Passed ISSEP!!!
What a beast of a test! So much material to remember but only 150 questions. For me it was far harder then the CISSP.
Study Material:
ISC2 Bootcamp
Watch these Webcasts by ISC2.
Quizlet Flashcards (I uploaded mine for all to use)
I read all the following documents at lest twice, and can break down all the steps/phases/activities in each one and map them to each other or draw them out by hand:
PMBOK
DAG
IATF all chapters and appendix's (Focus on Ch 2 and 3)
SP800-30
SP800-37
SP800-53
SP800-64
Skimmed through and know by # know the title and content of the document:
SP800-47
SP800-59
SP800-60
OMB 2-01
OMB A-130
FIPS 140-2
FIPS 199
FIPS 200
DODD 5000.1
DODI 5000.2
DODD 8500.1
DODI 8500.2
DODD 8520.1
For DOD directive, instruction and policy it helps to know the difference.
It's imperative that you know all the phases/steps and activities, know what document, and be able to map them to each other:
NIACAP C&A
DIACAP C&A
RMF C&A
RMF ISSE (6 steps)
IATF ISSE (Phases 1-8, not just the first 6; Also each task and subtask)
DOD Acquisition
SDLC
Familiar with the following documents (I included the ones I read just to give you an idea of the complete list you must be familiar with:
- CJCSI 6510
- DoD 5000.1
- DoD 5000.2
- DoD 5100.0
- DoD 5220.22
- DoD 8100.1
- DoD 8100.2
- DoD 8500.1
- DoD 8500.2
- DoD 8570.1
- CNSSP 14
- CNSSP 15
- CNSSP 22
- CNSSI 1253
- CNSSI 4009
- CNSSI 4011
- CNSSI 4012
- CNSSI 4013
- CNSSI 4014
- CNSSI 4015
- CNSSI 4016
- NIST SP 800-12
- NIST SP 800-14
- NIST SP 800-18
- NIST SP 800-23
- NIST SP 800-25
- NIST SP 800-27
- NIST SP 800-30
- NIST SP 800-31
- NIST SP 800-34
- NIST SP 800-35
- NIST SP 800-36
- NIST SP 800-37
- NIST SP 800-39
- NIST SP 800-40
- NIST SP 800-41
- NIST SP 800-42
- NIST SP 800-47
- NIST SP 800-53
- NIST SP 800-53A
- NIST SP 800-59
- NIST SP 800-60
- NIST SP 800-64
- FIPS 140-2
- FIPS 197
- FIPS 199
- FIPS 200
- OMB A-130
- OMB M-99-18
- OMB M-00-13
- OMB M-01-08
- OMB M-02-01
- OMB M-03-19
- EO 13231
Also know the following:
PL 107-347 FISMA
Clingen Cohen Act
Privacy Act
GISRA
Computer Security Act
I also read Jonnyg's post here and that helped...
Study Material:
ISC2 Bootcamp
Watch these Webcasts by ISC2.
Quizlet Flashcards (I uploaded mine for all to use)
I read all the following documents at lest twice, and can break down all the steps/phases/activities in each one and map them to each other or draw them out by hand:
PMBOK
DAG
IATF all chapters and appendix's (Focus on Ch 2 and 3)
SP800-30
SP800-37
SP800-53
SP800-64
Skimmed through and know by # know the title and content of the document:
SP800-47
SP800-59
SP800-60
OMB 2-01
OMB A-130
FIPS 140-2
FIPS 199
FIPS 200
DODD 5000.1
DODI 5000.2
DODD 8500.1
DODI 8500.2
DODD 8520.1
For DOD directive, instruction and policy it helps to know the difference.
It's imperative that you know all the phases/steps and activities, know what document, and be able to map them to each other:
NIACAP C&A
DIACAP C&A
RMF C&A
RMF ISSE (6 steps)
IATF ISSE (Phases 1-8, not just the first 6; Also each task and subtask)
DOD Acquisition
SDLC
Familiar with the following documents (I included the ones I read just to give you an idea of the complete list you must be familiar with:
- CJCSI 6510
- DoD 5000.1
- DoD 5000.2
- DoD 5100.0
- DoD 5220.22
- DoD 8100.1
- DoD 8100.2
- DoD 8500.1
- DoD 8500.2
- DoD 8570.1
- CNSSP 14
- CNSSP 15
- CNSSP 22
- CNSSI 1253
- CNSSI 4009
- CNSSI 4011
- CNSSI 4012
- CNSSI 4013
- CNSSI 4014
- CNSSI 4015
- CNSSI 4016
- NIST SP 800-12
- NIST SP 800-14
- NIST SP 800-18
- NIST SP 800-23
- NIST SP 800-25
- NIST SP 800-27
- NIST SP 800-30
- NIST SP 800-31
- NIST SP 800-34
- NIST SP 800-35
- NIST SP 800-36
- NIST SP 800-37
- NIST SP 800-39
- NIST SP 800-40
- NIST SP 800-41
- NIST SP 800-42
- NIST SP 800-47
- NIST SP 800-53
- NIST SP 800-53A
- NIST SP 800-59
- NIST SP 800-60
- NIST SP 800-64
- FIPS 140-2
- FIPS 197
- FIPS 199
- FIPS 200
- OMB A-130
- OMB M-99-18
- OMB M-00-13
- OMB M-01-08
- OMB M-02-01
- OMB M-03-19
- EO 13231
Also know the following:
PL 107-347 FISMA
Clingen Cohen Act
Privacy Act
GISRA
Computer Security Act
I also read Jonnyg's post here and that helped...
