How I Passed the CISSP Cyber Security Exam in Two Weeks

Рет қаралды 144,217

Күн бұрын

What is the strategy I used to pass the CISSP so quickly?
Start learning Cybersecurity today ➡️ www.cybertrainingpro.com/
First of all, there is no doubt that the Certified Information Systems Security Professional (CISSP) is the most desired certifications for organizations. As a result, companies are generally willing to compensate generously for people who pass their CISSP certification exam.
Unfortunately, the CISSP certification exam is quite challenging for most people because it requires vast knowledge of Cyber Security. Consequently, most domains are areas that people have never had exposure with or experienced. Trust me though, your shiny new CISSP certification you will have recruiters constantly hitting you up for job interviews. Therefore you can only benefit from getting CISSP certified.
In this video I walk you through the tips and tricks I used to pass the CISSP certification exam. I also want you to keep in mind that everybody’s experience with the exam and preparation is different. The journey might take you longer, but it will be worth it in the end. Finally, make sure to check out the below resources to help you in your studies.
Books:
Official CBK: amzn.to/2THCPhy
Official Study Guide: amzn.to/369BT7Z
Eleventh Hour CISSP: amzn.to/2Rfavl4
Videos:
My CISSP Course: www.jongood.com/courses/
CBT Nuggets - www.cbtnuggets.com
Cybrary - www.cybrary.it
FedVTE
Practice Tests:
Official Practice Test App - www.learnzapp.com/apps/cissp-t...
Boson Practice Test - www.boson.com/certification/c...
=============================
Today’s Video Sponsor
=============================
Are you interested in sponsoring content? ➡️ jongood.com/sponsor
=============================
Popular Cybersecurity Resources
=============================
Getting Started Resources & Free eBook ➡️ www.jongood.com/getstarted/
Cybersecurity Q&A ➡️ • Cyber Security Q&A
Cybersecurity Projects ➡️ • Cyber Security Projects
Cybersecurity Training & Career Services ➡️ www.CyberTrainingPro.com/
=============================
Cool Tech that I Use in My Studio
=============================
Gear List ➡️ jongood.com/affiliates/amazon/
=============================
Connect with me!
=============================
LinkedIn: ➡︎ / jongoodcyber
Twitter: ➡︎ / jongoodcyber
Instagram: ➡︎ / jongoodcyber
⏰ Timecodes ⏰
0:00 How I Passed the CISSP Cyber Security Exam in Two Weeks
=============================
#CISSP #CyberSecurity #InformationSecurity
DISCLAIMER: I am an ambassador or affiliate for many brands referenced on the channel. As an Amazon Associate, I earn a commission from qualifying purchases.
DISCLAIMER (MUSIC): I only use royalty-free music and sound effects.

Пікірлер: 293

@JonGoodCyber 4 жыл бұрын

Make sure you get these resources to prepare: My CISSP Course: www.jongood.com/courses/ Official CBK: amzn.to/2THCPhy Official Study Guide: amzn.to/369BT7Z Eleventh Hour CISSP: amzn.to/2Rfavl4

@ER_aka_RAM 4 жыл бұрын

Can you start with the 11th Hour or is all 3 required to study in sequence? Thanx for the insight…

@JonGoodCyber 4 жыл бұрын

It's going to vary person to person but the first thing to consider is your experience level. The 11th Hour book is a great no nonsense study resource but it's a condensed version, so you are going to miss out on the heavier details. I would recommend people to start with either the Official CBK or the Official Study Guide and then if you feel very confident you can move onto the 11th Hour book. The CBK and Study Guide both cover a lot of the same stuff, however you get a little more detail in the CBK. Also, I really like the 11th hour book but for most people, it's not going to be sufficient by itself.

@christopherstephens4949 3 жыл бұрын

Thanking God for who ever made me smile this way

@MartyOfAllTrades 4 жыл бұрын

Some very good items here Jon. I am now starting to study again to take the CISSP exam. I first took the test in Oct. 2009 and failed with a score of 539 out of 700 (grossly underestimated this test then). I studied all kinds of items I could get my hands on and took it again in May of 2010 and failed score of 639 out of 700. Backed up and said "okay I am clearly thinking too technical on this or something". I studied again and retook again in April, 2011 and again FAILED with a 679 out of 700. Took more classes and more videos, books, study cards, color coding, etc. and retook the test in Oct 2014 and voila, I FAILED AGAIN with a 679 out of 700. Four times I have sat in a room 6 hours only to fail. I have started studying again to pass this test. The one thing that stands out in my previous studying: 1) I don't think I took enough practice exams. 2). I have far more experience than I did back when I first started. Anyway, I hope to pass this test. I have invested over $4000 of my own money (test fees, books, etc.) and don't have the beautiful gold leafing certificate. I will press on however. Maybe the 5th time will be the time. Keep up the good work. I would say to anyone that they must persevere.

@JonGoodCyber 4 жыл бұрын

Thank you for the feedback! I give you a lot of credit for not giving up but it sounds like you have a good plan for this next attempt. The CISSP is definitely not an exam to take lightly but I am also guessing you will enjoy the current version compared to the 6 hour version.

@novadhd 4 жыл бұрын

Thanks for that. I recently took the Sec + and feel that helps with my CISSP prep.

@JonGoodCyber 4 жыл бұрын

You are welcome! The CISSP covers all security domains so the Security+ material definitely will show up as it's a subset of what you need to know.

@tonberryhugs6435 4 жыл бұрын

Thanks for the video. I attended a boot camp, watched the Cybrary video, spent 15hrs in practice exams, read 3 books, and didn't pass last Summer. I am gearing up to re-attempt in the next two weeks and feel better having already taken it once. I am taking fresh notes and will then do all the official practice tests I can get my hands on before test day.

@JonGoodCyber 4 жыл бұрын

This is definitely one exam that causes a lot of anxiety or nervousness the first time. I know several people who missed on their first try but nailed the second attempt...good luck!

@bhanupratapsingh9258 3 жыл бұрын

Thank you for providing insights about the CISSP exam, really helpful.

@JonGoodCyber 3 жыл бұрын

Thank you for the feedback and I’m glad you enjoyed the video!

@dhansraj7345 2 жыл бұрын

Definitely very useful tips and presented nicely. Thanks Jon!!

@JonGoodCyber 2 жыл бұрын

Glad it was helpful!

@SCRMN9K 4 жыл бұрын

Very helpful and thank you for the perspective.

@JonGoodCyber 4 жыл бұрын

No problem...I hope it helps!

@iceman0886 3 жыл бұрын

Jon, thank you for sharing your tips. I feel that you’re actually covering every single way to prepare though. This isn’t really a 2 week exercise. Going through a 1000 pages book takes at least 2 months if you also work full time in an ITSec role. I think that depending on one’s security experience, the CISSP exam may be easier or harder to prepare for. As a rule of thumb, if you have the 5 years mandatory experience to receive the credential, you most likely already know 40 to 50% of the content so using trimmed down material to prepare may be sufficient. If you don’t, then the book is probably a good place to start.

@JonGoodCyber 3 жыл бұрын

You are correct in that everybody's experience for preparing and the time that can be dedicated towards studying will be different. The more strategic you can be, the better off you will be. I know people who have gone to a week long bootcamp and passed all the way to a year of studying. I will also add that your work environment plays a huge role in how much you know at the beginning of studying. I was fortunate enough to have a work environment that focused heavily on doing things the correct way and had mature processes to learn from.

@DrivenA111 3 жыл бұрын

What if you have no experience at all? If you already have a bachelor's, all you have to do is take the exam?

@DrivenA111 3 жыл бұрын

@@JonGoodCyber Nevermind, I guess. Wanting a career change from a completely non security job seems undoable.

