CISSP Arrghh!

I recently failed the CISSP and I'm revising for my 2nd attempt. A lot people have recommended the Eric Conrad 11th hour, so I purchased as an additional resource. However it seems the incident response steps in the Eric Conrad book are wrong. It conflicts with Sybex 7th Edition which is very frustrating for me as I'm despartly trying to get passed this exam and this just adding confusion.

Sybex has the Mitigation step as containing the incident, taking the machine of the network, whereas Eric Conrad has the response stage as containment. Eric has the mitigation step as eradication understanding the root cause and returning the system to a known good state.

Starting to think I should have purchased ISC2 CISSP. However Sybex is endorsed by ISC2 so I guess I go with them?

Can anyone clarify the steps for me as my head is doing circles

Find more posts tagged with

Comments

malindak

I prefer Sybex whenever i had confusion.

Steps:
Detection
Response
Mitigation
Reporting
Recovery
Remediation – conduct RCA and take precautions
Lesson learned – check to see lesson to be learned and possible improvements to the process.

Oztexs

what other resources did you use ?

1975rt

in (ISC)² CISSP CBK :
Detection
Response
Reporting
Recovery
Remediation and Review (Lessons Learned)

d3s3rtf0x

I would go with Sybex mate.

pinksj

Hi, I am gone take my exam second time. This time I am just working with Sybex book as it has more info than Eric. First attempt went with Eric Conrads book. But this time I am purely working with Sybex and the Offical ISC2 book for tests (This is by Sybex as well).
All he very best for your preparations.

drakhan2002

Get practice questions from cccure.org - lots of resources...

NotHackingYou

Have you tried the online Sybex exams included with the book? Also take a look at Kelly H's videos on Cybrary.

cjthedj45

1975rt wrote: »

in (ISC)² CISSP CBK :
Detection
Response
Reporting
Recovery
Remediation and Review (Lessons Learned)

Your step is missing mitigation?

cjthedj45

NotHackingYou wrote: »

Have you tried the online Sybex exams included with the book? Also take a look at Kelly H's videos on Cybrary.

Thanks I have both of those. I'm going to go with Sybex Incident Respone process

cjthedj45

pinksj wrote: »

Hi, I am gone take my exam second time. This time I am just working with Sybex book as it has more info than Eric. First attempt went with Eric Conrads book. But this time I am purely working with Sybex and the Offical ISC2 book for tests (This is by Sybex as well).
All he very best for your preparations.

Thanks good luck with yours. I have been using Sybex, but got the 11th hour as a quick review guide.

cjthedj45

drakhan2002 wrote: »

Get practice questions from cccure.org - lots of resources...

Yep got that one thanks

1975rt

cjthedj45 wrote: »

Your step is missing mitigation?

You are write, right step.
Incident Response:
Detection
Response
Mitigation
Reporting
Recovery
Remediation
Lessons learned

jumblerr

I passed yesterday, first try. One resource I do not see mentioned very much is Larry Greenblatt's YouTube Videos. TO me that was the deciding factor, based on my test.