CISSP All-in-One Exam Guide (Anglais) Relié – 1 décembre 2000
|Neuf à partir de||Occasion à partir de|
Produits fréquemment achetés ensemble
Les clients ayant acheté cet article ont également acheté
Descriptions du produit
Biographie de l'auteur
Shon Harris, CISSP, is the founder and CEO of Shon Harris Security LLC and Logical Security LLC, a security consultant, a former engineer in the Air Force’s Information Warfare unit, an instructor, and an author. She has owned and run her own training and consulting companies since 2001. Shon consults with Fortune 100 corporations and government agencies on extensive security issues. She has authored three bestselling CISSP books, was a contributing author to Gray Hat Hacking: The Ethical Hacker’s Handbook and Security Information and Event Management (SIEM) Implementation, and a technical editor for Information Security Magazine.
Aucun appareil Kindle n'est requis. Téléchargez l'une des applis Kindle gratuites et commencez à lire les livres Kindle sur votre smartphone, tablette ou ordinateur.
Pour obtenir l'appli gratuite, saisissez votre adresse e-mail ou numéro de téléphone mobile.
Détails sur le produit
En savoir plus sur l'auteur
Dans ce livre(En savoir plus)
Quels sont les autres articles que les clients achètent après avoir regardé cet article?
Commentaires en ligne
Meilleurs commentaires des clients
Après 4 mois de lecture (environ 1h chaque soir de la semaine) je suis arrivé au chapitre 6/10.
La date fatidique approchant (2 semaines), j'ai donc changé de stratégie et je n'ai lu que les encadrés et résumés. Seulement lorsque je voulais plus de détail, j'approfondissait en lisant le chapitre...
Certains chapitres sont de bonnes révisions, d'autres sont de complètes découvertes (regulations and laws !)
L'objectif est atteint puisque j'ai passé la certif avec succès.
A recommended reading, for any serious IT professional, security expert or not.
Il est vraiment beaucoup plus facile à lire que le guide officiel de l'ISC.
Commentaires client les plus utiles sur Amazon.com (beta)
Shon Harris has updated both the content and the layout of this newest edition. Key terms are defined in separate attention-grabbing boxes. This is a huge help when you are stuck on a difficult concept that you want to review, such as the concepts that make up "The Common Criteria", or the seemingly infinite terms associated with the Telecommunications and Network Security Domain. If you are a person who uses a highlighter, or if you annotate passages on an e-reader, these attention boxes are fantastic for easily isolating the important details.
The CISSP exam is peppered with many "scenario-based" questions, and Shon has updated her end-of-chapter quizzes to include these types of questions. The quizzes provided on the disc (included with the book) are comprehensive across each domain. The questions offered on the disc will test your true knowledge of the subjects. The Practice Exam book is the perfect companion for the main book, offering detailed explanations of why one answer is "The Best" choice for a particular question.
The folks who compose the questions for the CISSP exam tend to lean towards the "sinister", attempting to trip you up with subtle and sometimes vague wording. Shon writes her questions in a similar style, making you really think about the material to derive the best answer rather than simply memorizing passages from the book. Her questions and the answer choices will get you into the correct mindset to pass the exam. Don't just take her practice exams once and move on - come back and take the same exams again. Even if you start to memorize the answers, Shon's quizzes will help you pick out the important wording of a question so that "sinister and vague" will no longer trip you.
Your studies of the "Common Body of Knowledge" will take you to other sources of information, and while this is encouraged, you will see that none of those sources compare with the directed focus and thought-provoking approach offered in Shon's book. I used 4 different sources for my studies, but Shon's book remained as my "go to" book for clear, concise, and accurate information. Do not be discouraged by the size of the book; when you are taking the test and are presented with a particularly tricky question, you will be thankful for all the detail that is offered in this book. Don't underestimate its value.
This is simply the best book on the market for not only understanding Information Security on a practical and professional level, but also for passing the CISSP exam.
With a master's degree in Cybersecurity, and B.S. in Information Assurance and after reading several other books prior, I found my self constantly making correction notations in this book for information that was poorly explained or over iterated. Of course being able to correct errors in this book assured me that I was ready to take the exam.
For those taking the exam, I suggest keeping this as a cram study guide, for after you learn the subject matter elsewhere, but it is worthless in teaching you the topics needed to pass. My suggestions,
1. Read the official CBK published by ISC2 and highlight important technical information.
2. Repeat step 1, but this time read your highlights
3. Read the Sybex official guide, and highlight sections you are still unsure and the reread only highlighted sections.
4. Skim through this book, and read references to the items you highlighted from the prior two books, for a different perspective. At this point, you should be familiar enough with the material that you can make corrections to Ms Harris's book and be able to more accurately explain the topics.
