
將你的臉轉向太陽,那麼陰影就會落在你身後。(毛利人諺語)
~ 莊耀棋 (Stone), 志工教練, CISSP, ISO 27001 LA
The new CISSP exam change, effective on June 1, 2022, adds additional 25 unscored questions and one extra hour and becomes a test that has 125-175 questions in four hours.
IMO, this change substantially lowers the threshold, because the average available time to answer a question grows from 72 to 82 seconds. However, it does impose psychological pressure on exam takers with more unscored questions. It may interfere your pace and combat your confidence when answering questions.
The best strategy is to get prepared and trust yourself and answer questions with a stable pace. Don’t spend too much time in any questions. Decisions in real life also have time limits. CISSP is an awesome exam that can adequately reflect real life job practices and challenges.👍
Good luck and enjoy your CISSP journey!
There are 93 distinct controls introduced in ISO/IEC 27002:2022. They are categorized as:
a) people, if they concern individual people;
b) physical, if they concern physical objects;
c) technological, if they concern technology;
d) otherwise they are categorized as organizational.
Each control is associated with five attributes with corresponding attribute values (preceded by “#” to make them searchable), as follows:
The typo of #Information_security_assurance mentioned in 5.22 is corrected on March 24, 2022.