cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
buzzdrew7
Newcomer I

Study resources for a visual learner

Is there any materials out there recommended for visual learners to study for the CGRC? I've been going through the NIST pubs, and although they are full of great information to reference, I can't bring myself to go through them as the primary way to study for the exam. It would be nice if there was a good study guide that summarizes a lot of things that I need to know for the exam. I've seen a good study guide for the CISSP, but not a whole lot out there for the CGRC.

10 Replies
Hebens
Viewer III

I found the official CBK (https://amzn.eu/d/fJKPHSG) and a book called "Certified Authorization Professional (CAP) Exam Study Guide" (https://amzn.eu/d/g5yBDAfon Amazon, other sources than this are relatively rare.

MrPale
Viewer II

I've found a few, mostly created by users who needed different materials than what already exist, of which there are not many despite what these jobs pay. I think a lot of the people in these jobs already have a CISSP, so they don't go for this one. I have the books already mentioned; the newer one is very concise - it will tell you what to focus on and whet you need to remember about each step, but YOU have to go get that information, they don't provide it (or provide very little of it).

 

The first is a YouTube channel, https://www.youtube.com/@PersonCenteredCyber, where she also has links to some of the materials she created on medium.com. I struggled to get an account created on medium (the process wouldn't complete), to be able to download anything. You might have more luck.

 

Next are the two subreddits, https://www.reddit.com/r/isc2/, and https://www.reddit.com/r/ISC2CAP/. If you search through those, you'll find some helpful links and study guidance as well.

 

I'm a reader and memorizer, not visual at all, but hopefully they'll help you.

ericgeater
Community Champion

I don't know what "visual learner" means, so I'm going to set that aside.

 

At my disposal is a training platform which was put together in 2014.  It doesn't include the first item in the modern RMF, which is "Prepare"... but through the current study I noticed that the author mapped the original six RMF steps to available guidance documents. In brief:

 

Phase 2: Categorize.  FIPS 199, NIST SP 800-60

Phase 3: Select. FIPS 200, NIST SP 800-53

Phase 4: Implement.  NIST SP 800-70

Phase 5: Assess.  NIST SP 800-53A

Phase 6: Authorize.  NIST SP 800-37

Phase 7: Monitor.  NIST SP 800-37, 800-53A

 

I'm currently reading these documents a little at a time, and I can easily agree that the author nicely summarized how each would fit in their associated RMF process.  Another person on this forum recently stated that these documents would essentially provide the best study for this cert, so you might consider looking for study material which focuses on the Special Publications, and FIPS 199 and 200.

-----------
A claim is as good as its veracity.
JRock94
Newcomer I

Hello.  What is the name of the training platform?

buzzdrew7
Newcomer I

@Hebens Just got that study guide on kindle. So far, I like it since it tells me exactly what I need to focus my studies on and where to go to find the terms. Worst case scenario, I google the term I need to know if I can't find in a NIST pub. Obviously it's not visual, but this is a close 2nd, and it's very handy. Thank you!

AxiomBrevity
Viewer

What materials are you using to study?
allenbaylis
Newcomer I

Can you forward that to me ?  My email address is : allenbayliis@gmail.com

SeanP0208
Viewer II

I have been reading all the applicable NIST 800 series, but is also visual and audio learner. I found the Denise Tawwab 800-37r2 playlist on YouTube is a fantastic resource. https://youtube.com/playlist?list=PL5KWqRGDWPo_Zz-40NXieCx-l8GxdR2bG

I also found this NIST presentation which is great info but no auto play. So you have to click through. Which sucks because I need to be doing other tasks and don’t want to click through and audio supported slideshow. But the info is solid. Here’s the link to that. https://csrc.nist.gov/CSRC/media/Projects/risk-management/images-media/rmf-training/intro-course-v2_...
ericgeater
Community Champion

@JRock94 I apologize if you were responding to me.  It's very difficult to determine who replies to whom with this forum software.

 

The resource I have is FedVTE.

-----------
A claim is as good as its veracity.