectors
- Turbulence in the cloud
- SaaS application risks
- Compliance and security are not the same
- Recent high-profile cyber-attack examples
- Cyberthreats
- Attacker profiles and motivations
- Modern cyber-attack strategy
- Endpoint security basics
- Cyber-attack Techniques and Types
- Malware
- Vulnerabilities and exploits
- Spamming and phishing
- Bots and botnets
Spamming botnets
DDoS botnets
Financial botnets
- Wi-Fi and Advanced Persistent Threats
- Wi-Fi vulnerabilities
Wired equivalent privacy
Wi-Fi Protected Access (WPA/WPA2/WPA3)
- Wi-Fi man-in-the-middle attacks
Evil Twin
Jasager
SSLstrip
- Advanced Persistent Threats Cybersecurity Gateway 1. The Connected Globe
- The NET: How things connect
- Introduction to networking devices
- Routed and routing protocols
- Area networks and topologies
- Domain Name System (DNS)
Physical, Logical, and Virtual Addressing
- IP addressing basics
- Introduction to subnetting
Packet Encapsulation and Lifecycle
- The OSI and TCP/IP models
- Data encapsulation
Network Security Models
- Perimeter-based network security strategy
- Zero Trust security
Core Zero Trust design principles
Zero Trust conceptual architecture
Key Zero Trust criteria and capabilities
Implementing a Zero Trust design
Cloud and Data Center Security
- Cloud computing depends on virtualization
- Cloud computing security considerations and requirements
- Traditional data security solution weaknesses
- East-west traffic protection
- Implementing security in virtualized data centers 6. Network Security Technologies
- Firewalls
Packet filtering firewalls
Stateful packet inspection (SPI) firewalls
Application firewalls
- Intrusion detection and prevention systems
- Web content filters
- Virtual private networks
Point-to-point tunneling protocol)
Layer 2 tunneling protocol
Secure socket tunneling protocol
Microsoft Point-to-Point Encryption
OpenVPN
Internet Protocol Security
Secure Sockets Layer (SSL)
- Data loss prevention
- Unified Threat Management
- Security information and event management 7. Endpoint security
- Anti-malware
Signature-based
Container-based
Application whitelisting
Anomaly detection
- Anti-spyware
- Personal firewalls
- Host-based Intrusion Prevention Systems (HIPS)
- Mobile device management
Cloud, Virtualization, and Storage Security
- Cloud computing
- Virtualization
- Local and remote storage
Networking Concepts
- Server and system administration
Patch management
Configuration management
- Directory services
- Structured host and network troubleshooting
- ITIL fundamentals
- Help desk and technical support Cybersecurity Essentials
Security Operating Platform
Network Security
- Next-generation firewalls
Application identification
User Identification
Content identification
Log correlation and reporting
- Palo Alto Networks Expedition (Migration Tool)
- Network security management (Panorama)
Endpoint Protection
- Advanced endpoint protection (Traps)
Malware prevention
Exploit prevention
Traps deployment architecture
Traps in action
- Mobile security and VPN management (GlobalProtect)
Cloud Security
- Cloud monitoring and compliance (Evident)
- SaaS security (Aperture)
SaaS threat prevention
Data exposure visibility
Contextual data exposure control
Advanced document classification
Retroactive policy
Application Framework and Logging Service
- Behavioral analytics (Magnifier)
- Log management (Logging Service)
- Threat intelligence (AutoFocus)
Priority alerts and tags
Threat correlation
Actionable intelligence
- Threat indicator sharing (MineMeld)
- Malware analysis (WildFire)
Behavior-based cyberthreat discovery
Threat prevention with global intelligence sharing
Integrated logging, reporting, and forensics