Category: Cybersecurity

Achieving the Certified Information Systems Security Professional (CISSP) certification has been a defining moment in my career, underscoring my dedication and commitment to the Information Technology field. After more than two decades immersed in the industry, this achievement marks a pinnacle of my professional endeavors and a significant milestone on my continuous journey of learning and growth.

The road to CISSP was arduous but immensely rewarding. The certification process involved an extensive period of study that required not only a deep understanding of various security principles and practices but also the ability to apply them in complex, real-world scenarios. The journey from preparation through to the final application and eventual certification tested my resolve, pushing me to harness all my accumulated knowledge and experience.

The CISSP is recognized globally not just as a standard for IT security professionals but as a symbol of excellence and achievement in the field. It covers critical topics such as risk management, cloud computing, mobile security, and application development security, among others. Mastering these domains has provided me with a comprehensive view of information security and a robust framework to tackle the dynamic challenges of today’s technological environments.

Earning this prestigious designation was not just about personal growth; it was also about setting a benchmark of professional excellence and leadership in cybersecurity. It represents the culmination of years of hard work, late nights, and continuous learning. Each step of the process reinforced my commitment to my career and the IT community at large.

This milestone is not just a personal achievement but a stepping stone to further contributions in the field of information security. It encourages me to continue striving for excellence, sharing my knowledge with peers, and staying at the forefront of technological innovation. As I reflect on this journey, I am grateful for the opportunities to grow and the challenges that have shaped my path. I look forward to what the future holds, ready to tackle new challenges and continue making an impact in the ever-evolving world of technology.

Update 2024-04-11: I am officially a CISSP

I am thrilled to announce my provisional passage of the CISSP examination! This milestone is not solely my own but a testament to the incredible support I’ve received throughout my IT career. With the CISSP credential, I am now poised to engage with a broader audience, championing the criticality of Cybersecurity in our interconnected world.

I appreciate the curiosity many of you have expressed regarding the resources and strategies that facilitated my success, particularly as I navigated the journey of undertaking the examination for the second time—embracing the ‘peace of mind’ option that allows for a retest, ensuring thorough preparedness and confidence.

Planning and Scheduling the Exam

Before I scheduled the exam, I thought to myself: What’s the most effective way to ensure (to some level of degree) I have a high chance of passing? I found out that we could get a voucher for a 2nd attempt at the test should I fail the first attempt.

With this opportunity, I created a 2 step study plan that is detailed in the following sections.

Phase 1: First Attempt

I used the following before attempting the first test:

• 30 mins to 1 Hour most days, 1 year off/on study.
• FRSecure
  • Mentors who helped guide me on important subjects.
• ISC2 CISSP Official Study Guide
  • Read the first 2 domains, then used it as reference.
• ISC2 CISSP Official iOS App
  • 10-25 questions a few times a week.
  • Full mock exam at the library during weekends to simulate test center.
  • Scored 60-70s on average
• CISSP Exam Cram Full Course (Pete Zerger – YouTube)
  • Listened to it while on the road or walking my dog.
• Work projects related to Software Engineering security.

In this attempt, I had to drive almost 4 hours to the test center and didn’t have a full night sleep, affecting my test results possibly. I stopped at 175 questions.

Phase 2: Second Attempt

For the 2nd attempt, I needed a new strategy. I tried several more things that were outside my comfort zone, such as giving public speeches about the importance of Cybersecurity, WannaPractice, and Thor’s videos.

• 2 Hours most days, 2 months study.
• Destination CISSP
• ChatGPT
  • Gave me answers to topics I needed reinforcement on.
  • Asked to give me mock questions.
  • Note: Always check if the answers are right because it’s not always correct.
• ISC2 CISSP Official iOS App
  • 10-25 questions each session, several times a week.
  • Full mock exam at the library during weekends to simulate test center.
  • Scored 70-80s on average
• WannaPractice
  • 10-25 questions each session, several times a week.
  • Full mock exam at the library during weekends to simulate test center.
  • Scored 73-80s
• Thor (Udemy)
  • CISSP Domains 1-2 Bootcamp
  • CISSP Domains 3-4 Bootcamp
  • CISSP Domains 5-6 Bootcamp
  • CISSP Domains 7-8 Bootcamp
• CISSP Exam Cram Full Course (Pete Zerger – YouTube)
  • Paid more attention to the videos
• Anki – Created flashcards on big topics (such as BCP, Incident Management, etc)
• Gave Cybersecurity Public Speaking at Toastmasters
• Andrew Ramdayal: 50 CISSP Practice Questions. Master the CISSP Mindset
• Kelly Handerhan: Why you will pass the CISSP
• Work projects related to Software Engineering security.

On test day:

• Andrew Ramdayal: 50 CISSP Practice Questions. Master the CISSP Mindset
• Kelly Handerhan: Why you will pass the CISSP
• Before walking in the test center: 5 Hour Energy Drink

I did a lot more focus study in this phase and much more resources. Compared to the first attempt, I had the opportunity to have a great night sleep.

I stopped at 160ish questions.

Additional Resources Used

The following helped me manage my time and processes for the study:

• Pomodoro Technique
• Bullet Journal