CISSP Review Notes – Notes I used to pass the exam

November 18, 2009 · Posted in Don's eBook Report, InfoSec Docs, Information Security, eBooks, etc... 

I became a Certified Information Systems Security Professional in 2007. I studied for nearly a year. It took so long because I had to self-study and I followed the best process I know (in essence what works for me). I was tempted on getting some of them brain dumps, but I thought better. I also debated whether I should attend one of them bootcamps.  But I don’t think these bootcamps are worth what they are charging, typically $2500.00 for one week.

So I decided to go Spartan and go old school. I read the Shon Harris book and the official CISSP book for at least 2 hours every morning with the target of finishing a Domain per week. All the while highlighting stuff that I thought would be useful and worth highlighting. So you can imagine that process took me at least 20 weeks, reading two books.

After reading the books, I then started taking notes based on the items that I highlighted. Woke up at 4AM every morning, had the books in front of me and typed in as much as I could before I head to work. Took me another 10 weeks or so.

Using what I had studied at this point, I scoured the web for additional information and docs that I could find that will help me review. From those documents, I combined and created notes from them as well. Another 10 week process.

Taking notes worked well for me since typing or writing what I am reading helps me focus and remember better. Studying early in the morning has worked for me since grade school, since the morning is when my head is the clearest. Have you ever noticed how the first song you hear in the morning typically sticks to your head the rest of the day? Well, reading and studying works the same way for me.

To round up my study I bought a couple of practice exam CDs and an Exam Cram book to simulate the exam. I felt very confident that I will do pretty decent in the real CISSP exam when I passed the simulation exams on the first try.

I found these notes very useful, I still use them as a reference for all things related to Information Security. I even used them as a reference when I was studying for the CISM (Certified Information Systems Manager) exam.

I figured my notes could help out quite a few of you aspiring CISSPs out there. You can get a copy of them here.

Please click on the button to purchase

Please click on the button to purchase

Simply click the button below to purchase this must have CISSP Review package for a very low price of $25.00

All Purchases are securely processed through Paypal.

IMPORTANT NOTICE:

I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECIEVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.


So what do you get for $25.00?

  1. The first set of my review notes that I took from reading the Shon Harris and the official CISSP book. Over 160 pages worth of notes mostly typewritten in Times New Roman 11 font. So you can imagine it will have more pages if it was in 12 font. I was not skimming, I was STUDYING. HARD.
  2. The second set of my notes that I took from re-reading the first set of notes, visiting countless blogs, forums and libraries and from reading a slew of other docs and reviewers that I downloaded from across the web. A little bit under 160 pages worth of notes, mostly written in Times New Roman 12 font. This set is a little bit more focused.
  3. And a Bonus package of all the other docs, notes and reviewers that other CISSPs across the web have shared and I downloaded. Stuff that I cross-checked to help create my 2 sets of notes.

You may also want to consider these CISSP resources from Amazon.com

I am imagining a reviewer set with this amount of information and detail will easily cost you $80 to $100. Most Prep Guide Books in Amazon are sold at an average discounted price of around $50.00.

So do the math… As a CISSP candidate, I believe you can do some basic Risk Assessment and Cost-Benefit Analysis ;-)

That said, I hope you find value in this notes. Best of luck to you, and thanks in advance for your consideration…

Please click on the button to purchase

Please click on the button to purchase

Simply click the button below to purchase this must have CISSP Review package for a very low price of $25.00

All Purchases are securely processed through Paypal.

IMPORTANT NOTICE:

I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECIEVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

You may also want to consider these CISSP resources from Amazon.com

Bookmark and Share

Business & Tech News Update

ISuppli: HTC's Droid Incredible Costs $163 to Make

A teardown analysis shows HTC's Incredible is incredibly similar to the Nexus One, the Android phone from Google

Amazon Bets the Kindle Will Grow

The best-selling Kindle will be at the center of Amazon's digital media strategy. Says CEO Bezos: "There's going to be a generation 10 and a generation 20"

Behind Disney's Digital Shopping Spree

The purchase of game maker Playdom may help Disney's brands with the Facebook generation

Tags: , , , , , ,

Comments

Leave a Reply




  • Your Shopping Cart

    Your cart is empty

  • Calendar

    November 2009
    M T W T F S S
    « Oct   Dec »
     1
    2345678
    9101112131415
    16171819202122
    23242526272829
    3031  

