Is there any materials out there recommended for visual learners to study for the CGRC? I've been going through the NIST pubs, and although they are full of great information to reference, I can't bring myself to go through them as the primary way to study for the exam. It would be nice if there was a good study guide that summarizes a lot of things that I need to know for the exam. I've seen a good study guide for the CISSP, but not a whole lot out there for the CGRC.
I found the official CBK (https://amzn.eu/d/fJKPHSG) and a book called "Certified Authorization Professional (CAP) Exam Study Guide" (https://amzn.eu/d/g5yBDAf) on Amazon, other sources than this are relatively rare.
I've found a few, mostly created by users who needed different materials than what already exist, of which there are not many despite what these jobs pay. I think a lot of the people in these jobs already have a CISSP, so they don't go for this one. I have the books already mentioned; the newer one is very concise - it will tell you what to focus on and whet you need to remember about each step, but YOU have to go get that information, they don't provide it (or provide very little of it).
The first is a YouTube channel, https://www.youtube.com/@PersonCenteredCyber, where she also has links to some of the materials she created on medium.com. I struggled to get an account created on medium (the process wouldn't complete), to be able to download anything. You might have more luck.
Next are the two subreddits, https://www.reddit.com/r/isc2/, and https://www.reddit.com/r/ISC2CAP/. If you search through those, you'll find some helpful links and study guidance as well.
I'm a reader and memorizer, not visual at all, but hopefully they'll help you.
I don't know what "visual learner" means, so I'm going to set that aside.
At my disposal is a training platform which was put together in 2014. It doesn't include the first item in the modern RMF, which is "Prepare"... but through the current study I noticed that the author mapped the original six RMF steps to available guidance documents. In brief:
Phase 2: Categorize. FIPS 199, NIST SP 800-60
Phase 3: Select. FIPS 200, NIST SP 800-53
Phase 4: Implement. NIST SP 800-70
Phase 5: Assess. NIST SP 800-53A
Phase 6: Authorize. NIST SP 800-37
Phase 7: Monitor. NIST SP 800-37, 800-53A
I'm currently reading these documents a little at a time, and I can easily agree that the author nicely summarized how each would fit in their associated RMF process. Another person on this forum recently stated that these documents would essentially provide the best study for this cert, so you might consider looking for study material which focuses on the Special Publications, and FIPS 199 and 200.
Hello. What is the name of the training platform?
@Hebens Just got that study guide on kindle. So far, I like it since it tells me exactly what I need to focus my studies on and where to go to find the terms. Worst case scenario, I google the term I need to know if I can't find in a NIST pub. Obviously it's not visual, but this is a close 2nd, and it's very handy. Thank you!
Can you forward that to me ? My email address is : allenbayliis@gmail.com
@JRock94 I apologize if you were responding to me. It's very difficult to determine who replies to whom with this forum software.
The resource I have is FedVTE.