Official (ISC)2 Guide to the CISSP CBK ((ISC)2 Press)

I am currently in the process of re-instating my CISSP Certification and have read both Shon Harris and Eric Conrad for preparation however, the CISSP exam changed somewhat in April 2015 and this book reflects the current CBK objectives very thoroughly in my opinion. I passed the CISSP in 2003 but, foolishly on my part, allowed it to lapse so I must retake the exam and have found this to be well thought out and very detailed in the proper area's the actual test will cover. I would also like to add that previous comments mentioned the book "jumps" around a bit, I have found the writing and layout to be precise and detailed. Much like the CISSP exam itself this book gets right to the point and sometimes takes some "thinking" on the readers part for real life scenarios.Also keep in mind this does cover changes made to the CBK since the new test was released in April 2015 which is why I feel it beneficial to include in your prep materials. subgen

This book is written very well. 5 stars all the way. I did not like the 1st and 2nd editions (I would give them 2 stars at the most). The 3rd edition was descent (3 - 4 stars). But this 4th edition has a lot of good stuff. Please note that I have not took the latest version of the test. This rating is strictly due to how the content meshing with what I do on the job. I will take the test very soon.

This very boring book is more for a security professional to have on his or her desk as a reference rather than a study tool for the CISSP exam. There is a LOT of material in it that you don't need to know for the exam. For example, DR is gone over in painstaking detail. That's fine, but the CISSP exam is a mile wide/inch deep, so you will end up wasting a lot of studying time. Also there is a lot of redundancy throughout the book so more wasted studying time.My main beef with the book is that it's unnecessarily wordy and highbrow. Here's an example."Specifically, what the security architect needs to accomplish through the investment of this time is to gain a better understanding of the usage scenarios that each stakeholder brings to the system in question and what the intricacies of those scenarios are in order to perform a risk analysis against them, and as a result, he or she will gain a better understanding of the powerful threats and vulnerabilities to be addressed as part of any defenses that may be planned and implemented".Good gawd, I almost fell asleep while typing that out. That sentence could easily be cut in half.Here's another example."Several common methods of cryptography exist including stream-based and block ciphers. The information security professional must have a basic understanding of both to ensure further understanding of encryption implementations."The second sentence is unnecessary. It just adds weight to the book.There are a ton of sentences like that all throughout the book.One more."Computers are inherently designed for predictability not randomness. Computers are so thoroughly deterministic that they have a hard time generating high-quality randomness. Therefore, special purpose built hardware and software called "random number generators," or RNG's, are needed for cryptography applications. The U.S. federal government provides recommendations on deterministic random number generators through the NIST. An international standard for random number generation suitable for cryptographic systems is sponsored by the International Organization for Standardization as ISO 18031. A rigorous statistical analysis of the output is often needed to have confidence in such RNG algorithms. A random number generator based solely on deterministic computation done solely by a computer cannot be regarded as a true random number generator sufficient in lack of predictability for cryptographic applications because its output is inherently predictable."The last sentence is totally unnecessary. That was already stated in the first two sentences. I could give you many, many more examples but you get the picture.The publisher must have wanted to get this book out quickly to capitalize on the new CISSP exam so they opted to skip proofreading.Here's some proof for you."Iris scanning is the most accurate biometric technology.""Retina scan devices are probably the most accurate biometric available today".That's 4 points down the drain if I get a question on the exam about the most accurate biometric.I especially love this one."Some areas to consider are actions such as planning for delivery of office supplies to the alternate site, setting up a package delivery account for the alternate site like UPS or Airborne...."Airborne hasn't been around since 2003 when it got acquired by DHL.Go with the latest Shon Harris book, she does a much better job of explaining the material. Although it doesn't reflect the new 8 domains, it still has everything you need to know to pass the latest CISSP exam, and you won't be bored to death.

Currently using book alongside taking an interactive online course in preparation for the certification exam. This book is GREAT ! It goes into so MUCH detail than [of course] what the equally as good course can cover. It also covers more than the previous sections did like more focus on mobile security. I am very pleased [thus far] with this edition as I use it with my online course. I almost passed the exam without this, now there should be no excuses for my next attempt. It may contain too much information to some people who are preparing; however, to those people...too much information is ALWAYS better than NOT having the information at all. Simply find a course to use the book with and people who's passed should be enough to give you an idea of what to study and what to filter for passing. However, ALL is needed for your successful career as an CISSP. Very pleased with this study guide.

Ready to take the new edition before the boot camp and this book is very clear to read and I understand the domains in it. I have SEC+ and CEH so having those certs helps out reading the book and understanding it. A must for anyone taking the new exam...

I don't have the products yesterday our office were open 7: 30 a.m. to 8 p.m. I have not books and I have a class on Monday 06/02/2018.

Have finally committed to studying for the CISSP exam so am now reading through this book. 219 pages into 1200+ pages, not even through the 2nd domain, and here's what I've noticed: 1) the chapters aren't well organized and are very repetitive. 2) section titles and subtitles fall short 3) the index is incomplete which makes it difficult to cross-reference. 4) subject matter in the two domains I've read so far don't align with info in testing apps I use. This makes it difficult for checking answers. See issue 3. 5) did I mention there is a lot of repetitiveness. That wouldn't normally be bad but so far the repeated information has been usless and unnecessary. I will continue to read through this but have ordered other study guides to fill in the gaps.

It is great. The information in the textbook covers the eight domains in detail. In addition, the review questions are very useful too. However, mastering the review questions for the domains will not guarantee you success in the exam.

Bonjour,Ce livre est en très bon état , rien de plus a dire, toutes les pages y sont, pas de ratures, tout a fait exploitable

Thank you very much for delivering the book in excellent condition ! I understand there was a delay by few days as it was shipped from long distance. The condition of the book is intact and totally normal. Thank you for the continuous coordination and updating the status to make sure I am aware of the status of the shipment. Appreciate the overall coordination.

Not as dry as people say. In some ways, a more enjoyable read than the Official Study Guide...but that's just me. YMMV :-)

Arrived quickly and as expected

Ich hatte mein Training abseits, ohne Mobilfunkabdeckung und brauchbares Hotel WLAN. Das Buch hat mir daher sehr geholfen, da online Recherche nicht möglich war.