@JonGoodCyber 3 жыл бұрын

Theoretically you can take the exam at any point but you can't actually get certified without the experience. I would recommend checking out my Getting Started page ( www.jongood.com/getting-started/ ) because I have a lot of resources to get you started on the right path. There are plenty of people who have switched to Cyber Security from completely unrelated paths. The key to switching and being successful is having a drive and passion for the field because everything else will start to fall into place.

@jeffreying4633 3 жыл бұрын

So helpful. This is such a great intro to how to get started and prepared !

@JonGoodCyber 3 жыл бұрын

Glad it was helpful!

@ChetanVithlani 4 жыл бұрын

Very helpful, I'll listen to it at least one more time, good job!

@JonGoodCyber 4 жыл бұрын

Thank you for the feedback!

@noneya135 2 жыл бұрын

Thanks for sharing your experience and the tips.

@JonGoodCyber 2 жыл бұрын

Glad it was helpful!

@mohammedshaik7113 4 жыл бұрын

Thanks a lot for the video , great insight for beginners in this CISSP world.

@JonGoodCyber 4 жыл бұрын

No problem, glad you enjoyed the video!

@maswisnu8274 3 жыл бұрын

great video, I am walking on my second effort to get the cert, hope can take the exam Q2 next year. Remember back in 2017, January, I wasn't pass the cert. Hope I can do better on the preparation and one of the things is "MINDSET" - Manager mindset.

@JonGoodCyber 3 жыл бұрын

Thank you and I'm glad you enjoyed the video! Definitely make sure to focus on that manager mindset. Also, now you know what to expect for the exam so hopefully some of those nerves will be gone.

@karthikeyanv3400 4 жыл бұрын

Great Man. Excellent Tips. I have been preparing for the exam.I was ignored by the Security Manager where I work when I said, I want to do the CISSP. The way you explain the process motivates me to go for the exam. Due to personal situation I have postponed this. Definitely, I will go for it. I have got all the books you showed. I will. Thank you.

@JonGoodCyber 4 жыл бұрын

Thank you for the feedback! That is interesting your manager ignored you about the CISSP. Good luck in your preparation!

@gus3333 4 жыл бұрын

Much appreciated man! I'm just stating my journey to the exam. Take care

@JonGoodCyber 4 жыл бұрын

No problem! Good luck and keep your eyes on the prize, even when it starts to get tough!

@BigRedOverlanding 3 жыл бұрын

How is it going so far

@EloySanchezmreloysanchez 3 жыл бұрын

Great tips. Looking forward to passing the exam. Thankfully I've got more than 2 weeks to study. :0)

@JonGoodCyber 3 жыл бұрын

Thank you for the feedback! Good luck and let me know how it goes!

@brittislove 2 жыл бұрын

This video was very informative, thank you

@JonGoodCyber 2 жыл бұрын

Glad you enjoyed it and you're welcome!

@abiolas942 3 жыл бұрын

Thank you. Really helpful.

@JonGoodCyber 3 жыл бұрын

No problem! I'm glad you enjoyed the video and got value out it.

@ioio5993 4 жыл бұрын

I took and passed the CISSP in 2014. Company (Fortune 100 engineering firm) paid (90% passed). We had 2k engineers on site with 900 who had the CISSP. The company did a 10 week, Wed noon lunch 'n learn class (1 chapter per week with discussion lead by someone who had already passed the CISSP), then a 1 week 40 hour boot camp (with a ISC^2 instructor). A few take aways - only 300 test takers see any single question before it's replaced. So, the test is constantly being re-written. Just how many ways can you ask the same question? Which brings us to the multiple answers - 1 can be tossed immediately, another 1 can be reasoned away, leaving 2 that are designed to be extremely so close that you need to parse the text to figure out which one is the most correct. Mine was the 250 question - 6 hour ordeal. They were also experimenting with the diagrams where you draw lines between 2 columns of items and answers. Our test had some errors - the ISC book had some errors in the ISO layer stack - which was reflected on the test. I think that they fixed that. So, using the most up to date Books is the best approach. Also, on my test - you could write paragraphs of explanations on your answer, if you felt that none of the answers were correct. The Shon Harris book with something like 30 hours of video I also found to be very helpful.

@JonGoodCyber 4 жыл бұрын

Great feedback! I think that ISC2 has come a long ways and even though the 250 question / 6 hour version was like an initiation into the Cyber club, I think the current format is much more fair for the student.

@canonpeters8390 2 жыл бұрын

I looked at the Shon Harris book. Does the book contain links to the videos or did you use the Kindle version?

@ioio5993 2 жыл бұрын

@@canonpeters8390 - Afternoon, To your question, The Shon Harris book I picked up came with a CD-ROM containing the videos (it was something like the 6h edition). I do not know what they do now. I do know that Shon Harris passed away a few years ago, and I believe that the folks helping her at the time, took over in order to continue the operation. There is just way too much there for one person to be able to do it all. Going out on Amazon, I see the book in its 9th edition has a new author - Fernando Maymí, Ph.D., CISSP, along with retaining Shon Harris' name. It does not indicate if there is a CD-ROM or not, or if there are any videos associated with it currently. There are lots of CISSP videos on the web available that you can go watch.

@wangshimeng2199 3 жыл бұрын

Thanks for your video. It's really helpful. I heard some people think the new 3 hours exam is harder than the old 6 hours exam. They think the English in the new version exam was difficult to understand and the questions in the exam was unfamiliar. My first language is not English, I still have the chance to take the 6 hours exam in my native tongue. Do you have any suggestions to which exam I should take?

@JonGoodCyber 3 жыл бұрын

Thank you for the feedback and I'm glad you enjoyed the video. The content itself in the 3 hour version is no more difficult than the 6 hour version because they have quite a bit of overlap of material. With that being said, in the 3 hour version you have to be on top of your game for every question because in adaptive tests, each question has a big impact on your score (especially the early questions). The CISSP in general is known for having tricky wording and they throw lots of garbage details into the question to throw people off. I would take some practice questions in English and see how you do but if you have any doubt, then you might consider your native language version. I'm assuming they try to use the same strategy on questions in every language but the last thing you want is to be tripped up due to a language issue.

@terrytalley 4 жыл бұрын

Question: You actually read and studied all 3 of the above mentioned books in that 2 week period, plus go through the aforementioned videos and practice questions? That's pretty impressive! Thanks for the training suggestions and resource links!

@JonGoodCyber 4 жыл бұрын

It was more of a combination of all the resources. As you go through the material, some subjects tend to click a lot easier than others and on the harder subjects you can dive deeper into the resources that cover subjects more in-depth. No problem hope the resources help!

@souissinoureddine7612 3 жыл бұрын

It is very Helpful...thank you

@JonGoodCyber 3 жыл бұрын

I’m glad that you enjoyed the content!

@ibrahimabdullah9364 4 жыл бұрын

Thank you Jon !!! that's was so useful. Do you think if someone study 11 hours CISSP book + Cybrary + CBT Nuggets and practice exams that would be enough to pass the exam ? or reading the study guide which is around 1000 pages is a MUST to do ? I'm not that type of person who likes reading :( . Advise me please

@JonGoodCyber 4 жыл бұрын

The amount of preparation you need depends somewhat on your experience and previous knowledge of the domains. If you wanted to try that path, I would take a full practice test after you finish the 11th hour and videos to see how you score. That way if you only need to brush up on a few domains, you know where you need the work. Although I'm not against taking a chance on the exam, the cost and retake periods aren't that forgiving compared to other certification exams.

@ibrahimabdullah9364 4 жыл бұрын

@@JonGoodCyber Thanks a lot again Jon !!

@JonGoodCyber 4 жыл бұрын

@@ibrahimabdullah9364 No problem and good luck! Let me know how things go.

@ZERO_TO_IT_HERO 4 жыл бұрын

Great tips!

@JonGoodCyber 4 жыл бұрын

Thank you! I appreciate the feedback.

@CozyBear_29 4 жыл бұрын

Cheers for the vids.

