Re: CISSP Study Partner - Page 2

ckrafcky · ‎12-30-2025

Hi - I've recently taken the CISSP exam, and am looking for a study partner to help me prepare for the retake in a few weeks. I'm located on the East Coast (NYC) if that helps.

rjsec

I'm aiming to take my exam in April as well, Happy to join a study group.

Jayatmac

Hey - Im in Toronto - would be happy to be your study buddy. Best, JT

Raj_CSP

I am as well preparing for the CISSP. I can discuss or share my knowledge in the areas of 'Security and Risk Management', 'Security Architecture and Engineering" & 'Software Development Security" from my 7 years of Cybersecurity Systems Engineer experience. I would be very much happy to join the study group.

Email: rajvivekanandh.t@gmail.com

nkeaton

@Raj_CSP Your experience is good, but keep in mind that people generally do the worst in the domains that they have the most experience in. Knowing that helps in studying to remember the “book” answer instead of what we do on the job. I highly recommend doing the CC first to anyone thinking about the CISSP for many reasons which can detail if wish. Best wishes.

bid

Hi,

This is Bidhu. I would like to join the Virtual study group for CISSP certification in the next 6 weeks.

Regards,

Bidhu Das

ChandraGaddam

I am interested in the study partnership

Aykar

Great initiative! Studying for the CISSP is a lot like scuba diving: safety protocols dictate you never go down alone. Having a "dive buddy" doesn't just keep you from getting lost in the depths of the 8 domains; it provides critical support when the exam pressure rises.

For this retake, the best approach is to adopt an Incident Response mindset. You’ve already experienced the "incident" (the first attempt); now you are in the Lessons Learned phase. By analyzing which controls failed and reinforcing those gaps, success in the "Recovery" phase is guaranteed.

Here is a proposed "Order of Battle" for those looking for a study partner:

Action Plan (Lessons Learned)

Gap Analysis: Review your previous score report. Don't waste time on what you already know—focus heavily on the domains where you were "Below Proficiency."
Mindset Calibration: Shift from "Engineer" to "Manager." The CISSP isn't testing if you can fix the cable; it's testing if you can decide if the risk of replacing that cable is acceptable for the business.
High-Pressure Drills: Run practice questions in sets of 50 to build the mental stamina required for the CAT adaptive format.

Study Buddy Dynamics

The "Why" Method: It’s not enough to pick option A. The exercise is to explain to your partner why A is correct AND why B, C, and D are technical distractors but not the ideal administrative answer.
Whiteboard Sessions: Explain complex processes (like SAML flows, BCP steps, or SDLC phases) to your partner as if they were a client. If you can't explain it simply, you haven't mastered it yet.
Rapid-Fire Flashcards: 15-minute "blitz" sessions on raw concepts (ports, key lengths, fire classes) to free up mental bandwidth for critical thinking during the exam.

P.S. I’m a certified Rescue Diver and I just passed my CISSP exam last week. It can be done. Believe in yourself!

nkeaton

@Aykar That is a nice analogy. I certified in basic scuba years ago and was definitely a confidence builder. I definitely agree with gap analysis. For the people that I work with, I suggest keeping the exam objectives with them at all times and to refer them often to not only remind themselves of what are expected to know but also for knowledge gap analysis. I find that the biggest first hurdle to studying is determining what works for a person. For instance I read and do practice questions in addition to my experience. That definitely does not work for most people. A lot of people learn best with flashcards and study groups. Neither works for me. Of course neither of those or any other method is right or wrong. I think that Luke’s How to Think Like a Manager was the best book to help with the mindset needed for the CISSP. I also like the CC as a stepping stone to the CISSP. It has worked well for the people have done that.

Aykar

@nkeaton That’s a fantastic perspective.

You hit the nail on the head: the biggest hurdle isn't the technical content, but the 'meta-learning'—figuring out how you actually learn.

I completely agree that every brain is wired differently. Personally, I rely on the Feynman Technique; if I can't explain a concept simply, I haven't mastered it yet. I also use flashcards and constant discussion on how to apply those concepts in the real world.

My interest in how we retain information has always led me to look into the neurological side of learning during my training sessions. However, what has truly deepened my understanding is being a father to an autistic son. That experience, more than any textbook, taught me that every cognitive process has its own unique architecture. There is no 'right' way, only the way that clicks for you.

In addition to Luke Ahmed’s work and the CC stepping stone, I’ve found that CISSP Exam Prep: 30 Days by conquerminds press is incredible for those with tight schedules, and 'CISSP: The Last Mile' by Pete Zerger is essential for that final push. Also, using Gemini as a study buddy has been a game-changer for breaking down complex topics and simulating gap analysis in real-time.

Thanks for sharing your journey; it’s a great reminder that mindset and self-awareness are just as important as the study material itself!

nkeaton

@Aykar Thank you for sharing that. Autism awareness is one of my causes. I worked with children in softball from Special Olympics for many years. I work with our folks on earning and maintaining their certifications. I notice a tendency for people to tell others how to study. I think that we all have to use what works best for us. Luke is a pretty amazing person if ever get a chance to talk with him. While the cybersecurity part is still fresh in your mind, you might consider the CCSP since that is roughly half the exam. It is definitely a good and growing certification. I feel like is worth much more than a cloud vendor certification(s).