CISSP Study Notes and Resources
Repository for study notes and other important information relating to the CISSP certification.
What is the CISSP?
The CISSP certification allows you to validate your ability to design, implement and manage an effective cybersecurity program.
According to the (ISC)² website the CISSP certification is for the following people:
- Chief Information Security Officer
- Chief Information Officer
- Director of Security
- IT Director/Manager
- Security Systems Engineer
- Security Analyst
- Security Manager
- Security Auditor
- Security Architect
- Security Consultant
- Network Architect
You can find out more about the CISSP certification at (ISC)² CISSP Certification Information
The 8 domains of the CISSP certification and Exam Weighting
| Domain | Avg. Weighting % | |
|---|---|---|
| 1 | Security and Risk Management | 15% |
| 2 | Asset Security | 10% |
| 3 | Security Architecture and Engineering | 13% |
| 4 | Communication and Network Security | 14% |
| 5 | Identity and Access Management (IAM) | 13% |
| 6 | Security Assessment and Testing | 12% |
| 7 | Security Operations | 13% |
| 8 | Software Development Security | 10% |
Accurate as of 31-05-2020. Additional information can be found here.
Exam
The exam can be taken at some Pearson VUE testing centers and at (ISC)² Authorised PPC.
The exam consists of up to 150 questions of both multiple-choice and “advanced innovative questions”. I have heard that this just means drag’n’drop the correct answer into the right place.
Requirements
There are two “levels” of certification for the CISSP. Firstly, if you do not meet the minimum work experience you become an Associate of (ISC)². You will then have 6 years to earn the required work experience to then be granted the full accreditation.
