May 2022 update: The exam is now 125-175 questions. There were previously 25 non-scoring questions. The exam now has 50 non-scoring questions. The time limit is now 4 hours. Also, as Mike said, it is possible to get to the last question and still fail. This happened to me in March 2022. What I don't understand is that I received below proficiency level on three domains and near proficiency level on two domains, yet the test engine didn't know that I would fail until I submitted question 150. Weird.
In practice question TB786238.CISSPSG9E.PE2.091 the answer key says to go ahead a block the USB drives - apply the technical control. Under the “think like a manger - don’t fix the tech problem” mindset, isn’t updating policies to prohibit USBs the better answer?
Thank you Mike Chapple for such great resources to pass the CISSP. It was the most difficult test I have taken. You feel like you are failing the whole time. Exam ended at 100 questions and I passed first time.
I have a questions regarding Software Development testing domain. Official CISSP guidelines showing exam will cover SW-CMM model instead of SW-CMMI. Can you please clarify, because the model that is covered in Your Linkden course is CMMI. Just want to avoid mistake because both models are different
Hi! I have a CISSP badge from the DoD, i didnt necessarily take hold of it. I had no idea what they gave me. It makes sense now. I shared rhe idea i had with them which became Zero Trust. Very interesting - thank uou for this video and rhe comments helped me understand what i was given. But, how can i access this CISSP badge? Whats it good for? Besides better pay grades and such. Is there a place to learn more about this CISSP badge - who can i talk to about this? Thanks.
Dr. Chapple, i used your book and question bank to prepare for the exam. However my first attempt is not successful and I got 4 domains near proficiency, 2 above proficiency and 2 below proficiency. I got full 150 questions. I’m planning to sit for the exam again in 60 days. Could you please tell me how strong I’m in and which domain need improvement. Thank you.
Remember, certification is a money driven business. Just because you bought practice testing materials does not mean your going to get personal support. Many people fail CISSP on the first try (It is rumored in open source that the exam is only a 50% pass rate). Some people will fail at the 2nd attempt as well. One thing that you should do, is study from more than resource. The book and test questions you have is great, but they are not 100% perfect.
Mike, I have scheduled my CISSP exam for November 1st and once I pass I will be able to transition to a new ISSO position. If I don't pass? Not thinking about that possibility. Going thru your LinkedIn Learning CISSP Learning Path and have both your books. I am living and breathing CISSP for the next 19 days! Wish me luck. Thank you for all your awesome material. NOTE: Just realized you and I both have approximately 3.7K subscribers! Good luck with monetization and high RPM/CPM rates.
that question about purchasing a DDoS or not always feel to me as ... not correct. Let me explain, it maybe happens twice a year, maybe it will happens more, as results sees that breaches are happens more frequently and the disturb is getting wider. Even if the cost is higher you "provide" a guarantee to your customers that they will not suffer from that outage, this maximize if you have sensitive customers that one of those outages can provoke them a lost of a Millions. What happens if the outage happens in seasons of high traffic like a BF... there are a lot of not so hidden variables there so If I were the CISO I would spend in order to avoid risk and prestige of the company.
Hi Mike I have gone through your linkden videos 2 times. Do you recommend that I have covered all the materials that is required for exam or I have cover something else also?
I recommend using the video course in combination with the study guide and practice tests. My full recommendations and a free study plan are at www.certmike.com/cissp/
Correct me, Losing 10k$ from ddoa attack is not the whole story, what about the reputation the company lose? How many customers the company lose forever after does attack?
Great question. That question is a quantitative risk assessment question, so it would be difficult to factor in an intangible reputation cost. Plus it’s unlikely that two hours of outage over the course of a year would have a significant reputational impact. That’s better than 99.9% uptime.
I have used Mike’s courses, books, and content through several platforms to help me earn many, many certifications. CISSP is my Elenor and will be attempting it soon. Thanks for all the great explanations. My tip on being a CISO and hopefully for this exam is to learn how to deal with worst case scenarios with effective decisions.