5. Never study for longer than 2 hours. Typically after the first hour, you start to retain less and less information. Take frequent breaks. This will keep the information fresh and in long term memory.
What I don't recommend doing.
1. Repeatedly taking practice exams. This will not help you. In fact it will hurt you. The CISSP exam is unique because it doesn't have wrong answers. You will be presented with 4 answers, 3 of them are correct and 1 is flat out wrong. You have to pick the best answer, not the correct one. Practice Exams are memorizations of the questions and corresponding answers, which if they appear on the exam, will be slightly reworded to fool you into thinking you have the right answer when in truth, it is second or third best answer. The test writers know these practice exams exists and will intentionally try to fool anyone trying to take the easy way out.
2. Going to a boot camp. This is not only a waste of money, but will not help you learn the material. If your company is paying for your voucher, if you fail , they may want to you to reimburse. Either way, placing complicated subjects into short term memory will not help you much, the further you take for the exam. These pass for sure company's will usually give the exam directly after the final lesson in hopes that you will pass if they just gave you the lesson. This rarely helps. I have seen people attend these boot camps 3 to 8 times before passing. Doing the reading. Its not hard and knowing the material will help you greatly further down the road.
My suggestion on taking the exam.
1. Carry one of your study guides with you in the car when you go to take the test. Show up early and quickly read over the high lighted material, particularly subjects you was having difficulty with. By this time you should be very familiar with the material. This book is especially good because despite its over reiteration and failure to explain certain topics, you should be able to read through the garage info, add to the stuff not explained enough.
2. While in your car, focus on memorizing short term data, like numbers, protocols specifics and names. This sort of stuff isn't the type of data we keep in long term memory if you can help it and its usually the first to be forgotten. Don't try to fight this naturally tendency. Instead, brush up on it directly before the exam, place it in short term memory where it belongs until after the exam.
3. Read every question to its literal meaning. Your a lawyer. If the question says something, don't try to interpreted it as something else. The people writing this exam aren't stupid. If they word a question a certain way, that's exactly how they wanted it worded. There is no implied meaning to a question so don't try to analyze it.
4. Don't look for correct answers. Typically ever question will have 3 correct answers and 1 wrong one. You are trying to select the most correct one. If you immediately select the answer you think is correct, you will likely pick the wrong one. Instead, look for wrong answers and cross them out. You should be able to eliminate 1 answer right away. Take the remaining three and begin eliminating answers that aren't as good from the other. The last answer remaining is your correct one. (Again, remember there is no implied questions, do don't select answers that sound good to you, select the one that best matches the literal question as worded.)
5 Turn your test in. Congratulations, you passed.
It is definitively one of the top two books for anyone who is serious about becoming a CISSP and passing the exam on the first trial.
ISC2 has not updated their own book yet. They have only 4 chapters available in IBook format. They sell each of the chapter for almost $13 each which is totally crazy for a digital edition. It means you will pay almost $130 for the full book. For 1/4 of this price you can get the new All In One Sixth edition.
ISC2 needs to rethink their strategy.
But not all the content is the same. When it comes to information security and in particular the CISSP exam the amount of information that a potential exam candidate and the new infosec professional has to understand is huge. Moving from end to end of several spectrum, going into the details of complex cryptography algorithms that involves mathematical theories that very few of us can grasp to the understanding of purely managerial concerns that seems abstract in nature but have very clear repercussions on the day to day like risk management or the concepts of confidentiality, privacy or integrity; the information security field relates to one too many disciplines and understanding those disciplines and their relation to one another is crucial for the success of the CISSP exam candidate and the infosec professional.
Where CISSP All-in-One excels at, and this has been a trademark of Shon Harris over all the past editions, is the way the content is presented to the reader. This book makes Information Security a fun and digestible read. Shon tackles complex issues with clear and to the point analogies that allows the reader to "click" into the new concept, it creates the moment of "Ohhhh... I now get it!" that makes us feel smart and alive when studying something new.
And for the experienced infosec professional this book gives him or her proven ways to explain to those that are outside of our field how things work and how they should work.
I highly recommend this book not only as an exam preparation material but also as a reference piece over those areas and subjects that we may have to re-learn as we grow in our information security careers.
Congratulations Shon, you did it again.
Rechercher des articles similaires par rubrique
- Livres anglais et étrangers > Computers & Internet > Certification Central
- Livres anglais et étrangers > Computers & Internet > Home Computing
- Livres anglais et étrangers > Computers & Internet > Networking > Network Security
- Livres anglais et étrangers > Computers & Internet > Security & Encryption