2015 Goals: Masters in Cyber Security
Comments
-
H3||scr3am Member Posts: 564 ■■■■□□□□□□Congratulations man, I've never even considered specializing my CISSP, but that list of material you needed to familiarize yourself with sounds exhaustive. Great job
-
fuz1on Member Posts: 961 ■■■■□□□□□□Congrats! Thanks for "breaking it down" for us!timku.com(puter) | ProHacker.Co(nsultant) | ITaaS.Co(nstultant) | ThePenTester.net | @fuz1on
Transmosis | http://transmosis.com | LinkedIn | https://linkedin.com/in/t1mku
If evil be spoken of you and it be true, correct yourself, if it be a lie, laugh at it. - Epictetus
The only real failure in life is not to be true to the best one knows. - Buddha
If you are not willing to learn, no one can help you. If you are determined to learn, no one can stop you. - Unknown -
TheFORCE Member Posts: 2,297 ■■■■■■■■□□Congrats! great job, that's a lot of material to remember indeed.
-
Falasi Member Posts: 115congrats!! this is one of the toughest exams I did and most (for me) eye opener.
-
zxbane Member Posts: 740 ■■■■□□□□□□Congrats, this has to be the most intimidating IT Security exam that I know of, anytime I see someone post about what they used to pass the list of materials is so extensive it scares me from ever considering doing it
-
dou2ble Member Posts: 160Thanks guys! If anyone is studying for it or planning to shoot me a PM with your email. I have more study material I can share that you can't find online.2015 Goals: Masters in Cyber Security
-
Jonnyg Member Posts: 84 ■■■□□□□□□□Congrats on the pass! The test is a hard one and it is definitely an achievement.Working on: Nothing, finally.
-
Jegga Member Posts: 6 ■□□□□□□□□□Congrats! This is one heck of an exam and you should be proud of earning it.
-
zxbane Member Posts: 740 ■■■■□□□□□□Out of curiosity what made you choose to pursue the ISSEP? Do you work for DoD?
-
ccnpninja Member Posts: 1,010 ■■■□□□□□□□Congrats and thanks for the notes!my blog:https://keyboardbanger.com
-
dou2ble Member Posts: 160Out of curiosity what made you choose to pursue the ISSEP? Do you work for DoD?
Part of the reason is that I do work for DOD and the other part was that my employer offered to pay for the class. At first I didn't know much about this cert and just sort of signed up, but afterwards I found all that I learned to be very useful and glad I took it.2015 Goals: Masters in Cyber Security -
dou2ble Member Posts: 160Congrats! This is one heck of an exam and you should be proud of earning it.
Thanks! I certainly do feel like I've distinguished myself a bit from all the other CISSP holders. What are your thoughts on ISSMP and it's difficulty compared to ISSEP? Do the materials overlap and should I try to take it soon while everything is fresh?2015 Goals: Masters in Cyber Security -
prix03gt Member Posts: 6 ■□□□□□□□□□I've tried posting a few times but I guess the mods need to approve my post. Would you mind sharing your notes with me? username at gee mail dot com?
Thank You -
dou2ble Member Posts: 160I've tried posting a few times but I guess the mods need to approve my post. Would you mind sharing your notes with me? username at gee mail dot com?
Thank You
Sent you a pm.2015 Goals: Masters in Cyber Security -
prix03gt Member Posts: 6 ■□□□□□□□□□I passed it last month. Just waiting on my official endorsement. Thanks Dude.
-
akinakin52 Member Posts: 6 ■□□□□□□□□□Hi dou2ble,
I am interested in the flashcards and any other study materials you are willing to share. My email is my username at gmail.com -
dou2ble Member Posts: 160I passed it last month. Just waiting on my official endorsement. Thanks Dude.
Congrats! Mine took 5 weeks to the day.akinakin52 wrote: »Hi dou2ble,
I am interested in the flashcards and any other study materials you are willing to share. My email is my username at gmail.com
Emailing now. Look up ISSEP under quizlet flashcards and you'll find mine and many others.2015 Goals: Masters in Cyber Security