{"id":813,"date":"2012-11-24T11:12:09","date_gmt":"2012-11-24T17:12:09","guid":{"rendered":"http:\/\/www.nathanhunstad.com\/blog\/?p=813"},"modified":"2012-11-24T11:13:35","modified_gmt":"2012-11-24T17:13:35","slug":"the-cissp-exam","status":"publish","type":"post","link":"https:\/\/www.nathanhunstad.com\/blog\/2012\/11\/the-cissp-exam\/","title":{"rendered":"The CISSP Exam"},"content":{"rendered":"<p>Last Sunday, I took and passed the <a href=\"https:\/\/www.google.com\/url?sa=t&amp;rct=j&amp;q=&amp;esrc=s&amp;source=web&amp;cd=1&amp;cad=rja&amp;ved=0CEQQFjAA&amp;url=https%3A%2F%2Fwww.isc2.org%2Fcissp%2FDefault.aspx&amp;ei=w_ywUK-NLIrbyQHtnIFo&amp;usg=AFQjCNE3cgo1mFYCoEECSDdOl4mfm9tWEg\" target=\"_blank\">CISSP<\/a> exam. I had made it a personal goal to pass the exam before the end of the year, and I\u2019m happy to say that I have achieved my goal. What was my study plan? Read on\u2026<\/p>\n<p><!--more--><\/p>\n<p>I actually had a very simple plan for studying. First, based on the advice of some of my classmates in the <a href=\"http:\/\/tli.umn.edu\/graduate\/msst\" target=\"_blank\">MSST program<\/a>, I bought the <a href=\"http:\/\/www.amazon.com\/CISSP-All-Guide-Fifth-Edition\/dp\/0071602178\" target=\"_blank\">CISSP All-in-One Exam Guide<\/a> by Shon Harris. Starting in July (once I had some time after buying a house and moving), I read this book cover-to-cover. Obviously, I was better at some chapters than others and skimmed over those more (as a former network admin, for example, I had the network topology stuff down well, and I love crypto just because it\u2019s fun), but I still read each chapter and took the practice test to set a baseline. I did this for a couple months before I had read it all the way through.<\/p>\n<p>Next, I looked for some practice questions online. By far, the best site I found was <a href=\"http:\/\/www.cccure.org\/\" target=\"_blank\">CCCure.org<\/a>, which has hundreds of CISSP practice questions for a very reasonable price ($40 for six months of unlimited access when I bought it). Not only do they have a lot of questions, but they also allow you to fine-tune your practice quizzes, by focusing on just one area of the CISSP, or (even cooler) allowing you to just take questions you have gotten wrong in the past. For a couple months I did practice tests almost every day, doing 50-200 questions depending on time and my energy level.<\/p>\n<p>When I identified areas that I needed help with through these questions, I made flashcards. Hundreds of them. I then divided them up into different piles: things that were easy to remember, things that were moderate, and things that I had problems with repeatedly. The first bunch I\u2019d just give a once-over every once in a while, while the hard stuff I would work on daily. With this strategy, I feel like I peaked on the day of my test, conveniently for me.<\/p>\n<p>I also found it helpful that through my job and my MSST program, I\u2019ve been exposed to the governance side of security, which is probably the hardest thing understand for me. I\u2019m great at technical stuff, but it\u2019s the governance that is just as important (and something I had zero exposure to before my MSST studies began). Had I taken it before I had these experiences, I know I wouldn\u2019t have done nearly as well.<\/p>\n<p>There\u2019s no magic bullet to passing the exam: it\u2019s just a lot of studying and repetition. But it\u2019s doable!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Last Sunday, I took and passed the CISSP exam. I had made it a personal goal to pass the exam before the end of the year, and I\u2019m happy to say that I have achieved my goal. What was my study plan? Read on\u2026<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[26,127],"tags":[224],"class_list":["post-813","post","type-post","status-publish","format-standard","hentry","category-personal","category-security","tag-cissp","entry"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/posts\/813","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/comments?post=813"}],"version-history":[{"count":4,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/posts\/813\/revisions"}],"predecessor-version":[{"id":818,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/posts\/813\/revisions\/818"}],"wp:attachment":[{"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/media?parent=813"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/categories?post=813"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/tags?post=813"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}