Eh....it wasn't hard, per se. The content I thought was reasonably easy. But understanding what the question, and the answers, meant was the hardest part. Here was my study program:
- Bought this book (https://www.amazon.com/CISSP-Study-Guide-Third-Conrad/dp/0128024372/ref=sr_1_6?ie=UTF8&qid=152536952...) last November, read 2 chapters and didn't touch it again until 4/28. Read through the whole thing from 4/28 - 4/30, and took all practice tests and the full test twice.
- Watched https://www.youtube.com/watch?v=arkIFPbK3lo 2 or 3 times for a basic primer on what to expect (arguable value)
- Watched every CISSP practice question video here - https://www.youtube.com/channel/UCwUkAunxT1BNbmKVOSEoqYA - which I found very valuable - shout out to IT Dojo.
- purchased the ISC2 app for $10 on my phone, and took multiple exams. Good value.
- purchased the SkillSet (https://www.skillset.com/) Pro , which I thought was way too basic (turns out it was closer than I thought, but IT Dojo was still better)
- Download the free version of the pocketpro CISSP app on my phone. Took a bunch of quizzes/exams. Worth it.
I studied for about 5 days.
The most frustrating part for me was how poorly the questions were worded. It seemed like whatever panel came up with the questions was SO concerned about generalizing the questions that they completely obfuscated the meaning of not only the questions, but also the answers. You'd questions that basically says "Your IT Director tells you to secure the thing against various things. What do you do?" A - Do a thing to the thing B - Do something to a thing....and so forth. They use words to refer to industry standard concepts and technology that are so vague that you won't really know what they are talking about, and will think MAYBE you know what they mean....but not really. I went through the last half of the exam convinced I failed, not because I don't know the subject matter, but because I really couldn't understand what half the questions were talking about, for sure.
My exam ended after 100 questions on the nose...took me about an hour and 15 minutes.
I have 4 years of exp in Network security just that I am off work for 3 years now taking care of kids...and trying to get back to work hence chose CISSP to return.
Congratulations and Welcome!
That is great, Bravo
It's an amazing feeling when you passed. I did not pass 25 days ago. I was extremely disappointed.
I am backing again to the track and studying hard. I don't have that enough experience in Infosec,
I am a new graduate from Network and system security analysis.
your resources sound great.
All the best,
I was CISSP back in 2011 and let it expire due to different jobs. Did the test content change recently on 15 April? People were saying it was different before that date.
Apparently, yeah....I saw that. Which was awesome, considering that there is no new testing material, books, study guides, etc., available yet that incorporate these changes.
Not having ever taken it before, I don't know what the differences might be.
As @MiniMe mentioned, there was a refresh on the Domains. Currently, our team is working on getting out the updated study materials and are available for pre-order, if you want to reserve a copy now. All of the online courses have been updated, too if you prefer that method of training/education.
Thanks for the reply Samantha! I actually am utilizing InfoSec Institute and posed the question to them if the boot camp I am taking in late Jun is reflective of the new curriculum....all I have heard in return so far is crickets....