@JonGoodCyber 4 жыл бұрын

Thank you for the support!

@cocotwins 3 жыл бұрын

How early would you recommend someone to take it if they wanted to take it early? I have a little over one year exp in InfoSec. I’ve dealt with tech long before that. I have CCNA cyber ops. CCNP Security. I currently work as a Network Engineer for a well known software company. And I have some relevant Linux knowledge as well. I think I have a shot at acing this exam with a good while of studying. What would the impression be? All opinions welcome.

@JonGoodCyber 3 жыл бұрын

You really shouldn’t be looking at the CISSP until you have 3+ years of experience. Given a solid background, you could study and pass but I don’t recommend it for two reasons: 1. If you pass you can’t claim the certification without the experience and have lost time that would have better spent getting other high value certifications to propel your career like cloud as an example....and 2. What happens if you fail? People fail all the time and besides not being a cheap exam, now you have to decide to sink more time studying or come back later.

@slisyd 2 жыл бұрын

Great video and tips! Any tips for someone wanting to restart his IT career its been 20 years for me. Where do you recommend i start if i want to end up in the cyber security field.

@JonGoodCyber 2 жыл бұрын

I'm glad that you enjoyed the video! If you've been out of IT for 20 years, you're definitely going to have to go back and revisit some of the basic information. Things have changed a ton even in just the last 10 years so I would recommend grabbing a copy of my free eBook ( www.jongood.com/getstarted/ ) and check out the roadmap of skills and certifications.

@slisyd 2 жыл бұрын

@@JonGoodCyber thank you kind sir i will

@dearshomy 2 жыл бұрын

Thanks a lot. I have worked for about twelve years now as a network engineer, I also fix hardware, configure software and dabbled recently into GCP. How much coding knowledge does one require before going into CISSP and also how much cybersecurity experience?

@JonGoodCyber 2 жыл бұрын

You don't need any coding knowledge prior to studying for the CISSP but one of the domains is Software Development Security so you'll have to learn about secure development at a high level. As far as experience, you'll have enough years to qualify as a network engineer but the amount of study time that you'll need will be dependent on how much knowledge and experience you have in the domains. Everybody's experience and knowledge going into the CISSP is different so it's hard to predict what you'll need to learn or brush up on without going through the material and taking a practice exam or two.

@SavageScientist 2 жыл бұрын

I took my Security Plus while in the Airforce in 2010 just subscribed next step is Cissp

@JonGoodCyber 2 жыл бұрын

Awesome and thank you for sharing!

@bosonrobotics1391 2 жыл бұрын

Hi, Jon. Is it enough to study only the OSG book? As you said, it's easier than the CBK book, and both of them have so many pages.

@JonGoodCyber 2 жыл бұрын

The official study guide will definitely have all the information you need. The CBK usually has some more examples and coverage of areas but they can't get too crazy on an exam that is 100-150 questions. Security is a very broad subject so the books are naturally going to be really long no matter what.

@baki2063 Жыл бұрын

I plan to take the sec+ pentest and cysa before I touch Cissp. I managed to gain the net and a+ in the same month and now I’m on day 7 studying for sec plus and I feel I’m ready . We will see how it goes

@JonGoodCyber Жыл бұрын

Awesome and good luck!

@Mangokyaw Жыл бұрын

Any result sir?

@ibrahima2954 4 жыл бұрын

Hi Jon, Do you think Eleventh Hour by Eric is enough for the preparation or still I need to go through the (ISC)2 Study Guide?

@JonGoodCyber 4 жыл бұрын

It depends a lot on what your background and knowledge level is currently. The Eleventh Hour book is very condensed...I like to compare it to a cliff notes version. If you decide to start with the Eleventh Hour book, I would take a practice exam immediately once you finish the book and then you can see how much additional studying you might need. I wouldn't simply read the Eleventh Hour book...feel like you are ready to go...and run out and take the exam without doing a practice exam to make sure you are ready.

@peaceful4you408 Жыл бұрын

I literally just passed my CISSP. I passed it with no experience. The only resource I used was sybex by mike chapel and a book called the 11th hour.

@JonGoodCyber Жыл бұрын

Congratulations! What does your plan look like to gain the required experience so you can get awarded your certification?

@dbronx347 4 жыл бұрын

A lot of people say "make sure you don't think technically. Think like a manager." Well, I just read the Sybex book and the Eric Conrad study guide, along with the practice questions that came with them. Both books aren't technical at all. None of the domains goes deep enough to be technical. So how can I even get tempted to "think technically" on the exam? Am I missing something?

@JonGoodCyber 4 жыл бұрын

When people say to "think like a manager", it is because the exam isn't going to ask a technical fact based trivia question for example "Which port does HTTP use?"...the exam will ask you a question that requires you to think deeper and potentially make a judgement call. The exam has to cover so much information that it's usually "a mile wide, but an inch deep" because a manager is going to have broad knowledge of the domains but they aren't going to be an expert in every subject. The people who fall into the technical thinking trap usually come from a technical background and very often have technical certifications...these people frequently conclude that technology is always the answer, when in fact policies and other non-technical aspects might actually be the root cause of the problem.

@stevengarcia5382 4 жыл бұрын

What about the Shon Harris book? That’s all I’ve been recommended. If I study that then I should be ready to take the exam... what I’ve been told. I have ISO 27001 Lead Implementer, Lead Auditor and QSA certs

@JonGoodCyber 4 жыл бұрын

Shon Harris passed away in 2014, and the exam has changed a few times since then. I do see some newer books (2016 and 2018) that list her and the same person as authors but any material that she wrote directly would have been done in 2014 or earlier. Honestly her material had mixed reviews from people anyways but sometimes one instructor style works better for some than others. I would highly encourage you to take a practice exam before taking a real exam attempt...that experience will most likely suit you well but the questions are tricky so work experience and no practice questions is a risky experiment.

@farhan.a 4 жыл бұрын

Hi Jon. Thank you for a very detailed overview. You mentioned about listening to mp3 files while driving . How can I find those files?

@JonGoodCyber 4 жыл бұрын

The mp3 files I used were from Shon Harris and came with a practice exam question book but they would be older material today. I found one on Audible that looks good amzn.to/30D8x0V ...disclosure (As an Amazon Associate I earn from qualifying purchases.)

@farhan.a 4 жыл бұрын

@@JonGoodCyber Thank you Jon.

@JonGoodCyber 4 жыл бұрын

@@farhan.a No problem glad to help!

@jaysonmiraflor 3 жыл бұрын

Hi Jon! Which pays more? CCIE vs CISSP vs CISM? I'm coming from 10 yr Service Provider NOC background with very little network security experience (currently studying NSE 4 exam)

@JonGoodCyber 3 жыл бұрын

That's kind of a loaded question because it depends on several factors (company, experience level, etc.). CCIE and CISSP can be fairly similar assuming you have around 7-10 years of experience but the jobs might be drastically different. CISM is really intended for a narrow audience that runs a security program (high level management job), which if we are speaking in those terms would net the highest pay. Like most things, it's really going to depend on the specific situation because the certification isn't the only thing that will impact pay.

@BosonMichael 4 жыл бұрын

Thanks for recommending our practice exams! We at Boson appreciate it. :)

@JonGoodCyber 4 жыл бұрын

Of course! I try to give my honest opinion and I am a huge fan of Boson. I also used the simulator and practice exams when I was going for my CCNA.

@BosonMichael 4 жыл бұрын

@@JonGoodCyber If you guys keep buying them, I'll probably keep writin' them! :)

@bellor7167 3 жыл бұрын

Thanks you so much. This video means alot to me.

@JonGoodCyber 3 жыл бұрын

You are so welcome! I'm glad you enjoyed the video.

