I stopped at your post. Frankly, I get impressed by it.
I have failed on my CISSP 4 days ago and am so down but I have the challenge to do the exam soon again, I need the recommendation.
About myself, I don't have work experience in INFOSEC but I postgraduate from network and system security analyst.
I can offer this to you as my recommendation... you may be shooting too high at the CISSP. This exam ask questions that requires critical thought of people with the requisite experience in INFOSEC occupations. It's tough because it requires for one to have dealt with the situation on several questions, and for those test takers to have applied the recommended ISC2 solutions. The test can offer 4/4 correct answers, and your job is to select the most appropriate answer. This is the reason why it's tough for even experienced professionals. If your degree is in INFOSEC from a very reputable school, then it's possible that you can pass this test. You'd need to find a job then where you can apply what you have learned.
Thanks you for your note, frankly my professors recommended CISSP for security or Cisco for operation. I love to work in IT security field so, I studied CISSP and it wasn't that hard, however the exam as you said need work experience addition to education.
Now I am thinking to go for SSCP , may be it is suited to me.
I am searching which materials/ book to study.
I do appreciate and I hope to get your CCSP soon.
Thank you J_M007, Actually your recommendations are perfect and I am going to change my mind and think about SSCP. As I mentioned I don't have IT security work experience but I studied very well which not enough to pass CISSP. In my place,,, to graduate with high score and high rank school still is not enough to get job.
The most important is the Certification, Resume and cover letter.
Now, I am looking for which materials to study, I appreciated if you have the answer.
Thank you again,
You're most welcome Suraya.
I think you have an excellent attitude. and I am sure you will go far. Cert, resume and cover letter are very important it's true. What's maybe most important, however, is teamwork, willingness and desire to keep plugging.
As Lamont says, sometimes 4 out of 4 options are correct; but the differentiator is the context, and experience sees you through.
"Right" can sometimes be the adversary of "best," and "right" will sometimes put you in a bad spot. But this is precisely why there are canons and ethics to assist you. (I am talking real world here, not exams or simulations.)
So "Keep on Truckin'"; keep learning; and keep accumulating your experience and learning good practices.
It's probably worth thinking how you learn best. Is it from reading the textbooks and study guides? Or maybe from video tutorials? Or maybe from comparing a few different descriptions of the same topics. I found it useful to set aside the official advice and look at the self tests to identify the areas in which there where gaps in my knowledge and then studied those more thoroughly.
I also made a handwritten precis of each of the CBKs using a couple of sources, put the books aside and used that as my main reference. Where my notes didn’t make complete sense I’d probably not fully understood so I went back and annotated them with clarifications, rather than panic.
Finally make sure you have your travel to the exam centre, start time, being well rested etc all in hand. And should you pass, then great, but if you don’t it’s just a temporary set-back; figure it out, fix those things and give it another go.
Thanks Dimante. The more experience and learning you bring to the exam the better your chances will be, I suppose. I have been reading what I can in Security Engineering, Network and Telecomms security, etc. I have the modern books, but I have found some of the older stuff good, too. (CISSP Gold was one that looks good.)
I always look for FAQ and Q&A style stuff, and I make questions for the people I'm studying with. Because these guys are more hardcore security folk, I&A, crypto, etc. they can figure out the numbers in a flash; but when it comes to governance, risk assessment, business continuity, disaster recovery, and more of the so-called "softer skills" I tend to have the "truthiest" answer quicker.
That means little though in exam mode, I realize, because when you are in exam mode, there is nothing but you, your wits, your knowledge and experience, and basic kismet.Hopefully, if you can leverage the former, the latter will smile at you. ;-)
I am taking a boot camp in June and will write the exam later that month (postponement owing to circumstances beyond my control.)
But this has been so much fun that I certainly will continue to sharpen the saw; and I hope I will be able to encourage a lot more of my colleagues to keep on the learning trail
Finally I wish to share with all of you the words of one of my favorite "Roads" scholars, who sums up nicely our travels:
The Road Not Taken
By Robert Frost
Two roads diverged in a yellow wood,
And sorry I could not travel both
And be one traveler, long I stood
And looked down one as far as I could
To where it bent in the undergrowth;
Then took the other, as just as fair,
And having perhaps the better claim,
Because it was grassy and wanted wear;
Though as for that the passing there
Had worn them really about the same,
And both that morning equally lay
In leaves no step had trodden black.
Oh, I kept the first for another day!
Yet knowing how way leads on to way,
I doubted if I should ever come back.
I shall be telling this with a sigh
Somewhere ages and ages hence:
Two roads diverged in a wood, and I—
I took the one less traveled by,
And that has made all the difference
To those who wish to learn more about this fine American man of letters, I direct you to this link: