.

@tldutton, first off THANK YOU for responding.  I love that you are engaging directly with members in this manner.

I saw and appreciate your comment about starting with the published CBK for any of the certifications.  My frustration with this is that the primary source documentation is significantly newer than the publish date of the ISSEP's CBK.  ISC2 does a great job with SSCP, CISSP, CSSLP.  ISC2 does a pretty awful job keeping the other certificate's CBKs up to date with many of them not being revised in years.  For CISSP, I was able to purchase a few sets of resources for study (first party and third party) this made it easier and more manageable for me to read, study, and determine if I wanted an official ISC2 class.  For something like ISSEP, the current CBK isn't published and the only way to get it is shelling out a couple thousand for a ISSEP class.

Thank you.

@tldutton  @AndreaMoore 

 TLdutton wrote:

Since not everyone is starting from the same point, I adapt my advice to each person's specific situation. I shared the general information I provide in a subsequent post.

Thank you for posting the general information.

We are well aware that not everyone starts at the same point or that everyone has the same or similar issues.

The rationale for asking you to share is that we are a Community and the intentions is to share.  Many of us have staffers who might well benefit from your expertise or others who may be able to add to your advise for the betterment of the Community.

d

---

@ALKahn10 wrote:
...starting with the published CBK....  not being revised in years.

---

To be fair, Terry's recommended starting point is the exam outline (a 10-ish page PDF)  and the official references list. They both have a good reputation for being kept up-to-date. But more importantly, they come from the exam development team (headed up by Terry) so they do in the abstract tell you what is on the exam.  

The CBK is completely different.  It is fundamentally a reference book (like an encyclopedia), written by 3rd-party authors (instructors/teachers/execs), similar to the all-in-one, 11th-hour, Dummies, OSG, etc.   These are all written by experts who are good at explaining and have the necessary knowledge to expand upon the outline and to condense the reference material.  But, the authors have no more access to the exam materials than you, I, or any other author. The only real "advantage" the official books have is an endorsement. I personally did all my studying with "non-official" references and did just fine.

More than any particular title, the much bigger take away from Terry's post is to select a variety of study materials from different authors and different learning mediums.  This helps reinforce the underlying concepts and helps one become less dependent on a particular author's writing style.

---

@denbesten wrote:

---

More than any particular title, the much bigger take away from Terry's post is to select a variety of study materials from different authors and different learning mediums. 

---

I think the worry about study guides based on "old" material may be more psychological. It's been 20 years since I took the CISSP, but I have worked with younger colleagues who have prepped for the exam, and the content is remarkably evergreen. Of course they don't know that. I think there is a tendency of feeling they are working with "wrong" material. As I tell my kids, just because something is old, it doesn't mean it's wrong.

A lot of this for me is part of the broader challenge we have in the industry and the workforce in general. Jobs have gotten so specialized that we're limiting experience. While many people learn better by doing, part of experience, too, is finding that variety of materials and having to dig through them to triangulate an answer. I think a lot of folks today studying for credential exams are reliant on study guides rather than experience or a collection of materials they gathered while wearing multiple hats in a job.