- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Passed my CSSLP exam today (Just sharing)
Would like to share my approach for the exam, passed today on my first attempt.
1. I attend the ISC2 class and read the student guide v5 and also read the 2013 official ISC2 CSSLP CBK. Read both books twice within 2 weeks and attempts all their questions to resolidify my understanding.
2. Also read OWASP Top 10, SAFECode material to under them more.
3. During the exam, think as a security manager/PM since their questions are more testing your experience and knowledge in SDLC, security concepts and project management.
Hope it helps, good luck to all.
Study hard and earn it, you will feel a sense of satisfaction.
Ben
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
These might be helpful:
https://www.isc2.org/Certifications/csslp/Certification-Exam-Outline
https://www.isc2.org/-/media/ISC2/Certifications/Exam-Outlines/CSSLP-Exam-Outline-Sept2020.ashx?la=e...
https://www.isc2.org/certifications/References - I would focus on NIST and OWASP here first.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I would say, draw a map for your understandings for the exam outline. Linking all the nouns in the exam outline and explain to others. This method helped me to passed CSSLP and CCSP
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I attended Bootcamp training from a vendor called Training camp and studied thoroughly the ISC2 official study material (edition 5), but still failed.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I attended a Bootcamp training from a vendor called Training camp and studied thoroughly the ISC2 official study material (edition 5), but still failed.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I only used exam outline and CBK. CBK only the dictionary to me and exam outline helps a lot. And, of course, the experience of putting all things together would help. Thinking strategy should be you are going from DevOps to DevSecOps, what should we do and why? This question is the huge help
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Ben,
Congratulations. Thanks for sharing.
Kyaw Myo Oo(Mr.)
CCIE 58769 | PCNSE | CCSE | CISSP | PMP
Manager , CB BANK PCL
CCIE #58769 | PCNSE | SAA-C03 | CCSM | CISSP | PMP
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yep, but in DevSecOps, what kind of test you should do and why is the more important. The reasons behind the test should be related to mitigates some of the risk in the whole picture. So, that's how the exam benefits me and helping me to leading the DevSecOps project in my company.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
CSSLP I think is probably to me the most useful ISC2 certifications I hold simply because, it's CBK has quite a narrow focus but binds together a lot of disparate areas, and it helps you to quickly articulate what is going wrong and how best to fix it.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content