| Topic | Details |
| Topic 1 | - Network Security: This domain targets a Network Security Specialist and includes knowledge of Zero Trust Network Access (ZTNA) characteristics, functions of stateless and next-generation firewalls (NGFWs), and the purpose of microsegmentation. It also covers common network security technologies such as intrusion prevention systems (IPS), URL filtering, DNS security, VPNs, and SSL
- TLS decryption. Candidates must understand the limitations of signature-based protection, deployment options for NGFWs, cybersecurity concerns in operational technology (OT) and IoT, cloud-delivered security services, and AI-powered security functions like Precision AI.
|
| Topic 2 | - Endpoint Security: This domain is aimed at an Endpoint Security Analyst and covers identifying indicators of compromise (IOCs) and understanding the limits of signature-based anti-malware. It includes concepts like User and Entity Behavior Analytics (UEBA), endpoint detection and response (EDR), and extended detection and response (XDR). It also describes behavioral threat prevention and endpoint security technologies such as host-based firewalls, intrusion prevention systems, device control, application control, disk encryption, patch management, and features of Cortex XDR.
|
| Topic 3 | - Cybersecurity:This section of the exam measures skills of a Cybersecurity Practitioner and covers fundamental concepts of cybersecurity, including the components of the authentication, authorization, and accounting (AAA) framework, attacker techniques as defined by the MITRE ATT&CK framework, and key principles of Zero Trust such as continuous monitoring and least privilege access. It also addresses understanding advanced persistent threats (APT) and common security technologies like identity and access management (IAM), multi-factor authentication (MFA), mobile device and application management, and email security.
|
CCP Dumps Guide[/url]
