CISSP Review Notes – Notes I used to pass the exam

November 18, 2009 · Posted in Don's eBook Report, InfoSec Docs, Information Security, eBooks, etc... 

I became a Certified Information Systems Security Professional in 2007. I studied for nearly a year. It took so long because I had to self-study and I followed the best process I know (in essence what works for me). I was tempted on getting some of them brain dumps, but I thought better. I also debated whether I should attend one of them bootcamps.  But I don’t think these bootcamps are worth what they are charging, typically $2500.00 for one week.

So I decided to go Spartan and go old school. I read the Shon Harris book and the official CISSP book for at least 2 hours every morning with the target of finishing a Domain per week. All the while highlighting stuff that I thought would be useful and worth highlighting. So you can imagine that process took me at least 20 weeks, reading two books.

After reading the books, I then started taking notes based on the items that I highlighted. Woke up at 4AM every morning, had the books in front of me and typed in as much as I could before I head to work. Took me another 10 weeks or so.

Using what I had studied at this point, I scoured the web for additional information and docs that I could find that will help me review. From those documents, I combined and created notes from them as well. Another 10 week process.

Taking notes worked well for me since typing or writing what I am reading helps me focus and remember better. Studying early in the morning has worked for me since grade school, since the morning is when my head is the clearest. Have you ever noticed how the first song you hear in the morning typically sticks to your head the rest of the day? Well, reading and studying works the same way for me.

To round up my study I bought a couple of practice exam CDs and an Exam Cram book to simulate the exam. I felt very confident that I will do pretty decent in the real CISSP exam when I passed the simulation exams on the first try.

I found these notes very useful, I still use them as a reference for all things related to Information Security. I even used them as a reference when I was studying for the CISM (Certified Information Systems Manager) exam.

I figured my notes could help out quite a few of you aspiring CISSPs out there. You can get a copy of them here.

Please click on the button to purchase

Please click on the button to purchase

Simply click the button below to purchase this must have CISSP Review package for a very low price of $25.00

All Purchases are securely processed through Paypal.

IMPORTANT NOTICE:

I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECIEVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.


So what do you get for $25.00?

  1. The first set of my review notes that I took from reading the Shon Harris and the official CISSP book. Over 160 pages worth of notes mostly typewritten in Times New Roman 11 font. So you can imagine it will have more pages if it was in 12 font. I was not skimming, I was STUDYING. HARD.
  2. The second set of my notes that I took from re-reading the first set of notes, visiting countless blogs, forums and libraries and from reading a slew of other docs and reviewers that I downloaded from across the web. A little bit under 160 pages worth of notes, mostly written in Times New Roman 12 font. This set is a little bit more focused.
  3. And a Bonus package of all the other docs, notes and reviewers that other CISSPs across the web have shared and I downloaded. Stuff that I cross-checked to help create my 2 sets of notes.

You may also want to consider these CISSP resources from Amazon.com

I am imagining a reviewer set with this amount of information and detail will easily cost you $80 to $100. Most Prep Guide Books in Amazon are sold at an average discounted price of around $50.00.

So do the math… As a CISSP candidate, I believe you can do some basic Risk Assessment and Cost-Benefit Analysis ;-)

That said, I hope you find value in this notes. Best of luck to you, and thanks in advance for your consideration…

Please click on the button to purchase

Please click on the button to purchase

Simply click the button below to purchase this must have CISSP Review package for a very low price of $25.00

All Purchases are securely processed through Paypal.

IMPORTANT NOTICE:

I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECIEVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

You may also want to consider these CISSP resources from Amazon.com

Bookmark and Share

Thought you should know, etc... Update

The Gates of Development

On new development projects, the production stage can be the point of no return. Before it's too late, a rigorous gating process can help to ensure that development activities, teamwide input and critical stakeholder priorities are all aligned with the overall project vision.

Saying No to Say Yes

I find that I’m often inspired by the sermons at my church to write a project management article.  It seems like an odd marriage of ideas, I realize, but it somehow works for me.  Well, this past Sunday’s message was no different.  As our pastor was talking about ‘saying no to say yes’ – meaning [...

