Palo Alto Networks Certified Cybersecurity Practitioner Questions and Answers

200 questions organized by topic with detailed explanations

Palo Alto Networks
PANW-CP
200 questions
6 topics
Updated May 2026

Cybersecurity

38 questions10 easy20 medium8 hard~19% of exam
View All
A team wants to filter malicious attachments and phishing messages before email reaches users. Which control is most ali...A security team needs a program for identities, authentication, authorization, and access policies. Which technology are...A practitioner is reviewing the AAA framework. Which component verifies that a user is who they claim to be?

Network Security

38 questions10 easy20 medium8 hard~19% of exam
View All
Which firewall type filters individual packets without tracking session state?A company wants users to reach only authorized private applications rather than joining the whole network. Which approac...A data center team wants to limit east-west movement if one workload is compromised. Which design approach should they u...

Secure Access

28 questions8 easy12 medium8 hard~14% of exam
View All
Employees are using GenAI tools that require visibility, policy, and data protection controls. Which application categor...A business application is internal and should be reachable only through controlled secure access. Which application cate...Which term focuses on cloud-delivered security services without the SD-WAN component?

Cloud Security

40 questions8 easy20 medium12 hard~20% of exam
View All
A containerized workload shows suspicious process behavior during execution. Which technology category is most focused o...A team needs to find misconfigured cloud resources and compliance risks. Which technology category fits?A finding is prioritized because development, deployment, and runtime details are linked. Which concept is being used?

Endpoint Security

30 questions8 easy16 medium6 hard~15% of exam
View All
An endpoint policy should restrict which applications can run. Which control fits?Which term describes evidence that a system or account may have been compromised?A team wants to reduce malware introduction and data loss through removable USB media. Which control fits?

Security Operations

26 questions8 easy12 medium6 hard~13% of exam
View All
Which activity proactively searches for hidden threats rather than waiting only for alerts?Which process coordinates containment, eradication, recovery, and lessons learned after a security incident?No alert has fired, but analysts suspect stealthy activity and search telemetry for hidden adversary behavior. Which act...

All Questions

#QuestionTopicDifficulty
1An endpoint policy should restrict which applications can run. Which control fits?Endpoint Security
medium
2Which firewall type filters individual packets without tracking session state?Network Security
easy
3Which activity proactively searches for hidden threats rather than waiting only for alerts?Security Operations
easy
4Employees are using GenAI tools that require visibility, policy, and data protection controls. Which...Secure Access
medium
5Which term describes evidence that a system or account may have been compromised?Endpoint Security
easy

Sign in to see all 200 questions

Create a free account to browse all questions — completely free during our launch phase.

Sign Up FreeSign In

Ready to test your knowledge?

Take a full Palo Alto Networks Certified Cybersecurity Practitioner practice test with timed exam simulation.

Start Practice Test