- 限定コンテンツへのアクセス
- 他ユーザーとのつながり
- あなたの体験を共有
- サポート情報の発見
【2025年10月16日付け全パートナー向け同報周知】
ASCプログラムのNGFWコンプライアンス要件の一つであるP
記事後半の英文相当の記述が次回以降のASCプログラムガイドに記載さ
【2025年12月12日追記】
12月初にリリースされたASCプログラムガイド更新版にて以下記述が追記されました。
当記述は下記<新方針>を意図したもので、PCNSEをその上位互換のPCNSCに置き換え可能です。
<新方針>
弊社FY26中は新旧認定プログラムの移行期間としてPCNSE=新認定2つという互換性を維持しますが、FY27に入りますとPCNSE=新認定1つに対してのみ限定の有効性に変わるという追加方針です。
- 現在有効なPCNSE認定資格はその失効日までカウント対象とし
- 2026年7月31日迄は、
- 2026年8月1日以降は、2つの認定資格を同時保有の場合のみ
- 現在有効なPCNSE認定資格はその失効日までカウント対象とし
- 2026年7月31日迄は、
- 2026年8月1日以降は、2つの認定資格を同時保有の場合のみ
- 2つの認定資格を同時保有の組み合わせ例:
- IB#が500以上の場合の3/4人目のNetwork Security Analystも有効なPCNSEで代替可能です。
- PCNSE + Next-Generation Firewall Engineer
- PCNSE + Network Security Analyst
- Network Security Analyst + Next-Generation Firewall Engineer
- IB#が500以上の場合の3/4人目のNetwork Security Analystも有効なPCNSEで代替可能です。
ご不明の点はPSM向江までお問い合わせください。
Authorized Support Center (ASC) Transitional Certification Update
The Authorized Support Center (ASC) program fully recognizes existing PCNSE (Palo Alto Networks Certified Network Security Engineer) certifications until their respective expiration dates (typically two years from the date earned).
This temporary policy is designed to help partners maintain their compliance with Network Security specialization requirements and provides an extended timeline to pursue the newly introduced role-based certifications: Network Security Analyst and Next-Generation Firewall Engineer.
PCNSE Recognition for Compliance
A single, valid PCNSE certification is accepted as meeting the certification requirement for one dedicated certified position only during this transition period. It can be applied to either:
- Network Security Analyst
- Next-Generation Firewall Support Engineer
It cannot be used to satisfy both roles simultaneously.
The One-to-One Rule
For any individual whose PCNSE is applied to one of the two roles above, that person must earn the other certification to meet the requirements for the second role. The PCNSE acts as a substitute for only one role.
Partners must be fully compliant with these new requirements by July 31, 2026.
Application and Examples
Partner certification requirements depend on their Install Base (IB) size. For the Network Security specialization, certified resources will be required to hold a combination of:
- Next-Generation Firewall Engineer
- Network Security Analyst
- PCNSE (until expiration) plus one role-based certification
Example 1: Using One PCNSE
- A partner has an employee with one valid PCNSE.
- They choose to apply it toward the Next-Generation Firewall Support Engineer requirement.
- To fulfill a required Network Security Analyst position, that same employee must earn the net-new Network Security Analyst certification. The PCNSE cannot cover both roles.
Example 2: Next-Generation Firewall IB# of 100 to 499
A partner has a Next-Generation Firewall Install Base (IB) of 100, which requires two dedicated certified support engineers.
- The partner currently holds two valid PCNSEs.
- The partner can use these two PCNSEs to cover the interim requirement for one new persona-based certification for each of the two support engineers (Engineer 1 and 2).
|
Support Engineer |
Certification Held |
PCNSE Covers (Interim) |
Certification Still Required |
|
Engineer 1 |
PCNSE |
Next-Generation Firewall Engineer |
Network Security Analyst |
|
Engineer 2 |
PCNSE |
Network Security Analyst |
Next-Generation Firewall Engineer |
|
Engineer 3* |
PCNSE |
Network Security Analyst |
not required |
|
Engineer 4* |
PCNSE |
Network Security Analyst |
not required |
* Engineer 3 and/or 4 needs to be considered in case of IB# of 500 or more.
Critical Requirement:
Each support engineer must achieve the missing persona-based certification (Analyst or Engineer) by July 31, 2026.
Ultimately, to maintain long-term compliance, each dedicated support engineer must hold both the Network Security Analyst and the Next-Generation Firewall Engineer certifications.
