For (and from) all the newbies out there who want help for studying, there have been numerous questions about, well, questions. As in, "what's the best set of practice questions to use while studying for the exam?"
The answer is, none of them.
I have looked at an awful lot of practice question sets, and they are uniformly awful. Most try to be "hard" by bringing in trivia: that is not representative of the exam. Most concentrate on a bunch of facts: that is not representative of the exam.
So, from my own stash, collected and developed over the decades, I'm going to give you some samples that do represent the types of questions that you will probably see on the exam. Note that none of these questions will appear on the exam. You can't pass the CISSP exam by memorizing a brain dump. These will just give you a feel.
For each question I'll give the answer, what type of question this represents, and possibly ways to approach this type of question.
I'll be doing this over time, "replying" to this post to add questions. Others are free to add sample questions if they wish, but be ready to be (possibly severely) critiqued.
Today was your day. Please know that you were in my thoughts and prayers. I hope you had a successful outcome. I test next Saturday.
@rslade This access controls concept is something that I am finding extremely confusing due to the mixed information across resources.
Sybex Official Study Guide Edition 8, specifically separates Rule-Based Access control from Discretionary Access control (p.628) stating each is 1 of the 5 access control models. However, the Desitination Certification video (https://www.youtube.com/watch?v=BUcoABZzeQ4&list=PLZKdGEfEyJhKWyryIvx_jm1jn6ZMTi7gW&index=16) explicitly states that both Rule-Based and Role-Based Access Controls are Discretionary and mentions in the comments that everyone else that says otherwise is incorrect.
Can you provide insight into why your logic contradicts the Sybex official study guide. What should I follow?