@amnest1ac 3 жыл бұрын

Right. Could you please present some evidence to back your 2-week journey to passing the test. I would be most impressed. At present, I find it rather unlikely that this could be achieved in under two weeks; and I have done the work, and passed the exam with pre-existing knowledge and experience at hand. I would also advise against utilizing additional material that is not from the ISC2. Anyone willing to pass the certification should focus on the official study guide only. Other material may conflict with the official study guide, and it may cloud your perspective when sitting the exam.

@JonGoodCyber 3 жыл бұрын

It's true that everybody will have a different experience with the exam based on knowledge of the domains, experience, and several other factors. I've seen people who have gone through a one week bootcamp and passed, which is pretty incredible. With study materials, you are accurate in that the exam is based on the official common body of knowledge (CBK), which is the biggest book they sell. As long as you go with resources that are credible and have good reviews, then it won't be that big of an issue. One of the issues sometimes is going with unknown resources as your sole source and expecting good results. I always encourage using multiple resources because sometimes different instructors will make things click in your brain better than others.

@canonpeters8390 2 жыл бұрын

I think to pass this with two weeks of prep is a little mis-leading, but he said he had prepped for another exam right before and it most likely had similar prep materials. It also makes a huge difference if you are in the mode of taking tests. When in test taking mode, you have nerves of steel, can think like you need to under that pressure and you have worked the endurance to recall answers. Jon was prepped and ready long before the two weeks to focus on the material. He also may groom his thinking skills to understand questions quickly. To each man his own way!

@amnest1ac 2 жыл бұрын

@@canonpeters8390 there is no way he completed this in two weeks. As for other exams, you can do CISM and/or CISA, or anything else for that matter, but it is not the same. A person with pre-existing knowledge and experience could expect to pass CISSP with 2-4 months of preperation.

@danielpowery8460 3 жыл бұрын

What resource did you use to acquire the MP3 Audio study/prep?

@JonGoodCyber 3 жыл бұрын

The MP3 files came with a Shon Harris book, however it seems like a lot of study sources have gone away from the audio files.

@myrolodex 4 жыл бұрын

Hi Jon, thank you for the great advice! I'm going to start studying and between CBT Nuggets and Cybrary, which one do you think is better to start with?

@JonGoodCyber 4 жыл бұрын

I found that CBT Nuggets was better for studying and Cybrary was better closer to exam time.

@dragonsprayer3076 3 жыл бұрын

Thank you

@JonGoodCyber 3 жыл бұрын

You're welcome and I'm glad you enjoyed the video!

@SgopalJ4940 3 жыл бұрын

Hey Thanks for that But would like to know that since I am not from a IT background how long it takes for prep?

@JonGoodCyber 3 жыл бұрын

If you have no IT background, then the CISSP should not be something you are concerned with right now. Passing the CISSP exam itself doesn't award you the certification and actually requires an experience verification to get fully certified. I would recommend checking out my Getting Started page ( www.jongood.com/getting-started/ ) where you can find a solid plan to set you up for success.

@SgopalJ4940 3 жыл бұрын

@@JonGoodCyber 👍Thankyou very much

@socoool5918 3 жыл бұрын

Hi Joe , I have a strange selly question, but please I need to have the answer, I have masters in Cybersecurity, I have more than 5 years on IT Security, do I have to take Security + to prepare for the CISSP? Why I am asking that , because I don't remember the technical parts and I don't have time to catch the new technology.

@JonGoodCyber 3 жыл бұрын

I think this was meant for me (Jon), but to answer your question, if you don't have the knowledge on the Security+ then you aren't going to pass the CISSP. The Security+ is an entry level certification and even a non-technical manager is likely to have more knowledge than what is covered. Although the CISSP doesn't go deep into technical concepts, it certainly goes deeper than the Security+.

@socoool5918 3 жыл бұрын

@@JonGoodCyber I know every concept in high level, what I understand from your reply was to have the security + as a prerequisite for the CISSP certification journey,

@212828 4 жыл бұрын

Jon did you read both ISC2 CBK and study guide? Study guide is not good enough y itself without the main book, is this correct?

@JonGoodCyber 4 жыл бұрын

I personally did not read both the CBK and the study guide cover to cover, I read about half of the CBK and the entire study guide when I was preparing. In a perfect world, you would at least read the CBK cover to cover since the exam is based on it. If you wanted to try just the study guide, you could see where you score on practice exams after the fact...but there is a reason why the study guide is shorter and you lose some of the additional information for the domains. Either way, the CBK serves as a great reference book in the real world, so you want to have it in your collection (mine is at my desk).

@212828 4 жыл бұрын

@@JonGoodCyber thanks for taking the time to reply. I had read the sybex book. It's good to visit both your suggested books.

@JonGoodCyber 4 жыл бұрын

@@212828 No problem glad to help! Make sure to let me know how the exam goes and good luck!!

@osamakaiser4205 3 жыл бұрын

Just an honest question, what IT certification path would you recommend to any IT professional from low to high (low being "for starters" and high being "ultimate goal" or "most important")?

@JonGoodCyber 3 жыл бұрын

Useful certifications can vary quite a bit depending on somebody's career path. Early on in a career, there is definitely much more of a defined path that people should follow but once you start getting mid career things become variable due to experience, interests, and a whole bunch of factors. I would recommend grabbing a free copy of my eBook ( www.jongood.com/newsletter/ ) where I lay out a road map of skills and certifications to achieve and for more insight.

@matthewmacdowell6830 4 жыл бұрын

You said you used mp3 files on the way to and from work, was this the ckb nuggets audio files? Something different? thank you

@JonGoodCyber 4 жыл бұрын

The audio files I used came from an older version of this book ( amzn.to/3biPnli ) but there is a newer Audiobook that you could use here ( amzn.to/2XN9m7K ) from a different author. A lot of the training resources have gone away from mp3 files from what I have noticed.

@jeankmeow4422 3 жыл бұрын

How many hours do you spend per day over the Two weeks? Seems like there’s a lot of books to read

@JonGoodCyber 3 жыл бұрын

Everybody has a unique experience based on their knowledge and speed at which people learn the material.

@SuperAnxion 4 жыл бұрын

This is great video thanks, however, Where can I buy Exam voucher?

@JonGoodCyber 4 жыл бұрын

Thanks for the feedback. You have to schedule your exam through the exam proctor...details are on the ISC2 website ( www.isc2.org/Certifications/CISSP# ).

@shobanaathiappan4275 2 жыл бұрын

I subscribed just for the title, even b4 watching ur video..

@JonGoodCyber 2 жыл бұрын

Awesome! I appreciate the support.

@patrickjones2843 Жыл бұрын

I haven't started the practice exams yet but I'm up to Domain 5 in an 8 hour you tube exam cram review. Coming from a network tech, IT instructor, leadership and now Sys Admin perspective I've yet to many new topics but the scope is definitely massive. My official book just arrived and I'm giving myself 2 months to prepare. The book is quite large so hoping 2 months will be enough time. Luckily I'm done with the massive NIST and other ecurity questionnaires so I'm getting more time to review at work. Congrats to all that passed because teh scope is huge especially if you just have leadership experience. Very thankful for my field experience. Hoping sponsorship wont be to hard as I worked in 4 of the domains at an IT consulting firm for 6 years. Definitely going to join my local chapter and start making some new buddies! Do you have to pass the Exam first before seeking sponsorship? Is sponsorship still required in 2023? If I got the Comptia Security + in 2008 could that help in any way? I want to transition from Sys Admin to IT Director or an Auditor sounds fun also.

@JonGoodCyber Жыл бұрын

I don't typically recommend the official CBK because it's excessively long if you're just using it for studying so the official study guide is usually a better option. Endorsement (not sponsorship even though I understood what you were saying but wanted to clarify) is a mandatory requirement to become certified and basically involves an existing member or (ISC)2 themselves to validate your experience. The third party experience validation is part of what makes the certification valuable because it shows that you've at least been in the industry for a little bit. The overall endorsement process is very easy as long as you clearly show you have qualifying experience. As far as the Security+, currently (June 2023) it waives 1 year off of the requirement but it's always a good idea to verify requirements for yourself ( www.isc2.org/Certifications/CISSP/experience-requirements ). Since you mentioned the auditor role, you might take a look at the CISA from ISACA because it's a more relevant certification but of course having both is beneficial.

