CISSP: Certified Information Systems Security Professional Study Guide

The bundled CD is useful. I raced through the 250 flash cards in an hour, which is good for jogging the memory. The four bonus exams, of 75 questions each, are good, but are not as difficult as the real thing. These exams provide grades broken down by each CISSP exam domain, which is excellent for identifying topics for revision.

One book can not guarantee coverage of all CISSP exam topics, particularly given the long list of references on the CISSP suggested reading list. I also skimmed through a friend's copy of Shon Harris's "All-in-One" exam guide. I would still rate this book higher, but Harris's book covers some topics in more detail then the Sybex book. The "All-in-One" practice exams are more difficult, though some of the questions are not clearly worded.

The biggest disappoint I have with the exam preparation experience is with the CISSP's ten domains. The examination questions are based on 'good exam fodder' from topics in the ten domains. The topics lean towards an academic approach to security, rather then knowledge needed by a working security professional.

The other references I would strongly suggest to help to gain a security brain, as well as a high exam score include: Stephen Northcutt's `Inside Network Perimeter Security', Ross Anderson's `Security Engineering', and Syngress's `Special Ops'. Maybe I should take one of the SANS security exams, which are much more practical in nature.

And best of luck with the exam!


I passed   August 31, 2009
Gman (Michigan)
2 out of 2 found this review helpful

I picked up this book and the Shon Harris book as primary study resources for the CISSP exam. I thought this book was far superior to the Harris book for a number of reasons including readability and usefulness of the subject matter coverage beyond the exam. The Harris book had all of these little 'cute' italicized sayings when introducing many topics and they were either confusing, not cute or distracting. Example - "Trust and Assurance: I trust that you will act properly, thus I have a high level of assurance in you. Response: You are such a fool." What the heck? As I read each book my initial take was that the authors for this book were more experienced than the Harris book, and I quickly put the Harris book down. I do a lot of consulting and I thought this book had some chapters that would be good reference for higher level managers that aren't strong technically. Bottom line - I passed.



Best CISSP book out there   September 26, 2009
KD (Bay Area, CA)
2 out of 2 found this review helpful

I have read through the Shon Harris book (4th ed), the Official book, and this Sybex book (4th ed.). This book is definitely the best of the three. The AIO book gets too cute, too verbose, and too irrelevant in some parts. Shon Harris likes to expound upon subjects that have no relevance to the exam. A CISSP book should focus on what matters to pass the exam and that's it. More in depth information should be gleamed from other places. Extraneous information only serves to obfuscate the information that really matters. Then there is the official CBK book from ISC2. That book should be promptly burned in a bonfire. It's too difficult and dry to read to be of any use.

The writers of this book seem to be very knowledgeable of the information at hand. They are able to elaborate and connect the concepts together. For example, Shon Harris throws multiple definitions out there without explaining the relations among them. Some times it felt more like a definition book than anything. Compare the cryptography chapters between the AIO and this book. Harris' book is by far the more in depth with definitions after definitions thrown in there. However, this book's chapter actually helps in the understanding of the concept, building on the knowledge. More words doesn't necessarily convey more information. This book also comes with flash cards and two 250 question practice exams. I recommend reading both the AIO book and this one. But if you have to pick just one, I recommend this one over the AIO.


VERY GOOD BOOK -Briefer than Shon Harris Book   June 13, 2007
Rae (USA)
2 out of 3 found this review helpful

This book is adequate to pass the CISSP exam --I did, and only like 600 pages to read. I also go the Shon Harris book, but it is tooo loong-- like 1000 pages, and too detailed. I also got the Official ISC2 book to hear it from 'the horse's mouth'. All 3 have CD ROMs with questions. This book is a bit dated now, Shon's book was re-released in late 2006.
--
You want to try to really pass the CISSP the first time. Good Luck!!


Passed first time using this as my primary resource.   February 23, 2010
Darrin L. Todd (Panama City, Florida)
This was my main source to study for the CISSP. I couldn't stomach Harris' overt sexism, and annoying attempts at humor at the beginning of each paragraph in the AIO. The ISC2 Official guide simply made me want to stab myself in the eye with a fork - too dry. I couldn't read that book for 10 minutes before falling asleep. Now regarding this book: It had the correct amount of information and level of detail. It's moderately dry also, but come on, this is IT Security, not your favorite murder mystery novel. It came with a very decent CD that was well-worth the price alone. Now here's the disclaimer: Not one of these books is going to give you all you need to pass the exam, so pick at least two, so you get plenty of coverage. The exam is 50 percent knowledge and 50 percent logic, so be prepared to take plenty of practice exams and read the questions slowly and carefully on the real exam. If you master this book and do that, you'll be a CISSP. Good luck!