PCCSA Exam Questions
63 real PCCSA exam questions with expert-verified answers and explanations. Page 1 of 2.
- Question #1Network Security
A security policy allows employees to access the Internet. While searching for office supplies on the Internet, a corporate user mistypes a URL, connects to a malicious website, an...
Content filteringMalware preventionFirewall securityWeb filtering - Question #2Cybersecurity Fundamentals
What method can be used to guarantee that a document originates from you and no one else?
Digital SignaturesPublic Key EncryptionAsymmetric CryptographyAuthentication - Question #3Fundamentals of Cloud Security
Which type of cloud computing deployment makes resources exclusively available to members of a single organization?
Private CloudCloud Deployment ModelsCloud InfrastructureOrganization Isolation - Question #4Palo Alto Networks Security Platform
Match the Palo Alto Networks Wild Fire analysis verdict with its definition.
WildFire verdictsThreat analysisFile classificationMalware detection - Question #5Fundamentals of Cloud Security
Match each cloud computing characteristic with its description.
Cloud elasticityCloud scalabilityOn-demand servicesMulti-tenancy - Question #6Network Security Fundamentals
Match the common TCP/IP protocol with its corresponding port(s).
TCP/IP protocolsPort numbersCommon ports - Question #7Palo Alto Networks Security Platform
Match the server setting type with whether it requires the installation of an OS.
PA Server typesOS installation requirementsDeployment modelsAppliance configuration - Question #8
Match the tool to its capability.
- Question #9Cyberthreat, Cyberattack, and Cybersecurity Awareness
Match each type of breach to its consequence.
breach typessecurity incidentsincident consequencesthreat classification - Question #10Endpoint Security Fundamentals
In the context of a mobile device management solution, what is a function of the "policy enforcement" feature?
Mobile Device ManagementPolicy EnforcementDevice SecurityAuthentication Policy - Question #11Cyberthreat, Cyberattack, and Cybersecurity Awareness
Review the exhibit and identify the type of vulnerability or attack.
Spear-phishingSocial EngineeringAttack ClassificationThreat Identification - Question #12Cyberthreat, Cyberattack, and Cybersecurity Awareness
Which of the reconnaissance tools might an attacker use to scan for vulnerable network services and settings? (Choose two.)
port scannerpassword crackerreconnaissanceattack tools - Question #13Cyberthreat, Cyberattack, and Cybersecurity Awareness
During which step of the cyber-attack lifecycle is a user's web browser redirected to a webpage that automatically downloads malware to the endpoint?
Attack LifecycleMalware DeliveryCyber Kill ChainWeb-based Threats - Question #14Palo Alto Networks Security Platform
How does a machine learning enhance WildFire operation?
WildFireMachine LearningDynamic AnalysisMalware Detection - Question #15Palo Alto Networks Security Platform
Palo Alto Networks App-ID uses information from which source to help identify an application in network traffic?
App-IDapplication identificationbehavioral analysistraffic inspection - Question #16Palo Alto Networks Security Platform
Which capability is required for a next-generation firewall to protect your network against malware threats?
NGFWSSL DecryptionMalware DetectionEncrypted Traffic Inspection - Question #17Palo Alto Networks Security Platform
Which Palo Alto Networks technology safely enables business use of mobile devices by providing a unique solution to manage the device, protect the device, and control the data?
GlobalProtectMobile Device ManagementEndpoint Protection - Question #18Palo Alto Networks Security Platform
Which option best describes a characteristic of a next-generation firewall but not a UTM device?
NGFW architectureUTM devicesContent inspectionPalo Alto Networks - Question #19Fundamentals of Cloud Security
Which type of cloud computing service provides access to email and word processing applications running in a cloud infrastructure?
SaaSCloud service modelsCloud applications - Question #20Cybersecurity Fundamentals
What is a result of deploying virtualization in your data center?
VirtualizationData Center InfrastructureOperational CostsResource Consolidation - Question #21Network Security Fundamentals
Which two remote access methods are secure because they encrypt traffic? (Choose two.)
SSHVPNRemote access securityEncryption protocols - Question #22Cybersecurity Fundamentals
Which action must be taken prior to a successful ransomware attack to enable recovery from the attack?
Ransomware RecoveryData BackupDisaster RecoveryBusiness Continuity - Question #23Network Security Fundamentals
Which network security architecture feature is designed to purposely expose some of an organization's services to untrusted networks?
DMZNetwork ArchitecturePerimeter SecurityPalo Alto Networks - Question #24Fundamentals of Cloud Security
Which type of cloud computing deployment is available to any person or organization who can pay the usage fees?
Public CloudCloud Deployment Models - Question #25Network Security
What is an effective defense against a denial-of-service attack?
