.

CISSP - The Necessary Evil

<<

Dark_Knight

User avatar

Sr. Member
Sr. Member

Posts: 294

Joined: Mon Aug 11, 2008 7:03 pm

Post Sun Oct 25, 2009 9:11 pm

CISSP - The Necessary Evil

Guys,
I found some old threads on this. But wanted to know what is the best option to wrap this up. All the threads listed Shon Harris All-in-One Exam Guide, Fourth Edition and ccure.org as great resources. Does this still stand?

Who offers the best live training now? 
CEH, OSCP, GPEN, GWAPT, GCIA
http://sector876.blogspot.com
<<

dalepearson

Sr. Member
Sr. Member

Posts: 357

Joined: Thu Nov 09, 2006 10:03 am

Post Mon Oct 26, 2009 3:36 am

Re: CISSP - The Necessary Evil

For me I would say not the Shon book, as some of the statements and reference I found in the books did not match the CISSP material.

So I would say get the official CISSP book, and yes CCURE is a great resource.
<<

unsupported

User avatar

Sr. Member
Sr. Member

Posts: 318

Joined: Sun Feb 08, 2009 3:38 pm

Location: 407

Post Mon Oct 26, 2009 8:45 am

Re: CISSP - The Necessary Evil

I've only experienced live training from John "Hack" Hackmeyer at http://cybercrocodile.com/.&nbsp; Although he does cover the material, the training is less about the "material" and more about how to make the test manageable.  A lot of tips and tricks for breaking down the logistics of the test.  I've heard good things from my co-workers about New Horizons, but that is more related to the trainers rather than the material.

There is no way to learn everything you need in live training.  AIO 4th edition and CCCURE.ORG are very good resources.
-Un
CISSP, GCIH, GCIA, C|EH, Sec+, Net+, MCP
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Mon Oct 26, 2009 8:56 am

Re: CISSP - The Necessary Evil

I would recommend the following:

1. Get the ISC2 Official Book to get an idea of how they think. This will help you with terminology used in the exam questions.
2. Get a second book not by ISC2 to get someone else's take on the material. Sometimes another person can make material stick better in your brain. The Shon Harris book has been used and reco'd by a lot of people. I can't speak for the recent version, but I found one of the earlier versions very helpful.
3. Clement's CCCure.com site is almost universally recognized as a top resource for CISSP. Use it.
4. Training Camp does a fantastic 7-day course with an ISC2 instructor, ISC2 material, a practice exam with real, retired questions from old CISSP exams and finally, the exam is provided on site. Call Mike McNelis at 800.698.5501, and tell him I sent you.
4b. If you can't afford live, instructor-led training, try some of the video series like CBT Nuggets. There are others as well. Look around and find the one that fits you best.

Finally... negotiate. With the economy the way that it is, not a lot of people can afford training. That means that courses are not filling up. All companies have room to move when it comes to pricing.

Hope that helps,
Don

PS - unsupported posted his response while I was typing. He is correct. No 1 week course can teach you everything. That is why you have to treat them as a review and final preps for taking the exam. Going through the material before you arrive is a must IMHO.
CISSP, MCSE, CSTA, Security+ SME
<<

alucian

User avatar

Full Member
Full Member

Posts: 228

Joined: Mon Dec 29, 2008 2:01 pm

Location: Montreal, Canada

Post Mon Oct 26, 2009 9:17 am

Re: CISSP - The Necessary Evil

I studied for the Shon Harris, 4th edition. I really liked the style, it is clear and concise, and the little jokes at the debut of each chapter will rise your morale for the next pages.
Also, she has a video series, which is good too. I have extracted the audio from them and listen while I was commuting, and in other situations.
The cccure site is very good, but (last year) I found the pro questions being closer to the exam. The medium ones are more for Security+. The moment you'll gonna score around 90% at the pro questions you'll pass the exam without problems.
Good luck.

PS If you want to have an idea about the type of questions look at this questions, they are for the CISM certification:
http://www.isaca.org/Template.cfm?Section=Exam_Information1&Template=/ContentManagement/ContentDisplay.cfm&ContentID=42005

CISM is a very interesting certification too, and they have the strangest evaluation system.
CISSP ISSAP, CISM/A, GWAPT, GCIH, GREM, GMOB, OSWP
<<

Dark_Knight

User avatar

Sr. Member
Sr. Member

Posts: 294

Joined: Mon Aug 11, 2008 7:03 pm

Post Mon Oct 26, 2009 7:12 pm

Re: CISSP - The Necessary Evil

Thanks guys. The comments are very much appreciated.

Training Camp does a fantastic 7-day course with an ISC2 instructor, ISC2 material, a practice exam with real, retired questions from old CISSP exams and finally, the exam is provided on site. Call Mike McNelis at 800.698.5501, and tell him I sent you.

