Saturday, April 13, 2013

CISSP Study Guide, 2nd edition, Eric Conrad


Gives you everything you need and nothing you don't. One of the temptations you face as an author of a certification prep book or course is to include information that you feel is important, but not related to preparation for the certification. Eric Conrad has shown incredible discipline in keeping this book focused on preparing you to take the CISSP.

I just passed the CISSP exam today and wanted to review the book after taking the exam. I want to write a detailed comparison between this one, the official guide and Shon Harris' book - but I will just try to keep it short.

This book covers "almost" all of the topics you can expect to be tested in the exam. The exam itself includes 25 questions that won't be graded and will be used only for research purposes. If you already have enough (real deep) experience in IT Security Domain, then this book is "probably" enough for you.

The biggest plus of this book, which I really love, is the precise approach used to explain complex topics. The authors, have a done a brilliant job in explaining really complicated stuff in just 1 or 2 lines. For e.g., Polyinstantiaion and Polymorphism are explained superbly. The official book might make you faint if you read those topics.

The book tries to cover all domains in about 500 pages compared to other study materials that do in 1000 pages. Simple english is used through out so that first time readers will understand the principles and concepts without trouble. The Authors believe that even core-security concepts can be explained without complexity and they have proved it. The book also has real life examples that are a good read and can also help you grasp ideas and concepts relatively easily.

The only reason I gave 4 stars for this book is that the book claims that you will pass the first time - and may be you will! But you shouldn't take that chance and still read other materials that help you pass the exam and obtain the certification. The reason I say this is because, the book is very precise and "when" (not "if") you need an even more detailed reading - which you will on some topics - you definitely need something big like Shon Harris or even the official book.

Apart from Books, you will also need to get practice questions from elsewhere. The included questions in the book are really awesome and was useful during the exam. You can look in the internet sites like transcender, cccure to purchase/subscribe to practice questions. Know your weakness and work on it. Take notes - most important. Grasp Ideas/Concepts and understand "why" - the reason behind answers or explanations.

You want to get a quick understanding of complex topics? - read this book. Now you want to dig more on that topic? - get the bigger ones. Keep both side by side and help yourself understand. Don't forget to take notes while you study. It will help you remember weaker areas and focus on it.

Don't take notes for topics you already know - take only for ones that you need to study or remember again and again. For e.g, I come from a networking background and my notes on the topic "Telecom and Network Security" was just 2 pages. But Cryptography went on for 5 pages! Just note down what is new to you and things that will be complex to remember - like SDLC Phases, BCP Steps etc.

Another reason for the 4 stars is that I simply couldn't get the two practice exams that were promised in the description. I got a link to publisher's website where the practice exams were hosted but the exams are simply not there. The page won't load any questions. Not even an error message. It would be really great if the authors included the exams in a CD that could be installed on a laptop or something like that.

Anyway, get this book if you want to pass the exam. This can serve as a very good revision material yet still help understand complex topics quite easily.

Of all of the books I used to study for the CISSP, this was easily my favorite. I tried making my way through the entire CBK, but it was too dry and boring. I then picked up a Shon Harris book, but it was an absolute waste of paper. The Eric Conrad book was the only one that I was actually read cover to cover without feeling like my brain was melting. My only complaint is that the two online tests mentioned in the beginning were way too easy. They are not a good indication of what you will see on the actual test at all. After reading through this book, I did another week and a half of studying / cccure test questions, and then I took (and passed) the test. I highly recommend this book for people who just want something that is straight to the point and well thought out. Or -- as I like to say it -- I recommend this book for those that hate to read.

This was definitely the most valuable of my study aids. It was straight to the point and explained concepts clearly. I used other sources (FEDVTE CBT, Skillport CBT, SSI Logic Online Practice Questions) but this was the only book. I would recommend not using this as your only source to study due to the sheer amount of information on the exam. With the study aids listed, I was able to pass the exam on the first attempt. I hope this helps and good luck.

Product Details :
Paperback: 600 pages
Publisher: Syngress; 2 edition (September 12, 2012)
Language: English
ISBN-10: 1597499617
ISBN-13: 978-1597499613
Product Dimensions: 7.5 x 1.2 x 9.2 inches

More Details about CISSP Study Guide, 2nd edition

or

Download CISSP Study Guide, 2nd edition PDF Ebook

1 comment:

  1. Nice article. let us keep in touch, my email is shekhar.dandekar35@gmail.com

    ReplyDelete