Some Thoughts on CISSP
CYBERSECURITY IS DYNAMIC AND FUZZY IN NATURE
- Cybersecurity is dynamic, oftentimes unpredictable. There are always black swans, the so-called unknown unknowns.
- Some unknowns could be discovered, understood, or sometimes controlled. They are the known unknowns, fuzzy or vague.
- So does the CISSP exam which reflects the nature of cybersecurity. The CBK isn’t published according to academic standards and the ISC2 keeps updating the exam pool all the time. The is the real “Dynamic and Fuzzy.”
- CISSP aspirants need an effective strategy to cope with this situation.
HOW WELL YOU UNDERSTAND OVER HOW MUCH YOU READ
- Understanding Concepts over Memorizing Facts.
- Applying concepts solves problems; spelling out facts contributes few.
- Comprehension is tough; it takes much time to think. Memorization is easy.
- Think for reasoning, conclusion, and justification to solve problems and create values. IMO, this is the real value of CISSP.