Tag Archives: CISSP考試心得

CISSP考試心得 – 林銘鴻 (Sky Lin)

Posted on by
1
CISSP考試心得 – 林銘鴻 (Sky Lin)

I love this quote:
“It’s impossible to live without failing at something.”
~Sky, CISSP, CCIE, CCSI

2007年,我經歷了三次的失敗,終於取得Cisco CCIE認證,13年後的今天,又再度經歷了兩次失敗,最終也取得了ISC2 CISSP認證,如果你還『活著,就不可能沒失敗過什麼

Continue reading

CISSP考試心得 – 張展碩 (Ethan Chang)

Posted on by
1
  • 張展碩 (Ethan Chang), CISSP, PMP
  • 張展碩 (Ethan Chang), 林銘鴻 (Sky Lin), and 吳文智 (Wentz Wu)
  • 張展碩 (Ethan Chang), CISSP, PMP

Persistence is an attitude.
There is a success called never giving up,
There is a success called continuing to work hard.
~Ethan, CISSP, PMP

堅持就是一種態度。
有一種成功叫永不放棄,有一種成功叫做繼續努力。
上面的話, 就是我的總結心得…

如果你想準備CISSP, 請先將你的態度拿出來, 再請先將計畫套用到PDCA吧!!

Continue reading

Ten Evaluation Tips for CISSP Preparedness

Posted on by
Reply

CISSP Exam Prep Materials

  1. Are you learning based on a robust conceptual model?
  2. Do you build a security glossary and be able to explain every terminology?
  3. Do you build a list of essential security processes and understand how to apply the concepts?
  4. Have you read the Sybex Official Study Guide thoroughly at least once?
  5. Have you finished questions in the Sybex online test bank to evaluate your performance of study?
  6. Have you finished all the CISSP Practice Questions on Wentz’s blog?
  7. Have you completed at least 2500 “quality” questions?
  8. Can you explain the CISSP exam outline well?
  9. Can you identify or list the questions you believe will appear in the exam?
  10. Have you read the Sunflower notes at least once?

CISSP考試十大關鍵要素!

  1. 觀念架構是否能掌握, 倒背如流?
  2. 基本名詞除了記憶, 是否理解?
  3. 基本流程是否理解, 能否應用?
  4. Sybex書是否完整的看過一次? 講義是否有看過一次?
  5. Sybex書的讀完後, 是否有作線上試題驗證?
  6. 是否有認真的作完並理解Bruce的網誌題目?
  7. 是否有作到2500題以上的題目? (只能作有品質的好題目)
  8. CISSP考試大綱是否能完全解讀?
  9. 能否指出每個Domain必考的基本題?
  10. 是否看過太陽花筆記至少一次?

Bruce Passed ISC2 CISSP-ISSAP Exam on 14th November

Posted on by
4

IMAG2946

It’s a lovely afternoon and peaceful moment to enjoy the view looking out through the floor-to-ceiling window from the office.

When the ISSAP score report disclosed “Congratulations!”, my goal has been achieved pursuing the planned certifications from ISC2. I spent around 4 months in total studying intensively and finally passed the six ISC2 exams: CISSP, CCSP, CSSLP, CISSP-ISSEP, CISSP-ISSMP, and CISSP-ISSAP.

After studying for 40 hours within 8 days (from 2018/11/06 to 2018/11/13), I cleared the ISC2 CISSP-ISSAP (Information Systems Security Architecture Professional) exam today. This exam is one of the 3 CISSP concentrations. I would say the level of difficulty would be ISSAP < ISSMP < ISSEP.

The ISACA CGEIT is the last mile for me to declare success achieving my annual goal.

My plan of the year is revised as follows:

  • Milestone #1: PMI + CISSP
    • 2018/04/09 ACP
    • 2018/04/27 PBA
    • 2018/06/19 CISSP
    • 2018/07/10 RMP
  • Milestone #2: ISACA
    • 2018/07/24 CISM
    • 2018/08/13 CRISC
    • 2018/08/28 CISA
  • Milestone #3: ISC2
    • 2018/09/07 CCSP (originally scheduled on 2018/09/14)
    • 2018/09/13 CSSLP (originally scheduled on 2018/09/28)
    • 2018/09/25 CISSP-ISSEP (bonus)
  • Milestone #4: EC-Council
    • 2018/10/09 CEH (originally scheduled on 2018/10/15)
    • 2018/10/12 ECSA (originally scheduled on 2018/10/29)
  • Bonus Exams: scrum.org
    • 2018/10/21, PSM I
    • 2018/10/23, ISO 27001 LA
    • 2018/10/27, PSPO I
    • 2018/10/28, PSD
  • Final Optimization
    • 2018/11/06 CISSP-ISSMP
    • 2018/11/14 CISSP-ISSAP
    • 2018/11/30 CGEIT (projected)

Addon, 2019/12/10:

When I passed the ISSAP exam, I was really excited as all my annual objectives were achieved and I didn’t note down the materials I used.

The following are the materials I used:

  1. CISSP-ISSAP exam outline
  2. All the CBKs I have (CBKs of CCSP, CSSLP, CISSP, ISSMP, ISSAP, and ISSEP-old version)
  3. NIST SP 800 series
  4. ISSAP CBK Suggested References (I bought as many as I can).

I didn’t use any test engine but the practice questions in the CBKs.

