Activity
Mon
Wed
Fri
Sun
Aug
Sep
Oct
Nov
Dec
Jan
Feb
Mar
Apr
May
Jun
Jul
What is this?
Less
More

Memberships

CISSP Study Group

2.2k members • Free

47 contributions to CISSP Study Group
Passed the CISSP
I (@ Capri in group sessions) have passed the CISSP at 100 Questions with 50 mins time & 50 questions remaining, it was my first attempt, I was keeping it postponing from Mar 2026, thinking I lacked preperations every time when tried to press the exam appointment confirm button. I almost keep attending daily study group and answering daily question from about 6 months, group discussions, variety of question banks and sharing of failed / passed memebers exam experience gave me alot of help. I used the following study resources: OSG and Official practice tests Wiley & Parb Nair Coffee shots ( started preperations) cissp.app app - of course main source as discussed ( thankful to Mr Vincent ) Destination Cert YouTube series and solved 3100+ questions https://www.theinfosecvault.com, CISSP Zero to Hero by Mr Lorenzo Leonelli, solved 1000+ practice question and 300 + Board room challenge questions. frsecure.com › cisspFree CISSP Certification Training, overviewed presentations Andrew Ramdayal – 50 CISSP Practice Questions Infosec Train CISSP videos Pete Zerger, vCISO, CISSP CISSP videos Luke Ahmed 25 Questions “Why You Will Pass the CISSP Exam” — Kelly Handerhan www.cybernous.com Manoj Sherma videos Shon Gerber and Mike Capple Weekly Free CISSP Question ( receiving free after email subscription) Ms May Brook free CISSP Master classes, many questions from her quizzes were amazingly similar to real short questions of the exam. Mr Lenre and Mr Erinco PDF Cheet sheets ( shared during group sessions) and a many random resources, videos & questions. The CISSP journey was demanding - requiring consistency, discipline, and a strong conceptual foundation. It reinforced that cybersecurity is not just about tools and technologies, but about strategy, governance, and protecting organizational value.
0 likes • 16d
Congratulations @Hassan Na !
CISSP passed
Hi Everyone, I’m proud to share that I have provisionally passed the CISSP CAT exam today! It will definitely test your fitness, but it is all worth it. Huge respect to everyone here. For those who are still traveling, keep going; it will be worthwhile, and you will reach the end. Here's my personal strategy for exam prep. Note: This is still required reading: ISC2 CISSP Certified Information Systems Security Professional Official Study Guide & Practice Tests Bundle (Sybex Study Guide). Wave 1—Setup 1. Join https://www.skool.com/cybersecurity-study-group (obviously, you're here already 🙂). 2. Subscribe to https://cissp.app/ 3. Buy the book: https://leanpub.com/cissplastmile#about 4. Download and print out: https://destcert.com/cissp-mindmaps/ Wave 2—Study 1. Watch: https://www.youtube.com/watch?v=5BnhDVOnzmg 2. Watch: https://www.youtube.com/watch?v=gKe88tIeVYo 3. Watch in full: https://www.youtube.com/watch?v=aLIFzIBNM_8&list=PL7XJSuT7Dq_XPK_qmYMqfiBjbtHJRWigD 4. Watch in full: https://www.youtube.com/watch?v=hf5NwUSEkwA&list=PLZKdGEfEyJhLd-pJhAD7dNbJyUgpqI4pu 5. Go through the mind maps daily. 6. Read the book. 7. Use cissp.app and practice a minimum of 25 questions each day (three-month prep period). a. Check the gap analysis summary every 100 questions at the latest and go read up on your weak areas. Wave 3—Last month 1. Watch https://www.youtube.com/watch?v=5BnhDVOnzmg 2. Watch https://www.youtube.com/watch?v=gKe88tIeVYo
0 likes • Apr 24
@Vincent Primiani yes, it's a marathon, and stamina and discipline are paramount. To shape the necessary CISSP mindset is a daily exercise.
CISSP Practice Question (Domain 6: Security Assessment and Testing - AI Exam Guidance)
A vendor claims their fraud detection model is "99% accurate" based on internal testing. Your company plans to deploy it to score $2B in annual transactions. What should the security team require BEFORE signing the contract? A. A SOC 2 Type II report covering the vendor's development environment B. Independent red team testing of the model against adversarial inputs C. A performance guarantee with financial penalties for accuracy below 99% D. Source code escrow in case the vendor goes out of business Come back for the answer tomorrow, or study more now!
2 likes • Apr 21
As WE will deploy it, and it IS a critical system, I very much want to see how it performs against adversarial input. The business value perspective is most important here. The quality pitch itself is input for the contract and something for legal to chew on. Option B.
CISSP Practice Question (Domain 5: Identity and Access Management - AI Exam Guidance)
A developer builds an internal AI chatbot that answers employee HR questions by querying the HRIS system. The chatbot uses a single service account with full read access to all employee records, including salaries and performance reviews. What should the security team require BEFORE production launch? A. Multi-factor authentication on the chatbot's user-facing login page B. Scoped service account permissions aligned with the chatbot's actual query needs C. Encryption of the chatbot's conversation logs at rest D. A privacy notice informing employees that the chatbot uses AI Come back for the answer tomorrow, or study more now!
2 likes • Apr 20
Principal of least privilege, as privacy frameworks require. Option B.
CISSP Practice Question (Domain 7: Security Operations - AI Exam Guidance)
Your SOC receives 8,000 alerts per day, and analysts are burning out. Leadership approves an AI correlation engine to triage alerts before they reach analysts. What should the SOC manager establish FIRST? A. Thresholds for how many alerts the AI can auto-close without human review B. A tuning schedule to retrain the model quarterly on new threat data C. A validation baseline comparing AI triage decisions against analyst decisions D. Dashboards showing analyst time saved by the AI correlation engine Come back for the answer tomorrow, or study more now!
2 likes • Apr 19
To measure, we require a baseline. To take informed decisions, we require data points. To check for model drift and to be able to know the false positive and false negative rates, we require the data points put into a baseline. Option C wins.
1-10 of 47
Sebastian Maute
4
69points to level up
@sebastian-maute-5739
CISSP student. Learner. Traveller.

Active 3d ago
Joined Feb 9, 2026
Rosenheim
Powered by