Discussion post

CISSP Certified Information Systems Security Professional

Copyright © 2018 by John Wiley & Sons, Inc., Indianapolis, Indiana. Used with permission.

1

CISSP Focus

CISSP focuses on security:

Design

Architecture

Theory

Concept

Planning

Managing

2

Topical Domains

Security and Risk Management

Asset Security

Security Architecture and Engineering

Communication and Network Security

Identity and Access Management (IAM)

Security Assessment and Testing

Security Operations

Software Development Security

3

Exam Topic Outline

www.isc2.org/Certifications/CISSP

Download the CISSP Exam Outline

Previously known as the Candidate Information Bulletin

4

Prequalifications

For taking the CISSP exam:

5 years full-time paid work experience

Or, 4 years experience with a recent college degree

Or, 4 years experience with an approved security certification, such as CAP, CISM, CISA, Security+, CCNA Security, MCSA, MCSE, and GIAC

Or, Associate of (ISC)2 if you don’t yet have experience

Agree to (ISC)2 Code of Ethics

5

CISSP Exam Overview

CISSP-CAT (Computerized Adaptive Testing)

Minimum 100 questions

Maximum 150 questions

25 unscored items mixed in

3 hours to take the exam

No score issues, just pass or fail

Must achieve “passing standard” for each domain within the last 75 questions seen

6

Exam Retakes

Take the exam a maximum of 3 times per 12-month period

Wait 30 days after your first attempt

Wait an additional 90 days after your second attempt

Wait an additional 180 days after your third attempt

You will need to pay full price for each additional exam attempt.

7

Question Types

Most questions are standard multiple choice with four answer options with a single correct answer

Some questions require to select two, select three, or select all that apply

Some questions may be based on a provided scenario or situation

Advanced innovative questions may require drag-and-drop, hot-spot, or re-order tasks

8

Exam Advice

Work promptly, don’t waste time, keep an eye on your remaining time

It is not possible to return to a question.

Try to reduce/eliminate answer options before guessing

Pay attention to question format and how many answers are needed

Use the provided dry-erase board for notes

9

Updates and Changes

As updates, changes, and errata are need for the book, they are posted online at:

www.wiley.com/go/cissp8e

Visit and write in the corrections to your book!

10

Exam Prep Recommendations

Read each chapter thoroughly

Research each practice question you get wrong

Complete the written labs

View the online flashcards

Use the 6 online bonus exams to test your knowledge across all of the domains

Consider using: (ISC)² CISSP Official Practice Tests, 2nd Edition (ISBN:978-1-119-47592-7)

11

Completing Certification

Endorsement

A CISSP certified individual in good standing

Within 90 days of passing the exam

After CISSP, consider the post-CISSP Concentrations:

Information Systems Security Architecture Professional (ISSAP)

Information Systems Security Management Professional (ISSMP)

Information Systems Security Engineering Professional (ISSEP)

12

Book Organization 1/2

Security and Risk Management

Chapters 1-4

Asset Security

Chapter 5

Security Architecture and Engineering

Chapters 6-10

Communication and Network Security

Chapters 11-12

13

Book Organization 2/2

Identity and Access Management (IAM)

Chapters 13-14

Security Assessment and Testing

Chapter 15

Security Operations

Chapters 16-19

Software Development Security

Chapters 20-21

14

Study Guide Elements

Exam Essentials

Chapter Review Questions

Written Labs

Real-World Scenarios

Summaries

15

Additional Study Tools

www.wiley.com/go/cissptestprep

Electronic flashcards

Glossary in PDF

Bonus Practice Exams:

6x 150 question practice exams covering the full range of domain topics

16