@teamajlaz8645 4 жыл бұрын

I'm a network engineer and I want to transition into a Cybersecurity role. Is CISSP the best certification to start with? In other words, how can I transition from a network engineer role into a Cybersecurity role?

@JonGoodCyber 4 жыл бұрын

The first question is do you have the 4-5+ years experience to satisfy the requirement (see ISC2 website)? Honestly the Security+ from CompTIA is probably the best and easier entry path into the Cyber Security field. Most jobs that start to require the CISSP are senior, lead or management level roles. Also, it depends which part of Cyber Security you want to break into...if you want to go into Network Security and already have some Cisco networking type certs then you could look at CCNP Security or Palo Alto has a certification...I would think transitioning into Network Security would be a semi easy path for you to take on.

@double_tap1 4 жыл бұрын

Jon... we should get connected great video!

@JonGoodCyber 4 жыл бұрын

Thank you...I appreciate the feedback and support!

@mariembuenaventura1278 4 жыл бұрын

Hi sir, Please create more content!

@JonGoodCyber 4 жыл бұрын

Thank you for the support! There is definitely more content on the way!

@tallahassZ 3 жыл бұрын

My first adaptive IT exam was IIS 4 waaay back in 98...

@JonGoodCyber 3 жыл бұрын

Indeed...adaptive testing isn't a new concept in general, however it is for the CISSP. I imagine it takes a little more work to develop and maintain because they have to assign a score to each question and that can be challenging.

@user_desukedonanika 3 жыл бұрын

I studied official practice test, but couldn't pass the exam. The exam was more difficult then the practice test. The practice test has knowledge based questions, but the exam does not.

@JonGoodCyber 3 жыл бұрын

I wouldn't completely discount the exam having knowledge based questions given that certain subjects are either correct or incorrect. For CISSP practice exams, I highly recommend Boson because they are usually more difficult than the exam.

@sedasezgin 3 жыл бұрын

Hi, i am new graduated in math, and i ve no any experience. Can i take this certificate if i study by myself with these resources? Do you think that i should have an experience in IT department during this learning process?

@JonGoodCyber 3 жыл бұрын

Without experience, you couldn't qualify for the certification even if you could somehow pass (see requirement website below). If you want to get into Cyber Security, I would encourage you to grab a free copy of my eBook ( www.jongood.com/newsletter/ ) where I provide a road map of certifications and skills you need to learn. I also have a playlist for Beginners in Cyber Security ( kzbin.info/aero/PLErQ2qAXz3rq3NhCQfnIotfY2IDj0BtcY ) that I would recommend watching. www.isc2.org/Certifications/CISSP/experience-requirements

@sedasezgin 3 жыл бұрын

@@JonGoodCyber thank you so much for your advices

@AABBULLAH511 Жыл бұрын

Would you recommend a freshman college student take the CISSP? Or to take it later after graduation?

@JonGoodCyber Жыл бұрын

Do you have the experience to meet the requirement? If not, then I recommend watching this video of mine: kzbin.info/www/bejne/fX-5c5Z9r86Gb6s

@kinfeg6561 3 жыл бұрын

Is it necessary to go through these paid materials or trainings to fully prepare for the CISSP exam?

@JonGoodCyber 3 жыл бұрын

Passing the CISSP without any paid materials is going to be very difficult if not next to impossible. Although you don't need every single paid source and can use some free sources, you do get what you pay for typically. Also, in the grand scheme of things...spending for example $100 is nothing compared to some of the higher salary jobs that are going to require the certification, so the worth is there just don't go overboard.

@TiberiuSzabo 3 жыл бұрын

You could try to pass it with free materials... and risk losing the $699 fee or spend $100 on materials and not lose the $699 fee

@darkestknightishere 3 жыл бұрын

Hi Jon, Do one needs to have 5 years to security work experience to be certified as CISSP?

@JonGoodCyber 3 жыл бұрын

5 years experience per the link below, or they offer a 1 year waiver for specific certifications or degrees. ISC2 Official Requirements: www.isc2.org/Certifications/CISSP/experience-requirements

@darkestknightishere 3 жыл бұрын

@@JonGoodCyber Thanks a lot for the info.

@naruharu100 4 жыл бұрын

Is it possible to still take the exam and not "have at least five years of cumulative, paid work experience in two or more of the eight domains of the (ISC)² CISSP Common Body of Knowledge (CBK)"? I'm planning on taking the exam before I graduate since one of my friends parent recommended me this exam over sec+

@JonGoodCyber 4 жыл бұрын

You can take the exam at any time. If you don't have the experience requirement, you have six years to achieve it. ( www.isc2.org/Certifications/CISSP/experience-requirements# ) With that being said, it's basically worthless to take before you have the experience requirement satisfied unless you are right on the edge...for example 3.5 years of experience or more. If you pass the exam, you are an "Associate of ISC2" and can't say "Associate CISSP" or anything that could indicate you are a CISSP holder until you have been endorsed and approved by ISC2. Is the CISSP more valuable than the Security+ in the long run? Yes of course it is but you aren't going to get the CISSP money or opportunities without having the certification in hand. There are WAY better value plays when you have 0-4 years of experience than trying to struggle through trying to learn the practical application of the CISSP material.

@naruharu100 4 жыл бұрын

@@JonGoodCyber that makes sense...I was also wondering if it is better to buy two exam vouchers or just one for sec+.

@JonGoodCyber 4 жыл бұрын

It comes down to a few factors: 1. How confident are you on the material? Use practice questions to help determine this. 2. Are you ok with the additional cost vs playing it by ear to see if you fail? The official voucher through CompTIA is only another $150 for a retake and a study guide (so ~$120 for the retake). That doesn't seem too crazy to me considering the normal cost is $349 but you have to be comfortable with losing that money if you pass on the first attempt. Some people do fail the Security+ even though it's entry level, but from my experience most of the people who really study and work at it generally pass.

@naruharu100 4 жыл бұрын

@@JonGoodCyber would you recommend taking the practice exam first and then see what you need to work on or would you recommend going straight to the book?

@JonGoodCyber 4 жыл бұрын

Practice tests help to determine a baseline of knowledge and can be useful. For most people, the material is full of brand new information to them, so in general I would recommend most people don't skip sections. If you don't have prior IT experience, Cyber Security experience, or you haven't studied some of the objectives recently then practice tests are worthless because any answers you get correct are pure luck. Also, skipping a practice test at the beginning of studying isn't going to make or break your ability to pass.

@damilolairanloye3531 4 жыл бұрын

hi jon, do you have any tips for taking CISA exam.

@JonGoodCyber 4 жыл бұрын

The CISA I found quite challenging to study for because out of all the exams I've taken, it is by far the most dry material to study. The official books are sufficient for reading material ( amzn.to/39FOLoy ) , and the official review questions are the best for practice ( amzn.to/2UTEZLz ).

@Mo-xx9gg 2 жыл бұрын

So did you only have two weeks experience in the IT world? If not, do you mean two weeks study and revision?

@JonGoodCyber 2 жыл бұрын

The full breakdown is in the video but no I did not have just two weeks of work experience...that would be crazy.

@mohammadfaisal9937 4 жыл бұрын

Do suggest someone who has no computer science background to pursue CISSP? if yes then how can he start and approx how much time will it take ?