Stack Overflow's Scaling Problems

Nick Craver from the Stack Overflow team has a very interesting post on issues the team is facing with respect to handling storage space created due to higher traffic and usage...

Project Management Lite: Estimating–Specify Deliverables

In order to prepare an estimate, the specifications for what must be produced by the project must be specific, unambiguous and quantitative. This requires the estimator to work out as much detail of the conceptual solution as is feasible, consistent ...

What is Story Mapping

-->

Tags: , , , , , ,

Comments

Leave a Reply




  • Your Shopping Cart

    Your cart is empty

  • Calendar

    November 2009
    M T W T F S S
    « Oct   Dec »
     1
    2345678
    9101112131415
    16171819202122
    23242526272829
    3031  

  • RSS From the National Vulnerability Database

    • CVE-2012-1034 (episerver_cms) February 7, 2012
      Multiple cross-site scripting (XSS) vulnerabilities in the admin interface in EPiServer CMS through 6R2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. […]
      nvd@nist.gov
    • CVE-2011-5076 (hdwiki) February 6, 2012
      SQL injection vulnerability in model/comment.class.php in HDWiki 5.0, 5.1, and possibly other versions allows remote attackers to execute arbitrary SQL commands via the PATH_INFO to index.php. NOTE: some of these details are obtained from third party information. […]
      nvd@nist.gov
    • CVE-2012-1021 (4images) February 6, 2012
      Cross-site scripting (XSS) vulnerability in admin/categories.php in 4images 1.7.10 allows remote attackers to inject arbitrary web script or HTML via the cat_parent_id parameter in an addcat action. […]
      nvd@nist.gov
    • CVE-2012-1031 (episerver_cms) February 6, 2012
      Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in certain configurations using Forms Authentication, allows remote authenticated users to obtain WebAdmins access by leveraging Edit Mode privileges, a different vulnerability than CVE-2011-3416 and CVE-2011-3417. […]
      nvd@nist.gov
    • CVE-2012-1008 (officesip_server) February 6, 2012
      OfficeSIP Server 3.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted To header in a SIP INVITE message. […]
      nvd@nist.gov
    • CVE-2012-0992 (openemr) February 6, 2012
      interface/fax/fax_dispatch.php in OpenEMR 4.1.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the file parameter. […]
      nvd@nist.gov
    • CVE-2012-1004 (foswiki) February 6, 2012
      Multiple cross-site scripting (XSS) vulnerabilities in UI/Register.pm in Foswiki before 1.1.5 allow remote authenticated users with CHANGE privileges to inject arbitrary web script or HTML via the (1) text, (2) FirstName, (3) LastName, (4) OrganisationName, (5) OrganisationUrl, (6) Profession, (7) Country, (8) State, (9) Address, (10) Location, (11) Telephon […]
      nvd@nist.gov
    • CVE-2012-1019 (xwiki_enterprise) February 6, 2012
      Multiple cross-site scripting (XSS) vulnerabilities in XWiki Enterprise 3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) XWiki.XWikiComments_comment parameter to xwiki/bin/commentadd/Main/WebHome, (2) XWiki.XWikiUsers_0_company parameter when editing a user profile, or (3) projectVersion parameter to xwiki/bin/view/DownloadCode/D […]
      nvd@nist.gov
    • CVE-2012-1002 (openconf) February 6, 2012
      Unspecified vulnerability in OpenConf 4.x before 4.12 has unknown impact and attack vectors. […]
      nvd@nist.gov
    • CVE-2012-1029 (tube_ace) February 6, 2012
      SQL injection vulnerability in mobile/search/index.php in Tube Ace (Adult PHP Tube Script) 1.6 allows remote attackers to execute arbitrary SQL commands via the q parameter. NOTE: some of these details are obtained from third party information. […]
      nvd@nist.gov
Get Adobe Flash playerPlugin by wpburn.com wordpress themes