Passed the CISSP Yesterday, 26 May! 🎉 Passed @ 100 questions with 58 minutes left to go, it's my first attempt. Huge shoutout to this CISSP Study Group (especially @Vincent Primiani & @Ed Morawski ) and all community members, you were the fuel on days when the tank was empty. Answered the daily quiz questions and few days community quiz sessions 💪😄 No bootcamps, no classroom. After work self-study for 2.5 months, coffee, and stubbornness. Thanks for the support guys and all the best for fellow mates💪

I’m excited to let you all know that I passed the exam today. I’m still pretty overwhelmed am not sure how well I did but I guess it was good enough!

105 questions, 45 minutes left on the clock. After failing in February, I've provisionally passed. What changed between February and today: Mindset shift — I stopped thinking like a technician and started thinking like a manager. Every question, I asked myself: "What would a CISO advise?" not "What would I configure?" This was the single biggest change. Reading discipline — More than half my practice errors came from misreading questions, not from lack of knowledge. I trained myself to identify the qualifier (FIRST, BEST, PRIMARY), any constraints (budget, minimal impact), and dual requirements (balance X with Y) BEFORE looking at the answers. Trust your first instinct — On my mock exams, I lost points every time I changed an answer. If your first choice is based on reasoning, don't switch it because of doubt. Time management — I set milestones: Q50 by 1 hour, Q100 by 2 hours. This kept me from rushing at the end. I finished with plenty of time. Study approach — I used practice questions to identify patterns in my mistakes, not just to memorize content. Knowing WHY you got something wrong matters more than knowing the right answer. Tips for exam day: The exam tests whether you can make security DECISIONS, not whether you can recall facts "More security" isn't always the best answer — look for what's proportional and meets ALL the requirements in the question Policy/governance before technology. Assessment before implementation. Root cause fix before compensating controls. Don't panic if questions feel hard — the CAT adapts. Hard questions mean you're doing well. Thank you all for the support through this journey. The group study sessions made a real difference. For those still preparing — the knowledge is probably already there. Focus on how you READ and THINK through questions, not just what you know. See you on the other side. 🏆

Hello Everyone!!! @Enrico Sciullo has created multiple mock exams for the next 3 weeks starting today. Thank you for all of your hard work my friend!!! They start @9:00am EDT. They will run on Saturdays and Sundays. You will have 3 hours to complete each exam. Once you have completed the exam, you will receive your results. The URLs will be posted for the exams, your results, and other information. Join the sessions and have fun !!!

Your organization deploys an autonomous AI agent that queries multiple internal data repositories to generate executive reports. The development team requests broad read access "so the model can learn what's relevant." As the security architect, what is the MOST appropriate approach? A. Grant read-only access to all repositories and log every query for review B. Provision a non-human identity with least-privilege, task-scoped entitlements C. Route all agent queries through a human-approved request workflow D. Use the developer's service account credentials for traceability Come back for the answer tomorrow, or study more now!