Comments on: How I prepared my CISSP exam http://blog.didierstevens.com/2007/02/26/how-i-prepared-my-cissp-exam/ (blog 'DidierStevens) Tue, 09 Mar 2010 09:33:38 +0000 http://wordpress.com/ hourly 1 By: BM http://blog.didierstevens.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-37347 BM Tue, 29 Dec 2009 07:07:36 +0000 http://didierstevens.wordpress.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-37347 Hi all, I am actually currently preparing for the CISSP exam and still confused regarding which book is really the one that I need to rely on! I know that such an exam requires deep studying and wide readings from several books but yet I feel more comfortable if I get a one book that covers all needed information (80%) will be fine. I skimmed several books and still can see that Shon's book does not really reflect the exam's difficulty level that we hear about and some areas are not deeply covered, unless, based on the writer's experiance such domains are not intensively coved in the exam - operations security is a good example. thanks. Hi all,
I am actually currently preparing for the CISSP exam and still confused regarding which book is really the one that I need to rely on! I know that such an exam requires deep studying and wide readings from several books but yet I feel more comfortable if I get a one book that covers all needed information (80%) will be fine. I skimmed several books and still can see that Shon’s book does not really reflect the exam’s difficulty level that we hear about and some areas are not deeply covered, unless, based on the writer’s experiance such domains are not intensively coved in the exam – operations security is a good example. thanks.

]]> By: CISSPME http://blog.didierstevens.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-33867 CISSPME Thu, 18 Dec 2008 22:37:07 +0000 http://didierstevens.wordpress.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-33867 Thanks for the tip on Cryptool it would have been an oversight on my part. Thanks for sharing this exams proves that it will be hard. Thanks for the tip on Cryptool it would have been an oversight on my part. Thanks for sharing this exams proves that it will be hard.

]]> By: About the strategy I followed during my CISSP exam « Didier Stevens http://blog.didierstevens.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-2586 About the strategy I followed during my CISSP exam « Didier Stevens Mon, 16 Apr 2007 08:54:15 +0000 http://didierstevens.wordpress.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-2586 [...] followed during my CISSP exam Filed under: Certification — Didier Stevens @ 8:54 In a previous CISSP exam post I promised to blog about the exam-taking strategy I [...] [...] followed during my CISSP exam Filed under: Certification — Didier Stevens @ 8:54 In a previous CISSP exam post I promised to blog about the exam-taking strategy I [...]

]]> By: Didier Stevens http://blog.didierstevens.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-677 Didier Stevens Tue, 27 Feb 2007 13:29:25 +0000 http://didierstevens.wordpress.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-677 Marcelo, thanks for your comments. I agree that concepts are important, but still, there is stuff to cram because it's not related to concepts explained in the study guides. Take my example of impact-resistant glass: unless you understand the detailed fysics (concepts which are not explained) behind it, you will have to memorize which glass is harder. And I did pass the exam in December 2006. Marcelo, thanks for your comments. I agree that concepts are important, but still, there is stuff to cram because it’s not related to concepts explained in the study guides. Take my example of impact-resistant glass: unless you understand the detailed fysics (concepts which are not explained) behind it, you will have to memorize which glass is harder.

And I did pass the exam in December 2006.

]]> By: Marcelo V. http://blog.didierstevens.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-676 Marcelo V. Tue, 27 Feb 2007 12:33:46 +0000 http://didierstevens.wordpress.com/2007/02/26/how-i-prepared-my-cissp-exam/#comment-676 Hello there, I hope you pass the exam. Last december I took and passed the exam after six months been studying. My preparation was this: as a base I used Shon Harris AIO (excellent! but poor in Operations Security), I did all the chapter's questions and write them down to a spreadsheet too, later reviewing the wrong ones (as you are doing). Also make a lot of quizzes in www.cccure.org (it's free and very handy) domain by domain and finally a "real" exam simulation, after getting 80% I was happy and felt prepare for the examination. During the examination the strategie was this: answer every easy and know question leaving every question that I had a minimal doubt (first review) after that I spend about 5 minutes for every hard question and asnwer it (second review) and try to make the right answer to the really difficult questions (third review) at this time there were just three really hard questions. The important thing is do NOT leave any question unanswered because they do not rest score by wrong ones. In my case the exam was mainly focused in: Network and Telecomunications, IS Management, Code of ethics and Access Control. The other less important are System Architecture, Development, BCP/DRP, Crypto, Operations, Legal and Physical (in that order) and toke me 3 1/2 hours to complete it. Do not cram and learn concepts concepts concepts concepts concepts concepts concepts concepts and more concepts That works fine for my (My english is no native so apologies to everyone) Good luck! Marcelo V., CISSP, Security+ Hello there, I hope you pass the exam. Last december I took and passed the exam after six months been studying. My preparation was this: as a base I used Shon Harris AIO (excellent! but poor in Operations Security), I did all the chapter’s questions and write them down to a spreadsheet too, later reviewing the wrong ones (as you are doing). Also make a lot of quizzes in http://www.cccure.org (it’s free and very handy) domain by domain and finally a “real” exam simulation, after getting 80% I was happy and felt prepare for the examination.

During the examination the strategie was this: answer every easy and know question leaving every question that I had a minimal doubt (first review) after that I spend about 5 minutes for every hard question and asnwer it (second review) and try to make the right answer to the really difficult questions (third review) at this time there were just three really hard questions. The important thing is do NOT leave any question unanswered because they do not rest score by wrong ones.

In my case the exam was mainly focused in: Network and Telecomunications, IS Management, Code of ethics and Access Control. The other less important are System Architecture, Development, BCP/DRP, Crypto, Operations, Legal and Physical (in that order) and toke me 3 1/2 hours to complete it. Do not cram and learn concepts concepts concepts concepts concepts concepts concepts concepts and more concepts

That works fine for my (My english is no native so apologies to everyone)
Good luck!

Marcelo V., CISSP, Security+

]]>