  • RSS e-Business News from eCommerceTimes

    • AT&T Is Winning Its Catch-Up Race
      AT&T Mobility and Apple iPhone have been successful together, but every coin has two sides. The other side has been a wireless data logjam. Could that problem finally be getting under control? AT&T has been working very hard to do just that, said Ralph de la Vega, AT&T mobility and consumer markets president and CEO, at last week's Fortune B […]
    • Europe's Tender Words About FOSS
      There's no denying that everyone needs a little love from time to time, but for those of us in the FOSS community, that need can be particularly acute. After all, rarely a week goes by without some affront from those we had hoped were our friends. Case in point? Dell. Imagine our surprise, then -- nay, outright joy! -- when none other than Neelie Kroes […]
    • PRM: It's Not Just CRM for Partners
      CRM is a complex thing. It involves understanding your customers and your own business -- two difficult things to fully grasp under any circumstances -- and then using technology to convert that understanding into a positive impact on your business. Customers, and to a lesser extent your business, are always changing. […]
    • Senate Committee Hacks Away at Online Privacy Thicket
      The pressure on major Web site operators and online advertisers to do a better job of protecting consumers' privacy continues to mount. On Tuesday, Senator John Kerry, D-Mass., said he plans to introduce legislation that would "give people more control over how their personal information is collected and distributed online." […]
    • Why That Mountain of Leads Is a Molehill of Sales
      In the struggle to grow revenues in tighter markets, most companies are pushing their marketing departments to provide greater market coverage and deliver more sales opportunities. Yet statistics reveal that an astonishing 79 percent of leads generated by corporate marketing departments are never contacted by corporate sales groups. […]
    • The Beauty of a Sustainable Supply Chain
      The new age of sustainability is like a three-legged stool, and over the last couple of weeks I've discussed my ideas for the first two legs, including customers and energy or transportation. The third leg involves products, and this idea takes some thinking to fully comprehend. Most of us don't think a lot about products because they are ubiquito […]
    • Yahoo Japan May Succeed Where Yahoo Failed
      Yahoo Japan has announced that it will begin a relationship with Google to power its search functions and also administer ads that appear on the site. In this deal, the company is not following in the steps of its U.S. counterpart, Yahoo, which cut a deal with Microsoft's Bing, announced last year. […]
    • Citigroup Upgrades Careless iPhone Banking App
      Citigroup customers who do mobile banking on an iPhone should head to the Apple App Store immediately for an upgrade. A flaw in the Citigroup mobile banking iPhone app released in March 2009 causes personal information to be saved in a hidden file on the mobile device, the banking giant revealed in a letter to customers dated July 20, a day after it released […]
    • Doctoring the Customer Experience
      Retailers' worst nightmare has indeed come to bear: American consumers have permanently changed their buying habits, according to research by several firms. Gone are the days of shopping as a pastime. And, for all practical purposes, brand loyalty has just about evaporated. […]
    • IBM's Next-Gen 'System of Systems' Mainframe
      For most systems vendors, the launch of a next-generation server platform qualifies as a pretty big deal. After all, such occasions provide vendors multiple opportunities to strut their visionary stuff, roll out a host of satisfied customers, and highlight their current/future strategies. However, some next-gen platforms are -- literally and figuratively -- […]

  • RSS From the National Vulnerability Database

    • CVE-2009-4960 (lanai-core) July 27, 2010
      Directory traversal vulnerability in modules/backup/download.php in Lanai Core 0.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter. […]
      nvd@nist.gov
    • CVE-2010-1577 (content_delivery_system, internet_streamer) July 27, 2010
      Directory traversal vulnerability in Cisco Internet Streamer, as used in Cisco Content Delivery System (CDS) 2.2.x, 2.3.x, 2.4.x, and 2.5.x before 2.5.7 allows remote attackers to read arbitrary files via a crafted URL. […]
      nvd@nist.gov
    • CVE-2009-4973 (totalcalendar) July 27, 2010
      SQL injection vulnerability in rss.php in TotalCalendar 2.4 allows remote attackers to execute arbitrary SQL commands via the selectedCal parameter in a SwitchCal action. […]
      nvd@nist.gov
    • CVE-2010-2703 (openview_network_node_manager) July 27, 2010
      Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbitrary code via a long HTTP request to webappmon.exe. […]
      nvd@nist.gov
    • CVE-2009-4972 (simpleid) July 27, 2010
      Cross-site scripting (XSS) vulnerability in index.php (aka the log in page) in SimpleID before 0.6.5 allows remote attackers to inject arbitrary web script or HTML via the s parameter. […]
      nvd@nist.gov
    • CVE-2010-0211 (openldap) July 27, 2010
      The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize function, which allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a modrdn call with an RDN string containing invalid UTF-8 sequences, which triggers a free of an invalid, […]
      nvd@nist.gov
    • CVE-2009-4971 (vjchat) July 27, 2010
      SQL injection vulnerability in the AJAX Chat (vjchat) extension before 0.3.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. […]
      nvd@nist.gov
    • CVE-2009-4958 (emo_breeder_manager) July 27, 2010
      SQL injection vulnerability in video.php in EMO Breader Manager allows remote attackers to execute arbitrary SQL commands via the idd parameter. […]
      nvd@nist.gov
    • CVE-2009-4970 (t3m_affiliate) July 27, 2010
      SQL injection vulnerability in the t3m_affiliate extension 0.5.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. […]
      nvd@nist.gov
    • CVE-2010-2529 (iputils) July 27, 2010
      Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a denial of service (hang) via a crafted echo response. […]
      nvd@nist.gov
Get Adobe Flash playerPlugin by wpburn.com wordpress themes
My Highlights powered by RoohIt (for WordPress)