May 2022 update: The exam is now 125-175 questions. There were previously 25 non-scoring questions. The exam now has 50 non-scoring questions. The time limit is now 4 hours. Also, as Mike said, it is possible to get to the last question and still fail. This happened to me in March 2022. What I don't understand is that I received below proficiency level on three domains and near proficiency level on two domains, yet the test engine didn't know that I would fail until I submitted question 150. Weird.
Thank you Mike Chapple for such great resources to pass the CISSP. It was the most difficult test I have taken. You feel like you are failing the whole time. Exam ended at 100 questions and I passed first time.
Mike, I have scheduled my CISSP exam for November 1st and once I pass I will be able to transition to a new ISSO position. If I don't pass? Not thinking about that possibility. Going thru your LinkedIn Learning CISSP Learning Path and have both your books. I am living and breathing CISSP for the next 19 days! Wish me luck. Thank you for all your awesome material. NOTE: Just realized you and I both have approximately 3.7K subscribers! Good luck with monetization and high RPM/CPM rates.
I have used Mike’s courses, books, and content through several platforms to help me earn many, many certifications. CISSP is my Elenor and will be attempting it soon. Thanks for all the great explanations. My tip on being a CISO and hopefully for this exam is to learn how to deal with worst case scenarios with effective decisions.
In practice question TB786238.CISSPSG9E.PE2.091 the answer key says to go ahead a block the USB drives - apply the technical control. Under the “think like a manger - don’t fix the tech problem” mindset, isn’t updating policies to prohibit USBs the better answer?
Hi! I have a CISSP badge from the DoD, i didnt necessarily take hold of it. I had no idea what they gave me. It makes sense now. I shared rhe idea i had with them which became Zero Trust. Very interesting - thank uou for this video and rhe comments helped me understand what i was given. But, how can i access this CISSP badge? Whats it good for? Besides better pay grades and such. Is there a place to learn more about this CISSP badge - who can i talk to about this? Thanks.
Hi Mike I have gone through your linkden videos 2 times. Do you recommend that I have covered all the materials that is required for exam or I have cover something else also?
I recommend using the video course in combination with the study guide and practice tests. My full recommendations and a free study plan are at www.certmike.com/cissp/
I have a questions regarding Software Development testing domain. Official CISSP guidelines showing exam will cover SW-CMM model instead of SW-CMMI. Can you please clarify, because the model that is covered in Your Linkden course is CMMI. Just want to avoid mistake because both models are different
Dr. Chapple, i used your book and question bank to prepare for the exam. However my first attempt is not successful and I got 4 domains near proficiency, 2 above proficiency and 2 below proficiency. I got full 150 questions. I’m planning to sit for the exam again in 60 days. Could you please tell me how strong I’m in and which domain need improvement. Thank you.
Remember, certification is a money driven business. Just because you bought practice testing materials does not mean your going to get personal support. Many people fail CISSP on the first try (It is rumored in open source that the exam is only a 50% pass rate). Some people will fail at the 2nd attempt as well. One thing that you should do, is study from more than resource. The book and test questions you have is great, but they are not 100% perfect.
Great question. That question is a quantitative risk assessment question, so it would be difficult to factor in an intangible reputation cost. Plus it’s unlikely that two hours of outage over the course of a year would have a significant reputational impact. That’s better than 99.9% uptime.
I mean that's what qualitative risk analysis is for. Sometimes other factors like reputational damage matter more than pure costs. Look at the recent CrowdStrike outage for example.
Correct me, Losing 10k$ from ddoa attack is not the whole story, what about the reputation the company lose? How many customers the company lose forever after does attack?
that question about purchasing a DDoS or not always feel to me as ... not correct. Let me explain, it maybe happens twice a year, maybe it will happens more, as results sees that breaches are happens more frequently and the disturb is getting wider. Even if the cost is higher you "provide" a guarantee to your customers that they will not suffer from that outage, this maximize if you have sensitive customers that one of those outages can provoke them a lost of a Millions. What happens if the outage happens in seasons of high traffic like a BF... there are a lot of not so hidden variables there so If I were the CISO I would spend in order to avoid risk and prestige of the company.
When business needs and security needs collide, business always wins!
You are a living legend. Your Comptia Sec+ study guide book is absolutely amazing and very easy to comprehend.
Happy to share my provisional pass @ 125 questions at first attempt! THANK YOU !
May 2022 update: The exam is now 125-175 questions. There were previously 25 non-scoring questions. The exam now has 50 non-scoring questions. The time limit is now 4 hours. Also, as Mike said, it is possible to get to the last question and still fail. This happened to me in March 2022. What I don't understand is that I received below proficiency level on three domains and near proficiency level on two domains, yet the test engine didn't know that I would fail until I submitted question 150. Weird.
Thank you Mike Chapple for such great resources to pass the CISSP. It was the most difficult test I have taken. You feel like you are failing the whole time. Exam ended at 100 questions and I passed first time.
Wow. I passed my SSCP exam last Friday using your LinkedIn videos. Without it I wouldn't have passed the exam. Thanks.
wow this is a fake comment
@@gvines it's actually not...
Most likable and charming teacher out here in IT certs
Thanks!
Thank you Mike, much much appreciated. Just started my CISSP journey. Can use every help I can get.
Just bought your books! Now listening...
The only Guy who teaches me better so far more than anyone else in college. Thank you, Mike!
Well Said Prof. Mike thank you so much. once you said it , twice I heard. I wish all the CISSP exam takers successes.
Thank you. Your videos and books helped me pass my CISSP exam.
Mike your approach to CISSP on target.The way to go.Very nice approach 👍
Great video! Hoping to pass the CISSP to boost my career and salary :)
5:38 What about qualitative impact?