 

Bruce Passed ISC2 CISSP-ISSMP Exam on 6th November

Posted on by
2
ISSMP-Study

After studying for 40 hours within 8 days (from 2018/10/29 to 2018/11/05), I cleared the ISC2 CISSP-ISSMP (Information Systems Security Management Professional) exam today. This exam is one of the 3 CISSP concentrations. As its name denotes, this exam is all about basic management concepts and the difficulty level is not that high as far as an experienced CISSP is concerned.

My original plan of the year for learning and growth is scheduled to be completed by the end of October with one month buffer (November as the worst case). Since my goals are achieved ahead of the schedule, I decide to do more as final optimization using the one-month buffer, that is, the month of November.

My plan of the year is revised as follows:

  • Milestone #1: PMI + CISSP
    • 2018/04/09 ACP
    • 2018/04/27 PBA
    • 2018/06/19 CISSP
    • 2018/07/10 RMP
  • Milestone #2: ISACA
    • 2018/07/24 CISM
    • 2018/08/13 CRISC
    • 2018/08/28 CISA
  • Milestone #3: ISC2
    • 2018/09/07 CCSP (originally scheduled on 2018/09/14)
    • 2018/09/13 CSSLP (originally scheduled on 2018/09/28)
    • 2018/09/25 CISSP-ISSEP (bonus)
  • Milestone #4: EC-Council
    • 2018/10/09 CEH (originally scheduled on 2018/10/15)
    • 2018/10/12 ECSA (originally scheduled on 2018/10/29)
  • Bonus Exams: scrum.org
    • 2018/10/21, PSM I
    • 2018/10/23, ISO 27001 LA
    • 2018/10/27, PSPO I
    • 2018/10/28, PSD
  • Final Optimization
    • 2018/11/06 CISSP-ISSMP

Bruce Passed ISC2 CISSP-ISSEP Exam on 25th September

Posted on by
7

IMAG3392

After studying for 42 hours in 12 days (from 2018/09/14 to 2018/09/25), I cleared the ISC2 CISSP-ISSEP exam this afternoon and it’s really lucky for me, probably, to be the first exam taker who passed this exam in Taiwan.

The following is what I used to prepare for this exam:

  1. Official (ISC) 2® Guide to the CISSP®-ISSEP® CBK® ((ISC) 2 Press) 1st Edition
  2. Systems Engineering Fundamentals Kindle Edition
  3. Official (ISC)² Guide to the CSSLP, Second Edition
  4. Official (ISC)2 Guide to the CISSP CBK ((ISC)2 Press) 4th Edition
  5. Official (ISC)2 Guide to the CISSP-ISSMP CBK ((ISC)2 Press) 2nd Edition
  6. Official (ISC)2 Guide to the ISSAP CBK ((ISC)2 Press) 2nd Edition
  7. The Official (ISC)2 Guide to the CCSP CBK 2nd Edition
  8. Official (ISC)2® Guide to the CAP® CBK® ((ISC)2 Press) 2nd Edition
  9. IATF Release 3.1
  10. FEA Consolidated Reference Model Document Version 2.3
  11. FEA Practice Guide
  12. ISO 27001
  13. ISO 27005
  14. ISO 21827
  15. PMBOK® Guide – Sixth Edition
  16. NIST Special Publications
    • 800-12
    • 800-100
    • 800-64 Rev 2
    • 800-18 Rev 1
    • 800-34 Rev 1
    • 800-39
    • 800-30 Rev 1
    • 800-27 Rev A
    • 800-37
    • 800-37 Rev 2
    • 800-160 (vol1 & vol2)
    • 800-55
    • 800-50
    • 800-53
    • 800-53A
    • 800-60 (vol1 & vol2)
    • 800-86
    • 800-61
      800-40 Rev 3
    • 800-128
    • 800-137
    • 800-115
    • 800-92
    • 800-88

My exam preparation is completely directed by the ISC2 CISSP-ISSEP exam outline. The most common references used for the ISSEP by domain from ToniHardy and the ISC2 official references are quite helpful. Having passed CSSLP exam helps as well.

The milestones are updated as follows:

  • Milestone #1: PMI + CISSP
    • 2018/04/09 ACP
    • 2018/04/27 PBA
    • 2018/06/19 CISSP
    • 2018/07/10 RMP
  • Milestone #2: ISACA
    • 2018/07/24 CISM
    • 2018/08/13 CRISC
    • 2018/08/28 CISA
  • Milestone #3: ISC2
    • 2018/09/07 CCSP (originally scheduled on 2018/09/14)
    • 2018/09/13 CSSLP (originally scheduled on 2018/09/28)
    • 2018/09/25 CISSP-ISSEP (bonus)
  • Milestone #4: EC-Council
    • 2018/10/15 CEH
    • 2018/10/29 ECSA

Moving forward is the best strategy of retreat! I’ll keep moving.

Bruce Passed CISSP Exam on 19th Jun

Posted on by
2

CISSP Text.jpg

Special thanks to Luke Ahmed and his Facebook Group: CISSP Exam Preparation – Study Notes and Theory.

After a prolonged 2-month journey that takes 250 hours in 45 effective study days, I finally cleared the CISSP exam today. Thanks to the new CAT examination with 100 questions in 3 hours, the threshold to obtaining CISSP is lowered to a reasonable level, even though it is still quite challenging.

It’s nice that the CISSP exam is reasonably challenging. I wish you all the best to clear it ASAP.

The following resources are helpful to me:

PS. I am sorry to let you know that I’ve attended the official CISSP classroom-based training in Taipei and it’s a total waste of money and disappointing. The text for this class from ISC2 is just a bunch of slides with terribly poor quality and the instructor, from my point of view, is not prepared and qualified for this class either.