Hacking Book | Free Online Hacking Learning


cissp preparation experience

Posted by agaran at 2020-03-04

Published on September 4, 2016 classified as safety related | reading times

0X00 introduction

Beijing, 2 September 2016. After five hours and 30 minutes of suffering, I clicked the "end exam" button on a computer and walked out of the narrow exam room. Two young invigilators began to operate on their computers. One got up and went to the printer. The other told me that I could pack up. Go back and wait for the email notification in the mailbox. According to the information of the examinees, those who pass the exam will receive the email notice of Isc2, and those who fail the exam will give a score description on the spot. Sure enough, the invigilator handed me the printed report card, and a simple "Congratulations" made my heart fall. There seems to be no expected excitement, just a kind of relaxation. After eight months of hard work, I finally passed the CISSP exam.

Record some experience and share it with all the safety colleagues who are still struggling on the way of CISSP preparation.

0x01 certificate introduction

CISSP certification profile, a lot of online. Let me just say the following:

0x02 textbook recommendation

At present, there are several CISSP preparation textbooks with a large number of users. I will analyze the advantages and disadvantages one by one.

It is suggested that CBK should be the main method and AIO should be the auxiliary. When CBK can't understand English, turn over the translation of AIO to help understand memory.

0x03 test question selection

There is no real question bank on the market now, only all kinds of simulation questions. The first one is the exercises after CBK class, which are very useful for deepening memory. In addition, there are more than one thousand questions on the AIO CD-ROM, which I haven't finished before the exam. There are many basic concepts in these questions, but there are very few direct questions in the actual examination. So these questions can only help you understand the concept. In a word, don't expect that the simulation questions you have done will really appear in the examination room. Understanding the essence is the most important. When you do AIO questions can achieve 80% of the correct rate, it is time to prepare for the exam!

0x04 training class

Is the tutorial class useful? My experience is that the most important role of the tutoring class is to help you sort out the context of knowledge and tell you which points are likely to be tested more and which points are less likely to appear in the test from the perspective of the past. So, don't listen to what they boast about 90% +, but they can really save you review time.

Role of 0x05 CISSP and others

Some people say that after getting CISSP, the annual salary can be increased by XX%. I think this is the propaganda strategy of the tutorial class. Some people say that CISSP does not test specific attack and defense technology, and the certificate is useless. I think it's just a techno talk. In the eight months of preparing for the exam, I have combed all the knowledge points in all fields of safety at least once and broadened my knowledge. It's the most important thing to re architect a comprehensive understanding of security. Having achieved the first goal of 2016, I am still in a good mood.

Finally, all the colleagues who live for CISSP passed the test as soon as possible!