@JonGoodCyber 4 жыл бұрын

Honestly a computer science background has very minimal benefit in passing the CISSP. Yes there are some concepts around application security where it would be beneficial to already know the information, but the CISSP requires broad knowledge of topics not necessarily a deep technical understanding. If you have no Cyber Security or Information Security knowledge, you should look at taking my Security+ course because it will be a good primer and might only take 1-3 months to prepare and pass. From there, or if you have a background in security, then look at the CISSP once you are close to meeting the experience requirement. It's hard to gauge how long it will take for you...some people take very little time...some people take a year (probably too long). A sweet spot is probably around 4 months for most people. Check out these resources if you want to study for the CISSP: Official CBK: amzn.to/2THCPhy Official Study Guide: amzn.to/369BT7Z Eleventh Hour CISSP: amzn.to/2Rfavl4

@Sam.the.Traveller 3 жыл бұрын

So did you read all these books that is 2700+ pages in 2 weeks ???

@JonGoodCyber 3 жыл бұрын

Of course not that would be insane! Each resource had it's place...the study guide is great for overall learning material but for some subjects the CBK explains it a lot more thoroughly. The 11th Hour book is a pretty quick and easy read because it eliminates all the "extra" details.

@Judsonrocket42 4 жыл бұрын

What advice would you give someone who is studying for CISSP without an IT background?

@JonGoodCyber 4 жыл бұрын

Well when you say "without an IT background", what exactly do you mean? Does that mean you are trying to break into the cyber security field from another field? Or does that mean you are working in cyber security but didn't come up through IT positions?

@user-sm2ng7dt1t 4 жыл бұрын

@@JonGoodCyber I have the same question. I'm breaking into the cybersecurity domain with an accounting/audit background. Trying to mesh that background with IT. Best approach/advice?

@JonGoodCyber 4 жыл бұрын

@@user-sm2ng7dt1t Which area do you ultimately want to break into? If you want to stay in the auditing field you might want to look first at the CISA because it will leverage your background quite well. For the CISSP, what is your current technical knowledge level? You might want to consider the Security+ from CompTIA first if you don't already have it and then build up to the CISSP.

@user-sm2ng7dt1t 4 жыл бұрын

@@JonGoodCyber I have my CISA. I would like to get into a management role or project t management role that could bridge IT with business (and the various supporting functions). I've seen a lot of IT projects go over budget, or not produce what the requirement was, and C Suite people getting relieved of duties. I just finished my CSX, so thought I'd take a shot at the CISSP now. Thx for the reply...much appreciated.

@user-sm2ng7dt1t 4 жыл бұрын

@@JonGoodCyber my technical knowledge is minimal. I'm just building the theory right now...don't think I'll get too much into the technical as I'd like to be more at a management or sr. Management level.

@Python1111100 4 жыл бұрын

Wondering how you could go through all this in 2 weeks?????

@JonGoodCyber 4 жыл бұрын

One of the most important things is that you don't always have to go through every material beginning to end. A lot of the materials I mention focus on different aspects of the exam, but also at the end of the day it depends on how much time you can put towards preparing.

@DignaK 3 жыл бұрын

My boyfriend is doing this exam in a couple days. I wish him all the best

@JonGoodCyber 3 жыл бұрын

Excellent and good luck to him!

@DignaK 3 жыл бұрын

@@JonGoodCyber thank you 🙏🏽

@norwegianzound 3 жыл бұрын

How did it go?

@DignaK 3 жыл бұрын

@@norwegianzound He passed it. After 6 months of reading and 1 hour in the exam, he came out happy. 23rd November 2020, best day ever!

@JonGoodCyber 3 жыл бұрын

Fantastic...passing certification exams is such a rewarding feeling!

@stig44 4 жыл бұрын

Just by checking sample questions - it does not look too difficult

@JonGoodCyber 4 жыл бұрын

Everybody's experience with the CISSP will vary based on their previous work experience, knowledge of the domains, and ability to identify the correct answer. I would be cautious about underestimating the difficulty of the exam. Questions tend to have multiple answers that could be correct but the exam is known to have questions with tricky wording or technical answers that might seem correct when in fact the answer is non-technical. As of today, the ISC2 website says there are 142,112 active CISSP certifications worldwide...remember if it were "easy" that number would be drastically higher.

@mommafitbit3701 4 жыл бұрын

Can anyone comment on how passing the cissp helped progress their career progression in IT , esp. if one's background isn't in security, but in another IT area?

@JonGoodCyber 4 жыл бұрын

I would be interested if anybody has any experience on that. From what I have seen, the CISSP starts showing for more senior technical IT folks and then some management will be certified as well. It's definitely good knowledge for people to have but it still seems like the major focus is on technology and vendor based certifications when it comes to regular IT. Of course if you are in defense or government sectors, then you have mandates that push the CISSP for certain levels of jobs.

@CoopmanGreg 3 жыл бұрын

I am seeing a lot of Enterprise Solution Architects with CISSP as one of their certifications.

@JonGoodCyber 3 жыл бұрын

CISSP definitely fits in that role but I wonder if they had the CISSP prior to getting that role or if they got it after the fact.

@user-rl2qe7io9p 3 жыл бұрын

What do you think about CISSP VS CASP+?

@JonGoodCyber 3 жыл бұрын

They both have value at certain points of a career. The CASP+ is really meant for that senior level technical member who might be in a lead position because there is some overlap with the CISSP. The CISSP on the other hand is much more focused on management level decision making where you need broad knowledge to be successful.

@ktf585 3 жыл бұрын

dude I passed within 7 days with an intercontinental flight in between :D Hoorah!

@JonGoodCyber 3 жыл бұрын

Awesome and congrats!

@defcon9998 4 жыл бұрын

Thank you for the help! Please make more content. I would love to collaborate on your channel. Hopefully I can create my one channel for my journey. ❤️🙏✌️😁

@JonGoodCyber 4 жыл бұрын

Thank you for the positive feedback!

@kuchaldas4278 3 жыл бұрын

Please share the path or source to download cissp mp3 materials

@JonGoodCyber 3 жыл бұрын

The resource I used for audio files is from an older version so they aren't relevant any longer. I would check out Audible ( amzn.to/2QbrzqH ) since most of the training providers seem to have gone away from providing audio files.

@jokeaaaa 3 жыл бұрын

How difficult will it be for a cyber sales guy to pass a CISSP without a deeper technical knowledge of say a pen tester or solutions architect?

@JonGoodCyber 3 жыл бұрын

I'm assuming we are talking about a sales representative/associate and not a sales engineer...if that is the case, then I imagine it would be VERY difficult. The CISSP isn't necessarily the most difficult exam because of the technical knowledge but it's a combination of technical knowledge and experience over many aspects of Information Security. If you aren't working in one of the CISSP domains, you definitely shouldn't be considering the CISSP...not only would the chances be slim of passing but you don't have the experience to be eligible for certification even if you passed somehow. If you are trying to break into actual Information Security / Cyber Security jobs, I highly encourage you go through my playlist for beginners to see the best way to build the knowledge you need ( kzbin.info/aero/PLErQ2qAXz3rq3NhCQfnIotfY2IDj0BtcY ).

@jokeaaaa 3 жыл бұрын

I get you, but client managers generally sell solutions into a variety of domains covering areas of GRC encompassing a variety of frameworks such as ISO, NIST, PCI...usually with internal support of a consultant or a solutions architect so surely this must help in the CISSP quest..

@JonGoodCyber 3 жыл бұрын

You might gain some basic awareness of the frameworks and might be able to pick up some high level concepts but I don't think it's going to make much of a difference when it comes to the CISSP. To be honest, it might not even put you very close on the Security+. As a comparison, I used to sell telecommunications products...did that make me qualified to be a network engineer? No...but it at least gave me some experience with troubleshooting. It's the same kind of thing where you might be ahead of somebody with absolutely no knowledge or experience, but don't expect to walk into a security role or pass a top tier certification with ease. Also, for experience that actually counts towards the CISSP...if you are just the sales rep, then your experience won't actually count towards the certification requirement. This isn't to steer you away from getting into a cyber role if that's what you want, but it's to give honest information. The CISSP is a PROFESSIONAL level certification, where it will take significant effort for most to pass. I would look at the website below to see where they require your experience to come from to give you a more clear picture of the requirements. www.isc2.org/Certifications/CISSP

@jokeaaaa 3 жыл бұрын

@@JonGoodCyberGreat breakdown...Thanks

@JonGoodCyber 3 жыл бұрын

No problem, you are welcome. I am glad to help!