For example: Loosing customer confidence.
For me, reputational damage is more harmful than mitigation costs
10k subscribers congratulations
Mike, I have scheduled my CISSP exam for November 1st and once I pass I will be able to transition to a new ISSO position. If I don't pass? Not thinking about that possibility. Going thru your LinkedIn Learning CISSP Learning Path and have both your books. I am living and breathing CISSP for the next 19 days! Wish me luck. Thank you for all your awesome material.
NOTE: Just realized you and I both have approximately 3.7K subscribers! Good luck with monetization and high RPM/CPM rates.
Good luck!
Did you pass the exam...since today is Nov 1st ? I am getting ready to start my CISSP journey to study and pass the exam. Let me know if you passed ?
@@apa4088, I did not. I wasn't ready but had a deadline from my boss. He had given me 60 days. I will be ready when I retake.
@@NelsonMunoz0714 - Were you able to clear the retake exam ? As i have mine in a few days.
Valuable Insight!! Must Watch.
I have used Mike’s courses, books, and content through several platforms to help me earn many, many certifications. CISSP is my Elenor and will be attempting it soon.
Thanks for all the great explanations.
My tip on being a CISO and hopefully for this exam is to learn how to deal with worst case scenarios with effective decisions.
Dear Mike
Could you please make a playlist including all cissp session together
great as always. straight to the point!
In practice question TB786238.CISSPSG9E.PE2.091 the answer key says to go ahead a block the USB drives - apply the technical control. Under the “think like a manger - don’t fix the tech problem” mindset, isn’t updating policies to prohibit USBs the better answer?
Good Mike 👍 thanks thanks 👍
Could you please do a video on new topics required in the post May 2021 version
I have one. Check my channel.
I love the CISO graphic!
Great advice. Thank you for sharing!
Greet way to guide.thank you Mike.stay Blessed..
This cissp exam soon i will take it
Thank you Dr. Chapple
Hi! I have a CISSP badge from the DoD, i didnt necessarily take hold of it. I had no idea what they gave me. It makes sense now. I shared rhe idea i had with them which became Zero Trust. Very interesting - thank uou for this video and rhe comments helped me understand what i was given. But, how can i access this CISSP badge? Whats it good for? Besides better pay grades and such. Is there a place to learn more about this CISSP badge - who can i talk to about this? Thanks.
Great Advice. Thank You.
Thank you for this wonderful explanation.
Hi Mike
I have gone through your linkden videos 2 times. Do you recommend that I have covered all the materials that is required for exam or I have cover something else also?
I recommend using the video course in combination with the study guide and practice tests. My full recommendations and a free study plan are at www.certmike.com/cissp/
I have a questions regarding Software Development testing domain. Official CISSP guidelines showing exam will cover SW-CMM model instead of SW-CMMI. Can you please clarify, because the model that is covered in Your Linkden course is CMMI.
Just want to avoid mistake because both models are different
Thankyou Mike
Dr. Chapple, i used your book and question bank to prepare for the exam. However my first attempt is not successful and I got 4 domains near proficiency, 2 above proficiency and 2 below proficiency. I got full 150 questions. I’m planning to sit for the exam again in 60 days. Could you please tell me how strong I’m in and which domain need improvement. Thank you.
Remember, certification is a money driven business. Just because you bought practice testing materials does not mean your going to get personal support. Many people fail CISSP on the first try (It is rumored in open source that the exam is only a 50% pass rate). Some people will fail at the 2nd attempt as well. One thing that you should do, is study from more than resource. The book and test questions you have is great, but they are not 100% perfect.
Useful tips 🙏
In your DDOS question example..shouldn't we factor in the reputational impact the attack could have on the organization..
Great question. That question is a quantitative risk assessment question, so it would be difficult to factor in an intangible reputation cost. Plus it’s unlikely that two hours of outage over the course of a year would have a significant reputational impact. That’s better than 99.9% uptime.
I am confused with reading the book. Can you guide on how to read the book?
Yes! If you join my free CISSP study group at CertMike.com, that’s exactly what we do.
Great
Thank you very much.
Not sure that alll security decisions should be based on cost alone. Bane of my life.
Just because you’ve never suffered a ransomware attack and may never, doesn’t mean cost of mitigation isn’t justified
I mean that's what qualitative risk analysis is for. Sometimes other factors like reputational damage matter more than pure costs. Look at the recent CrowdStrike outage for example.
Correct me, Losing 10k$ from ddoa attack is not the whole story,
what about the reputation the company lose?
How many customers the company lose forever after does attack?
good point but don’t go past the question at hand. You are thinking way past the question. The question does NOT mention reputation residual factors..
Many thanks!
You are the best
Hi Mike,
Do you teach CSSLP course. I want to take CSSLP exam as I am an application developer.
Thank you 🙏
that question about purchasing a DDoS or not always feel to me as ... not correct. Let me explain, it maybe happens twice a year, maybe it will happens more, as results sees that breaches are happens more frequently and the disturb is getting wider. Even if the cost is higher you "provide" a guarantee to your customers that they will not suffer from that outage, this maximize if you have sensitive customers that one of those outages can provoke them a lost of a Millions. What happens if the outage happens in seasons of high traffic like a BF... there are a lot of not so hidden variables there so If I were the CISO I would spend in order to avoid risk and prestige of the company.
I think u need a software based question based study guide. That’s what people are looking for, not a book.
Thanks
Am I the only one that notice the tablet guy with the massive alien-like finger?
Is the exam of 3 hours now? Wasn't it 4 hours or 6 hours?
The man, the myth
i'm scared
:)
How did it go?
Great