Don funny you should mention that because they are on my shortlist.
CEH, OSCP, GPEN, GWAPT, GCIA
http://sector876.blogspot.com
<<

Ketchup

User avatar

Hero Member
Hero Member

Posts: 1021

Joined: Fri Jul 04, 2008 7:44 pm

Location: Philadelphia, PA

Post Mon Oct 26, 2009 8:55 pm

Re: CISSP - The Necessary Evil

When I went through my CISSP materials, I used the following:

1.  Shon Harris book, 3rd edition I believe.  The book was great, but the practice questions included on the CD needed some major work.  There were a few that didn't even have answers.

2.  CCCURE.org website was helpful, but I only discovered it two weeks before the test.

3.  Transcender Practice Tests.  I have to say that these were somewhat disappointing.  I used Transcenders before, but the CISSP version was not very close to the actual test.

4.  I glanced over the official ISC2 book, but I felt that the Shon Harris book covered the same concepts, just in a slightly different order.

I passed the test on my first attempt, but I was pretty sure that I failed after taking it.  The study materials must have worked.

One other piece of advice,  schedule your test in advance.  You cannot take the CISSP exam on a whim at a Vue or Prometric test center.  There are a few licensed places that administer the test, and it can be tough to find a date that fits your schedule. 

Good luck!
~~~~~~~~~~~~~~
Ketchup
<<

bill_clancy

Newbie
Newbie

Posts: 4

Joined: Mon Nov 02, 2009 11:22 am

Post Mon Jan 11, 2010 11:59 am

Re: CISSP - The Necessary Evil

I agree with Don. However the ISC is releasing a new book!!

http://www.isc2education.org/store/prod ... cts_id=568

No sense in reading dated material...get the fresh stuff. I read that old yellow book several times, and worked some practice questions, till I was blue in the face. took the test and was sure I flunked, but I managed to get through.
On test day...keep to yourself, several folks approached me and seemed to be trying to undermine my confidence..."Is this the first time you're testing?", "Didn't you take the bootcamp first?" etc. Keep your eye on the prize!
<<

teedge77

User avatar

Newbie
Newbie

Posts: 9

Joined: Wed Jun 04, 2008 10:21 am

Location: Spring, TX

Post Thu Feb 25, 2010 9:32 am

Re: CISSP - The Necessary Evil

I thought I would add one more thing that seems to be very often overlooked.

Wikipedia.

I found it an invaluable resource while studying. I also used a CBT and CCCURE.org. After the CBT I took practice tests on CCCURE and anything I was still weak on, I used Wikipedia to get a better grasp of.

Maybe I'm just a cheap bastard, but why spend money for information that's freely available with a little extra effort? As well as being more in-depth than CISSP study materials. Just 'cause the test is "an inch deep"...doesn't mean you can't (or shouldn't) go further.
<<

j0rDy

User avatar

Hero Member
Hero Member

Posts: 591

Joined: Tue Feb 23, 2010 4:55 am

Location: Netherlands

Post Thu Feb 25, 2010 10:03 am

Re: CISSP - The Necessary Evil

because all the "good" answers have already been given, i can only tell you what NOT to do ;)

stay away from the cissp in 21 days book, way to high level and does not cover the thing that is mostly required (CISSP "mindset" which can only be obtained from the original material).

also the CISSP for dummies was mostly a waste of time. some areas were covered perfectly, while others were lacking and some even too deep (way to technical for the exam).

on the other hand, a few good tips that came from CFD are:

get some earplugs. i really hated to be in a room with 100 people all eating, drinken and moaning about the difficutly of the exam.
get plenty to eat/drink for yourself, 6 hours is killing!
schedule some breaks, it will improve your focus and speed during the exam.
don't plan anything after the exam, maybe the only thing you want to do is grab a beer (with some friends if you prefer).

good luck and tell us how you did!
CISSP, CEH, ECSA, OSCP, OSWP

earning my stripes appears to be a road i must travel alone...with a little help of EH.net
<<

oneeyedcarmen

User avatar

Full Member
Full Member

Posts: 233

Joined: Thu Jul 05, 2007 2:13 pm

Location: Baltimore, MD USA

Post Thu Feb 25, 2010 10:30 am

Re: CISSP - The Necessary Evil

Sure, I'll hop on this dead horse and whip it some more ;)

I would definitely say that using the (ISC)2 material, dry as it may be, is the best way to go to start of. Struggle through it. I read it twice through, sometimes feeling like doing the old Clockwork Orange to keep my eyes open. Then read another book. I didn't really like Shon's big book, but Mike Meyers has a series out called "Passport" or something like that, and Shon did a CISSP book for him. It's a bit shorter (ONLY 500 pages or so!), but much more relaxed.

Best thing to do is definitely to look at the (ISC)2 website and book a test several months out. That will not only give you time to get your studying in, but also put just a little pressure on you not to slack off.

Following my own advice, I felt pretty confident going into the test. Then I was surprised by my in-laws with the gift of a last minute bootcamp with Larry Greenblatt. I'm not sure that I learned anything NEW from Larry (other than Tai Chi, a joke you'll get if you've had Larry as an instructor), but he definitely reinforced the training I'd given myself.

Good luck!
Reluctant CISSP, Certified ASS

Return to General Certification

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software