Advice on preparing for the CISSP

Advice on preparing for the CISSP

I am in the process of studying for the CISSP in order to join the security field. I've been in the messaging world for a while (including security) and would like to know what the best way to go about receiving this certification is. I just got the prep book that people are claiming is great, but I would like to know what other resources are out there in order to get prepared for this test.

I would also like to know if there additional security certifications that are as highly regarded as this one in the security field.

    Requires Free Membership to View

    Login

    SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

Although there are lots of other good security certifications out there, the CISSP remains among the most popular and highly regarded credentials. You should check out my vendor-specific and vendor-neutral security cert surveys to get the full sweep of this landscape, which include my recommendations as to which such certification are particularly noteworthy.

As far as the CISSP goes, there are lots of good books and tools to help you prepare, including an increasing number of four- and five-day prep classes from companies like Mountain View Systems, Intense School and so forth. For the money, the best prep book available right now is described in the following summary I've written for publication elsewhere:

"Harris, Shon: CISSP All-in-One Exam Guide, Osborne McGraw-Hill, 2002, ISBN: 0072193530.
There are numerous other titles about the CISSP exam available, but this is the only one to get high ratings from both security professionals and ordinary book buyers. Covers the 10 domains in the Common Body of Knowledge (CBK) that is the focus of the CISSP exam, but also includes lots of examples, case studies and scenarios. Where other books summarize, digest and condense the information almost into almost unrecognizable forms, this book is well-written, explains most key topics quite well and lays out the landscape that the CISSP covers very well. Those with infosec training or backgrounds may be able to use this as their only study resource, but those who lack such background will want to read more widely."

(Quoted from material slated for appearance in InformIT.com Web articles on "The IT Security Bookshelf" and for an appendix in the forthcoming Que Certification title: "The ICSA Training Guide," by Mike Chapple, Deb Shinder and Shawn Porter (ISBN not yet available). Reproduced by permission of Pearson Publishing.)

In fact, I've put together a list of the top 50 or so information security books and would be glad to share a copy if you'd like to see it. Please e-mail me at edtittel@techtarget.com.

For more information on this topic, visit these other SearchSecurity resources:
Ask the Expert: The ten areas of the CISSP Common Body of Knowledge
Ask the Expert: Reading list for studying for the CISSP
Best Web Links: Infosec training, careers and events

This was first published in May 2002