@cosmechs8172 4 жыл бұрын

i subscribed

@JonGoodCyber 4 жыл бұрын

Thank you for the support.

@user-uj5vz9kw7d 10 ай бұрын

❤ um in Botswana and interested of study the course what I suppose to do . 5:11

@JonGoodCyber 10 ай бұрын

All the links are provided in the video description.

@IBRAHIM-yd7so 4 жыл бұрын

I have started studying Cissp what you advise me

@JonGoodCyber 4 жыл бұрын

That's great to hear...best of luck!

@IBRAHIM-yd7so 4 жыл бұрын

@@JonGoodCyber but some people say CISSP unimportant in these days

@JonGoodCyber 4 жыл бұрын

@@IBRAHIM-yd7so In the U.S., the CISSP is still one of the major certifications companies want and list in job ads. It's a never-ending game though and a single certification won't serve as a golden ticket to getting every job.

@IBRAHIM-yd7so 4 жыл бұрын

@@JonGoodCyber l'm happy to hear this thank you so much

@PremKumar-jk6rf 4 жыл бұрын

Thanks Jon for this videos. This need of time for me as I am starting for CISSP exam study. Can you please help me to get videos library(CBT & Cybrary) for free for study.

@JonGoodCyber 4 жыл бұрын

The CBT Nuggets videos can be found here ( www.cbtnuggets.com/certification-playlist/(ISC)2/cissp-2018 ) and they give a free week trial....the Cybrary videos can be found here ( www.cybrary.it/course/cissp/?c=1692847587&ag=68857077987&ext=2430123470&kw=cybrary%20cissp&dv=c&gclid=EAIaIQobChMIu4Dl7-z55wIVguNkCh1j8AW_EAAYASABEgKGavD_BwE ).

@nettyvoyager6336 4 жыл бұрын

just learning it on the fly its hard but it clicks in bits

@JonGoodCyber 4 жыл бұрын

It definitely varies by person too...some subjects are easier to grasp than others.

@mubashirwazir2565 3 жыл бұрын

Good afternoon sir Sir exam is objective type or online ?written test ?please advise me

@JonGoodCyber 3 жыл бұрын

The latest response regarding ISC2 and online testing can be found here: www.isc2.org/Notice/COVID-19-Response-Online-Exams I think that is what you were asking but let me know if you are asking something else.

@mkhan1073 3 жыл бұрын

Good

@JonGoodCyber 3 жыл бұрын

I'm glad you enjoyed the video!

@ibnathebeliever2665 2 жыл бұрын

watching this in 2021, I wonder if the exam format is still the same.

@JonGoodCyber 2 жыл бұрын

The exam format is still the same in 2021 as when this video was published. This means: 1. You get between 100-150 questions based on how well you do, and 2. You have up to 3 hours to finish the exam. With adaptive tests, you also cannot flag questions to come back and answer later because every correct/incorrect answer impacts your next question. As a test taker, I would much rather have the current version because they can't sit there and hammer you on certain domains for a long time like they could with the old version.

@ibnathebeliever2665 2 жыл бұрын

@@JonGoodCyber Noted! Thanks Jon! I just finished off my CYSA+ and not sure what to get next. Any good advice?

@JonGoodCyber 2 жыл бұрын

It depends what kind of position you are looking for but if you are trying to stay security operations, then I would look at the Security Blue Team certifications ( securityblue.team/ ).

@ibnathebeliever2665 2 жыл бұрын

@@JonGoodCyber I have been in Cybersecurity field for 2 years (newbies) and looking forward to gain more knowledge and hands-on in this field. The Security Blue Team certifications looks interesting and I might give it a try. Anyway, your video is great. Totally enjoy your review! :D

@louisedgar8949 4 жыл бұрын

Is Linux academy legit ? Looking to start cissp.

@JonGoodCyber 4 жыл бұрын

Unfortunately I have never used Linux Academy. A few things that I notice though: 1. the CISSP instructor doesn't seem to have much about Cyber Security in his udemy profile that I googled ( www.udemy.com/user/erminkreponic/ ) so that would be of concern to me as that might impact how he looks at things. 2. His KZbin channel ( kzbin.info/door/rHYZGawEmV3MslXcYubNjgvideos ) has a lot of videos on coding but not really anything on Cyber Security so again a similar concern as point #1. Both of my points don't necessarily mean the course is bad, but the cost is very similar to CBT Nuggets as an example where the instructor has more of a Cyber Security background...and that I have personally gone through and can speak to the quality.

@louisedgar8949 4 жыл бұрын

Jon Good thank you for the response. CBT nuggets? Is there a accredited online company I can take training courses for certification? I was looking into Google IT certification through coursera as I am new unfortunately.

@JonGoodCyber 4 жыл бұрын

@@louisedgar8949 There are a lot of training options for the CISSP that will do the trick but ultimately the key is to know the Official Common Body of Knowledge book information. If you go to the ISC2 website, they have a training finder. If you are brand new to Cyber Security, something like the CompTIA Security+ would be a better choice because the CISSP has an experience requirement to get certified. You might even need to look into the CompTIA Network+ to get some basic knowledge first. Also, I have never heard companies wanting the Google certification so I wouldn't waste my time at this point.

@eb4676 4 жыл бұрын

Jon Good thank you so much I would look into CompTIA+ Network then ComTIA+ security.

@JonGoodCyber 4 жыл бұрын

@@eb4676 That is the ideal path although it is possible to pass in any order. If you are interested in the Security+, I have a special promotion on my course ( www.jongood.com/securityplus ). I also made a video about the top 5 Cyber Security Certifications for 2020 that is worth watching ( kzbin.info/www/bejne/eYaul2B_ecqahJY ).

@sabdulruknuddin7284 2 жыл бұрын

Don't u have after job options for learning to students. Because we to earn to take exams.

@JonGoodCyber 2 жыл бұрын

What do you mean as far as job options? Achieving the CISSP can definitely help you in landing jobs but that's only part of the equation.

@izehiagaga6657 3 жыл бұрын

How about how I passed my CISSP in 2 hours??? It's so funny when I hear people say things like this. The actual requirement for the exam is a 5 years work experience. The reality is you passing the exam depends on your residual knowledge on the various security domains and experience. Thus, it will not be correct to say you passed your CISSP in two weeks.

@JonGoodCyber 3 жыл бұрын

You are accurate in that having knowledge of the domains beforehand through either experience or previous studies will aide in both your ability to answer questions and to minimize study time. When people refer to their study time of a certification it means how much time dedicated to those exam objectives because if that wasn't the case, you would have people saying it took them 1, 2, or even 5+ years to study which is ridiculous. Also you are incorrect with regards to the experience requirement. There is no experience requirement to take the exam, however there is a 5 year (or 4 years with 1 year waiver) requirement to get fully certified, otherwise you are an Associate of (ISC)2 until you gain the experience within the required timeframe.

@HamoodiClash 2 жыл бұрын

No one can pass CISSP in two weeks unless you work in Cyber Security for years.

@JonGoodCyber 2 жыл бұрын

Everybody will have a different experience for their CISSP journey because people come into their journey with different levels of knowledge and backgrounds. With that being said, I never recommend people actively pursue the CISSP without a solid foundation of experience because not only does the certification require experience to get certified but also the exam itself will test your ability to answer questions based on your experience. Additionally, I have seen people attend a one week bootcamp and pass the exam so to say it's impossible isn't accurate but I agree it won't typically be the standard experience.

