Passed my exam today, super blessed to have this video before it! Thanks Pete!

I got 5 correct out of 10. The Quantum Exam author says you should be good if you are getting 50%-60% on the actual Quantum Exam. I failed this exam three times last year before QE was introduced. 2021 CISSP questions were more straight forward. 2024 CISSP questions are more like this, unless you happen to get a 2021 type exam, as some have mentioned the questions being easier than QE while mine were like QE questions. I test my final time in two weeks and I bought QE before the price increase. We shall see…

"Great video, Pete! 🎉 The detailed breakdown of the READ strategy and the step-by-step walkthrough of practice questions are incredibly helpful for anyone preparing for the CISSP exam. The insights on tackling advanced question types are a game-changer! Thank you for creating such a comprehensive and practical resource for CISSP candidates. 🙌"

Awesome video. Just bought QE yesterday for my last few weeks of exam prep. Now I have a perfect strategy ti approach each question! 🙌🏼

Man these are brutal, I bought the Quantum Exams questions just before watching this video so I was pleasantly surprised to see them used in your training material. These 10 questions definitely exposed gaps in my reasoning and also technical knowledge. Good thing is I have another 600 of those from QE lol and also almost 4 weeks until my exam. Back to the drawing board I guess. Thanks for your training videos!

This was incredibly helpful. Thank you for sharing your knowledge.

Awesome!! Always helpful!! Taking exam soooon!!

Awesome, taking the exam in February. Thank you so much!

Thank you very much for the content! I have subscribed to Quantum Exams, but I am a bit skeptical about the questions and the explanations provided for the answers. I would appreciate hearing your opinion on a specific question I came across. What do you think the correct answer should be? John, a network engineer, is tasked witch securing a corporate network against unauthorized access. During a recent review, he found that many employees are sharing their login credentials witch colleagues. what is the most effective measure John should implement First? 1.conduct training on password security. 2. Develop a strict password policy. 3. implement two-factor authentication for all accounts. 4. Monitor user activity for unusual login patterns. Looking forward to your insights.

Hello Pete sir, my take on question #05 on why either SOC 1 or SOC 2 aren't correct choices. SOC audit reports are meant to be consumed only by the external audience such as user organizations (clients/customers/prospective clients) and not for the service organization (Finance Station) by themselves. The question only states that service organization is looking for a way to assess the technical controls but doesn't mention anything on who the consumer is. Simply put, SOC audit reports exist in first place for helping the user organizations (clients) understanding the effectiveness of design/operations of control environment in the service organization (Finance Station), hence both SOC choices seem to be incorrect for me. Because, if a SOC 2 audit is to be performed, the firm Finance Station by itself cannot perform as it needs to pull in an independent auditor to perform and three parties are involved in any SOC audit- service organization (the organization on whose controls are being audited), user organization (client who uses this report to evaluate whether can rely on this service organization (to whom they have outsourced certain services) or not) and service auditor (an independent auditor hired by the service organization which performs an audit and issues report in compliance with standards prescribed by USA's AICPA, e.g., SSAE18). However, the question doesn't mention any of these details. Request you to kindly let me know your opinions on this, please. Apologies if my English is broken, I am from India.

Appreciate all you do sir!

Great value

Hi Pete, first of all thank you very much for the content! I respectfully disagree with the answer for question #4. I understand that the purpose of the question was to make us aware of the importance of physical security, but physically isolating the location of the fax machine only protects the information on the printed paper. It does absolutely nothing to protect the information in transit, as fax machines typically send data without any form of encryption. I mean, how can this be the MOST effective method to ensure protection of confidential information when anyone can tap into the network and obtain all the confidential data in cleartext? Thinking like a manager, I understand that alternative C is much more effective for protecting confidential data, policies are "corporate laws," and a policy discouraging the use of fax machines seems necessary in this scenario to initiate the transition process from fax machines to other, more secure transmission means that protect information in all its states. The perfect answer would be to completely abandon fax machines, so discourage their use seems to me like the closest alternative.

hi pete, for question 1 : the question never talks about about the organization is a nuclear facility or reorganization handling nuclear facility management. so how can we choose that answer when he question never mentioned it . the question only mentions "the organization" it can be any organization . as per the writer of QE said on reddit " don't make things up on your own, just answer the question". i understand that human safety always comes first , but the question never talks about a nuclear facility.

Thank you so much !

Thanks for all the great contents you are sharing on youtube. They are very helpfull for my exam preparation. My exam will take place in around 2 weeks and i'm wondering if buying your book now make sense ? As diagrams, reference tables and the what, when, why are things that help me to prepare for the exam.

#4 should be C. That is the only way transmission vulnerabilities are avoided.

it is a bit sad that I only got 6 out of 12 correct, they are quite hard, I wish the real exam could be eaiser, but anyway I prepared for 4 months already, after finishing Quantum practice, I will book my exam, thank you Pete for your great video and Last Mile book, they are really helpful. I have one more question with the Last Mile book, it contains fewer topics than OSG, does that mean those exlcluded topics wont show in exam?

Question 6. The first thing he should do is creating awareness which is achieved by Option B.

Thank you

Hey awesome video, quick question though. I went to the quantum exams website and all I saw was the sample practice exam questions (which were 10) and the course. Is the course where the practice exams are? Thanks for your help

Questions 8 caught me off guard !

thanks but these are ridiculously hard... information owners mentioned but not data owners in the centext of PII is wild lol

Thankss

Sir Quiz 4 I need some more explaination, Why not C As a CISO why i won't go policy over a Process

Hi Pete, I don’t want to spoil this video by watching it now, as it seems I need to finish all training before watching it, is that a safe assumption?

How is question 6 D? You could develop all of the policies you want but if your users are not educated it won't really matter.

4/10 :( I was close to 5

Are you sponsored by QE?

Got only 2 right out of 10😂

Thanks! Well timed as I'm planning to take the exam soon. The questions are always annoying to me as I'm always overthinking too much and not the right thing probably. E.g. Q4 is talking about the MOST effective and Pete is talking about COST effectiveness. These make me mad even though I picked the correct answer this time 🙃

Thank you!!😊