I passed the CISSP exam today! For a long time, I kept postponing it, thinking it would be too difficult. However, the daily questions shared in this group helped me build the right mindset. The tips and guidance from those who had already cleared the exam were also incredibly helpful. I used the following study resources: OSG and Official practice tests cissp.app app - Helps with time management and provides clear explanations. Destination Cert YouTube series and their app for questions Eric Cornard CISSP study guide and other you tube videos/Questions

A developer's leaked API key is used to spin up 400 cryptocurrency mining instances in your AWS account overnight. The monthly bill is now $180K over budget. What should the incident responder do FIRST? A. Terminate all unauthorized instances to stop the financial bleeding B. Rotate the compromised API key and disable the associated IAM user C. Snapshot the instances and preserve CloudTrail logs for forensic analysis D. Contact AWS billing to request a fraud-related credit Come back for the answer tomorrow, or study more now!

Hi All, Im happy to announce, the im officially passed CISSP exam today. Our study sessions helped me a lot, I will try to join todays call at 6PM CST to share my experience. Thank you all 😃

Your organization completes a data classification initiative and discovers that 40% of data labeled "confidential" has not been accessed in over three years. Storage costs are significant. Data owners across business units cannot confirm whether retention requirements still apply. What should you recommend FIRST? A. Archive the dormant data to lower-cost storage with existing classification labels B. Conduct a retention review with data owners and legal to validate regulatory obligations C. Declassify the unused data to reduce protection overhead and storage costs D. Implement automated data lifecycle policies to purge data exceeding retention thresholds Come back for the answer tomorrow, or study more now!

4th Time