CPP Cheat Sheet 2026

The 30 highest-yield CPP facts, distilled from real exam questions. Print it, save it as a PDF, or study it here — free, no sign-up.

200 questions
240 min time limit
70% to pass
  1. Piggybacking (or tailgating) is a threat specifically addressed by which physical control? Mantraps or airlock vestibules
  2. In the intelligence cycle, which phase involves converting raw collected data into a finished product for decision-makers? Analysis and production
  3. What is the primary function of an Emergency Operations Center (EOC) during a major incident? To coordinate strategic-level support and resources for incident command
  4. How should challenges in applied methods and techniques be addressed? Apply systematic problem-solving, seek expert guidance when needed, and document decisions
  5. What is the importance of understanding 'legal and ethical standards' for security professionals? It ensures compliance with laws and prevents legal issues
  6. In a corporate fraud investigation, the 'fraud triangle' concept holds that fraud requires which three elements? Pressure, rationalization, and opportunity
  7. What quality assurance measure supports assessment and evaluation? Regular self-assessment, peer review, and adherence to established standards
  8. What is the primary objective of Business Continuity Planning (BCP)? To ensure critical business functions can continue during and after a disruption
  9. In the context of physical security, what does the term 'natural surveillance' mean? Designing spaces so legitimate users can observe potential criminal activity
  10. What is the purpose of the Continuing Professional Education (CPE) requirements for CPP recertification? To ensure that CPPs remain up-to-date with evolving security practices and technologies.
  11. What ethical standard governs communication and documentation practice? Adherence to the profession's code of ethics and applicable laws and regulations
  12. What is the foundational principle of professional standards and ethics in the Certified Protection Professional field? Maintaining competence, integrity, and service to stakeholders
  13. A 'need-to-know' principle applied during an investigation means that: Information about the investigation is shared only with personnel whose duties require it
  14. What quality assurance measure supports safety and compliance? Regular self-assessment, peer review, and adherence to established standards
  15. What ethical standard governs industry best practices practice? Adherence to the profession's code of ethics and applicable laws and regulations
  16. In crisis communications, what is a 'dark site'? A pre-built website kept offline and ready to activate during a crisis
  17. How should challenges in industry best practices be addressed? Apply systematic problem-solving, seek expert guidance when needed, and document decisions
  18. A security vulnerability assessment (SVA) differs from a security risk assessment primarily because the SVA: Focuses on identifying weaknesses in existing countermeasures
  19. What is the recommended sequence for applying the risk management process when planning physical security upgrades? Identify assets → Analyze threats → Assess vulnerabilities → Select countermeasures
  20. Which of the following activities would MOST likely qualify for Continuing Professional Education (CPE) credits for CPP recertification? Completing a college course on advanced security management.
  21. What is the foundational principle of communication and documentation in the Certified Protection Professional field? Maintaining competence, integrity, and service to stakeholders
  22. What ethical standard governs continuing education requirements practice? Adherence to the profession's code of ethics and applicable laws and regulations
  23. The Foreign Corrupt Practices Act (FCPA) requires U.S. companies to maintain internal controls that prevent what investigable offense? Bribery of foreign government officials to obtain or retain business
  24. What is the FIRST step a security professional should take when a potential crisis is identified? Recognize and officially declare the crisis
  25. How should professionals apply assessment and evaluation in daily practice? Consistently integrate best practices into every aspect of professional work
  26. What is the purpose of the CPP exam content outline? It outlines the domains and knowledge areas covered in the exam.
  27. What role do practice exams play in preparing for the CPP exam? They provide a sample of exam content and timing practice.
  28. Which type of corporate investigation is specifically concerned with identifying the unauthorized disclosure of proprietary business information? Trade secret / intellectual property theft investigation
  29. How should professionals apply safety and compliance in daily practice? Consistently integrate best practices into every aspect of professional work
  30. What quality assurance measure supports industry best practices? Regular self-assessment, peer review, and adherence to established standards
Turn these facts into recall: