Blue Coat

Blue Coat develops secure web gateways for enterprise networking. Its certifications validate technical skills in configuring and troubleshooting ProxySG appliances, including web filtering and content policy language.

2Exams

Available Exams

BCCPA

Blue Coat Certified ProxySG Administrator

BCCPP

Blue Coat Certified ProxySG Professional

The Corporate Evolution of Blue Coat

Symantec acquired Blue Coat Systems for $4.65 billion in August 2016, absorbing its secure web gateway and cloud access security broker technologies. Three years later, Broadcom purchased Symantec’s enterprise security business for $10.7 billion. Despite these massive corporate shifts, the underlying Blue Coat technology—specifically the ProxySG appliance line—remains active in large enterprise networks.

Security professionals working in finance, government, and large corporate environments still encounter ProxySG deployments. Managing these systems requires specific knowledge of their proprietary operating system and policy languages. Blue Coat certifications validate a network engineer's ability to configure, secure, and troubleshoot these exact appliances.

Continue Reading

The ProxySG Certification Path

The Blue Coat certification track follows a strict two-tier progression focused entirely on the ProxySG product line. Candidates begin at the Administrator level before moving to the Professional tier. You cannot bypass the initial exam to sit for the advanced one.

BCCPA: Blue Coat Certified ProxySG Administrator

The BCCPA proves you can take a new ProxySG appliance and place it into live service. It tests fundamental secure web gateway functions.

Candidates must demonstrate competence in user authentication, web filtering, and threat prevention. The exam expects you to know how to intercept traffic, write basic policies, and perform initial troubleshooting. Hiring managers look at this credential as proof that an engineer can handle day-to-day administration without breaking network connectivity.

BCCPP: Blue Coat Certified ProxySG Professional

Engineers who need to write custom rules and integrate multiple security products pursue the BCCPP. You must hold an active BCCPA to attempt this exam.

This credential focuses heavily on Content Policy Language (CPL). While the administrator exam relies on the visual policy manager, the professional exam requires you to write and read raw CPL code to control proxy behavior. It also covers advanced authentication deployments involving Kerberos and BCAAA (Blue Coat Auth and Auth Agent). You will be tested on managing complex SSL proxy functionality and monitoring system performance under heavy traffic loads.

Career Value in a Specialized Market

Generalist security certifications teach broad concepts. Blue Coat credentials teach you how to operate a specific piece of hardware.

If you work in a purely cloud-native environment, these exams offer little value. However, organizations with strict data sovereignty requirements and complex on-premises perimeters rely on dedicated secure web gateways to inspect encrypted traffic. In these environments, knowing how to trace a policy failure in a ProxySG appliance is a mandatory skill.

The market for these credentials is narrow. Network operations centers that use Broadcom and Symantec enterprise security products treat the BCCPP as a strong indicator of technical depth. An engineer who can read a policy trace and identify exactly which CPL rule dropped an authenticated user's SSL connection solves tickets in minutes rather than hours.