OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: [CISSPSTUDY] Suggestions for passing the CISSP exam
From: David Rankin (David.Rankin@EY.COM)
Date: Thu Oct 19 2000 - 10:24:23 CDT

It can be found at www.srvbooks.com

I just started reading this book. It takes some concentration due to a
writing style that I am not accustom to. Some sentences have multiple
subjects/topics. Excluding that, so far the information has been fairly
easy to follow. The benefit that I get out of it is terminology. I have
spent 11+ years in the network/physical/cryptography security realm, but 10
years of it was in the Air Force and I find that I do not use all of the
same terms as civilians (the ranks of which I have now joined).

I do have a question on this topic though. I am studying for my CISSP, and
I have several years of experience as noted above. I have taught the
Global Knowledge courses in Network Security and VPNs. I am currently
reading a few books to include the SRV book and the "Information Security
Management Handbook" edited by Tipton and Krause. I am about half way
through it, and have not found anything very challenging yet. That is what
bothers me. I have signed up for the review seminars, and I am still
working directly in the field. My question is: Is this enough? I have a
past history of over preparing for certifications, which is not a bad
thing, but I am worried that I am missing something (which has also been a
past pattern of mine). Do any current CISSP's have any additional advice?

Thanks,
Dave

Steve Starcevic <stevesta@NORTELNETWORKS.COM>@SECURITYFOCUS.COM> on
10/18/2000 06:37:28 AM

Please respond to CISSP Study Mailing List <CISSPSTUDY@SECURITYFOCUS.COM>

Sent by: CISSP Study Mailing List <CISSPSTUDY@SECURITYFOCUS.COM>

To: CISSPSTUDY@SECURITYFOCUS.COM
cc:
Subject: Re: [CISSPSTUDY] Suggestions for passing the CISSP exam

I just looked up the Author,  Rao Vallabhaneni, at a online book store
(fatbrain.com).  4 out of the 5 books authored by him are out of print. The
CISSP Exam. Textbook is not even listed.  Have you any sources where this
Textbook can be obtained?

Steve

   -----Original Message-----
   From:   Klear Sideris [SMTP:klearbh@HOME.COM]
   Sent:   Sunday, October 15, 2000 3:41 PM
   To:     CISSPSTUDY@SECURITYFOCUS.COM
   Subject:        [CISSPSTUDY] Suggestions for passing the CISSP exam

   Greetings -

   If your objective is to pass the CISSP exam, then:

   1.  Recognize that to get a score of 75%, you only need to nail 50% of
   the questions & eliminate 2 of the 4 choices in the rest.

   2.  Use ISC's "CISSP Certification Common Body of Knowledge Study Guide"
   & Rao Vallabhaneni's "CISSP Examination Textbook".

   3.  Create a matrix w/ the things you are unfamiliar with, (e.g.
   encryption / authentication / integrity / repudiation / ... vs.. RSA,
   DES, Kerberos, SHA...) and memorize it.  The first thing upon exam
   inception write down the matrix & reference it during the test.

   Of course gaining true expertise is a little more involved!!

   Klear

*******************************************************************************

Note: The information contained in this message may be privileged
and confidential and protected from disclosure. If the reader of this
message is not the intended recipient, or an employee or agent responsible
for delivering this message to the intended recipient, you are hereby
notified that any dissemination, distribution or copying of this
communication is strictly prohibited. If you have received this
communication in error, please notify us immediately by replying to the
message and deleting it from your computer. Thank you. Ernst & Young LLP
*******************************************************************************
             +--------------------------------------------+
             | You have received this email because you |
             | subscribed to the CISSPSTUDY mailing list. |
             | -- To unsubscribe, send an email to -- |
             | listserv@securityfocus.com |
             | with a message body of: |
             | UNSUBSCRIBE CISSPSTUDY |
             +--------------------------------------------+