@HamoodiClash 2 жыл бұрын

@@JonGoodCyber I cant imagine people from non IT related fields pass CISSP exam by attending one week course. Why someone who is not in IT field take exam in IT field?

@JonGoodCyber 2 жыл бұрын

I'm not referring to people who do not work in the industry because clearly that is impossible. The CISSP isn't meant for people brand new to the industry, which is why there is an experience requirement to become certified. As I said, people need a "solid foundation of experience" before they consider pursing the CISSP.

@Milky44 Жыл бұрын

@@JonGoodCyber i never did IT but I agree with people from non IT related fields passing it.

@gauravbisht9622 2 жыл бұрын

U have cissp that's great.. Their is only one question is bothering me, why r u not doing a job i mean obviously, you would earn more if u work as a cybersecurity engineer.. I mean why r u running youtube channel, is just so u can guide the new generation.. Nothing personal just asking...

@JonGoodCyber 2 жыл бұрын

What do you mean? I have a full time job in cyber security.

@viper2148 Жыл бұрын

NOTE: if you want to pass the exam in two weeks you just wasted 19 minutes. REALITY: ideally take two to four months to study. MY SUGGESTION: - buy the current Sybex CISSP Study Guide and the companion Sybex CISSP Practice Test book - Sign up for a Test date at your local test center two to four months from now. DEADLINES ARE GOOD!!! - Read the ENTIRE Study Guide and answer ALL of the end of volume questions - Sign up for the Online exams (available if you purchase the Practice Test book) and answer ALL of those questions. - Right down things you think may require memory i.e. portal numbers/definitions, laws and definitions etc. REVIEW - If you're curious HOW the questions will be asked watch several 'CISSP Practice Questions with Spock & Kirk' on KZbin. - STUDY NOTHING THE DAY BEFORE THE TEST. It's too late anyway and you need for your mind to relax and be rested on the day of the test. MY STUDY TECHNIQUE: I studied one/two hours every day before work (I would wake up about 3:00 AM) and did no studying on weekends. I did this for about three months, and I was able to get through all of the material. Good luck.

@viper2148 Жыл бұрын

P.S. I easily passed the test the first time. I simply used the technique I used to get promoted in the Air Force (which (in my humble opinion) was far more difficult (in the 1990s) than the CISSP).

@JonGoodCyber Жыл бұрын

"Ideal" is relative depending on an individual's background and knowledge. I've seen people go to a one week boot camp and pass but I've also seen people take a year to pass so nothing is a guarantee. Everybody's journey is different and a strategy that worked for one person may or may not work for somebody else. I'll also add that certain work environments where the security program and policies are based on industry best practices will naturally prepare you better potentially requiring less study time than those that "wing it." Thanks for sharing some suggestions.

@thezackperry24 2 жыл бұрын

Just started this video...feel like I'm setting myself up to fail lol

@JonGoodCyber 2 жыл бұрын

There is time to change and not fail!

@Hopkins132 3 жыл бұрын

1.25

@JonGoodCyber 3 жыл бұрын

I'm glad you enjoyed the video!

@nettyvoyager6336 4 жыл бұрын

sometimes its a brick in the face :)

@JonGoodCyber 4 жыл бұрын

It's definitely not the easiest exam out there!

@CoopmanGreg 3 жыл бұрын

My first couple SQL Exams were so hard and took me several tries and many months to pass in 1999 (studying full time and not working), but after passing the first couple, things got easier and now I have passed 25 or more exams. But the first ones almost broke me.

@JonGoodCyber 3 жыл бұрын

Isn't that amazing? It's like once you get into a groove and learn how to really be effective at studying, things just naturally start to fall into place.

@donnylee9897 Жыл бұрын

If only my brain retained what I read lol

@JonGoodCyber Жыл бұрын

That's why I recommend using at least two sources of different methods (i.e. book, video course, etc.) to study.

@donnylee9897 Жыл бұрын

@@JonGoodCyber Noted, thanks

@hardhouseinc 4 жыл бұрын

2 Weeks? Are you a speed reader with an eideitc memory? wow

@JonGoodCyber 4 жыл бұрын

The CISSP exam is definitely a challenge but I think with my tips and some dedication most people can pass the exam.

@hardhouseinc 4 жыл бұрын

@@JonGoodCyber I see. Ive read the Sybex 8th edition cover to cover. Took me two months. This stuff is drier than the Sahara. Took a company run class, but that was just powerpoint from the book, did the 2nd edition study test book, doing the cybex flash cards, trying to get through the cybrary course and do it this month but Im about 20% confident Id pass. I dont have the mindset for this junk and memorizing a bunch of useless lists isnt for me. The endless lists of their buzzwords and whatever just dont stick. Plus I really dont care. I dont see this test as an accomplishment. Its a moneygrab IMO and dont see the point if thats what they want you to know. Youd learn more just reading cyber news articles every day.

@JonGoodCyber 4 жыл бұрын

@@hardhouseinc There is no question the domains contain a lot of information...most people only have experience in a couple of domains and depending on the domains, some are much more challenging to grasp. The value of certifications can come in many forms...the CISSP is still the "gold standard" especially when it comes to Information Security Management...if nothing more a lot of companies really want it so that is definitely a benefit.

@hardhouseinc 4 жыл бұрын

@@JonGoodCyber Which is why they get away charging $700 for a 100 question test that is geared to make you fail. And then very detail technical questions or from long lists used to trip you up, over what is stressed as a manager type test. Just how Sec+ turned to CEUs, I really hate an obvious money grab. Ive learned a bunch of stuff reading the book and doing the Cybrary test, but I think you need to be low on sense and big on manager type logic, never a technician. IDK, Im the wrong person for this type of stuff. I was proud of my CCNP tests I passed. There you know real things, not majority of a companys theoretical best practice.

@JonGoodCyber 4 жыл бұрын

@@hardhouseinc No question the CISSP is a managerial mindset exam. That is a major reason why some people fail the exam because they are trying to get too technical where management relies on a lot of factors for decision making that might deal with risk or other non-technical factors that can be ambiguous. Hopefully if you decide to take the exam, you knock it out of the park and can get back to some technical studies!

@TempleOfDoom930 2 жыл бұрын

"Failed the Exam" means failed the money I paid. :(

@JonGoodCyber 2 жыл бұрын

Failing an exam is never a great feeling but if you're in this field long enough, you'll fail at least one exam if not more. The key is to identify why you failed, and then address those areas so that you pass the next time.

@TempleOfDoom930 2 жыл бұрын

@@JonGoodCyber Hi Good, if you could put some thought on this matter that I am preparing CISSP and its my 1st attempt. I am studying Sybex. Each chapter I study then when I answer those review questions I score 17/20 on average. What do think of my preparation progress? 17/20, is it good or I need to be concerned?

@JonGoodCyber 2 жыл бұрын

Below are my general recommendations for consistent scoring on practice exams: -60-74% = You are close enough to where you could pass, but there's some risk because you aren't quite there in all areas. -75-84% = You are proficient in enough areas where you should be able to pass. -85-100% = You aren't going to have any problems passing. Sometimes I see people in this range who have taken the same questions over and over again, which makes it a less accurate score.

@TempleOfDoom930 2 жыл бұрын

@@JonGoodCyber Domain 3 - Security Engineering, I find it it pain except cryptography part. I understand this part clear. But about Trusted Computer Base is really painstaking for me. I would like to ask are TCSEC and ITSEC important for current CISSP trend?

@JonGoodCyber 2 жыл бұрын

When it comes to the exam and what's important, you'll want to pay attention to the domain weight percentages ( www.isc2.org/CISSP-Exam-Outline ). Given that domain 3 has a weight of 13% currently, I would make sure you understand it from a high level. You probably aren't going to get 10 questions on it but you might get a couple.