Denial of ServiceMitigation strategyNetwork resilienceIncident response - Question #26Cybersecurity Fundamentals
Which component of a digital certificate provides authentication of the certificate's issuer?
Digital certificatesDigital signaturesPKICertificate authentication - Question #27Network Security Fundamentals
In PKI, which item is issued by a CA?
PKIDigital CertificatesCertificate Authority - Question #28Cyberthreat, Cyberattack, and Cybersecurity Awareness
Which type of adversary would execute a website defacement attack to promote a political agenda?
HacktivistWebsite DefacementThreat Actor ClassificationAttack Motivation - Question #29Endpoint Security Fundamentals
On an endpoint, which method should you use to secure applications against exploits?
Endpoint FirewallExploit ProtectionApplication Security - Question #30Palo Alto Networks Security Platform
Palo Alto Networks Traps is natively integrated with which Palo Alto Networks offering to protect against unknown exploits and malware threats?
TrapsAutoFocusEndpoint ProtectionThreat Intelligence - Question #31Network Security
Which security component can detect command-and-control traffic sent from multiple endpoints within a corporate data center?
NGFWC&C DetectionAdvanced Threat DetectionData Center Security - Question #32Fundamentals of Cloud Security
Assume that it is your responsibility to secure the software functioning at top five layers in the exhibit.
Shared responsibility modelInfrastructure as a ServiceCloud securityCloud layers - Question #33Cloud Security
Which type of SaaS application is allowed and provided by an IT department?
SaaS governanceApplication classificationCloud securityIT policy - Question #34Network Security Fundamentals
Match the OSI network model Layer 3 function to the correct description.
OSI Layer 3Network LayerRoutingIP addressing - Question #35Cyberthreat, Cyberattack, and Cybersecurity Awareness
Match the attack definition to the type of security method used to protect against the attack.
Attack DefinitionsDefense MechanismsThreat ProtectionSecurity Controls - Question #36Network Security Fundamentals
Which type of attack floods a target with ICMP requests?
ICMP floodingDenial-of-ServiceNetwork attacks - Question #37Network Security Fundamentals
Which type of attack floods a target with TCP SYN requests?
TCP SYN FloodDenial-of-ServiceTransport Layer Attacks - Question #38Network Security Fundamentals
What type of technology is currently considered the preferred method for securely connecting a remote endpoint device back to an enterprise network?
SSL VPNRemote endpoint accessVPN tunnelingEnterprise connectivity - Question #39Cyberthreat, Cyberattack, and Cybersecurity Awareness
What technique is not used to break the command-and-control (C&C) phase of the Cyber-Attack Lifecycle?
Cyber-Attack LifecycleCommand-and-ControlNetwork DefenseThreat Detection - Question #40Cybersecurity Fundamentals
Which data security compliance standard is used to protect card holder data wherever it is processed, stored, or transmitted?
PCI DSSPayment Card IndustryCardholder Data ProtectionRegulatory Standards - Question #41Palo Alto Networks Security Platform
What does Palo Alto Networks Traps do first when an endpoint is asked to run an executable?
Palo Alto TrapsExecution PolicyEndpoint ProtectionMalware Prevention - Question #42Cybersecurity Fundamentals
What is the function of a hashing protocol?
Hash functionsData integrityCryptography - Question #43Network Security Fundamentals
Which systems operate at the network layer in the OSI network model? (Choose two.)
OSI modelLayer 3IP addressingRouter - Question #44Fundamentals of Cloud Security
In which type of cloud computing service does an organization own and control application data, but not the application?
SaaSCloud service modelsData ownership - Question #45Cybersecurity Fundamentals
You discover an infected email attachment that contains software code that attacks a known vulnerability in a popular social networking application. This type of software is an exa...
Malware TypesExploitsVulnerability ExploitationEmail Security - Question #46Network Security Fundamentals
What is an example of a distance-vector routing protocol?
distance-vector routingRIProuting protocolsnetwork protocols - Question #47Network Security Fundamentals
The OSI model consists of how many layers?
OSI modelNetwork layersModel fundamentals - Question #48Network Security Fundamentals
What are the characteristics of application firewalls? (Choose three.)
Application FirewallLayer 7 FilteringTraffic ProxyingPalo Alto Networks - Question #49Palo Alto Networks Security Platform
Which two components are part of a next-generation firewall security policy? (Choose two.)
NGFWSecurity PolicyUser IdentificationContent Identification - Question #50Cybersecurity Fundamentals
Which type of malware is self-replicating but must first infect a host program and be executed by a user or process?
Malware typesVirus characteristicsWorm behaviorSelf-replication