CISSP Arrghh!
I recently failed the CISSP and I'm revising for my 2nd attempt. A lot people have recommended the Eric Conrad 11th hour, so I purchased as an additional resource. However it seems the incident response steps in the Eric Conrad book are wrong. It conflicts with Sybex 7th Edition which is very frustrating for me as I'm despartly trying to get passed this exam and this just adding confusion.
Sybex has the Mitigation step as containing the incident, taking the machine of the network, whereas Eric Conrad has the response stage as containment. Eric has the mitigation step as eradication understanding the root cause and returning the system to a known good state.
Starting to think I should have purchased ISC2 CISSP. However Sybex is endorsed by ISC2 so I guess I go with them?
Can anyone clarify the steps for me as my head is doing circles
Sybex has the Mitigation step as containing the incident, taking the machine of the network, whereas Eric Conrad has the response stage as containment. Eric has the mitigation step as eradication understanding the root cause and returning the system to a known good state.
Starting to think I should have purchased ISC2 CISSP. However Sybex is endorsed by ISC2 so I guess I go with them?
Can anyone clarify the steps for me as my head is doing circles
Comments
-
malindak
Member Posts: 58 ■■□□□□□□□□
I prefer Sybex whenever i had confusion.
Steps:
Detection
Response
Mitigation
Reporting
Recovery
Remediation – conduct RCA and take precautions
Lesson learned – check to see lesson to be learned and possible improvements to the process. -
1975rt
Registered Users Posts: 3 ■□□□□□□□□□
in (ISC)² CISSP CBK :
Detection
Response
Reporting
Recovery
Remediation and Review (Lessons Learned) -
pinksj
Member Posts: 89 ■■□□□□□□□□
Hi, I am gone take my exam second time. This time I am just working with Sybex book as it has more info than Eric. First attempt went with Eric Conrads book. But this time I am purely working with Sybex and the Offical ISC2 book for tests (This is by Sybex as well).
All he very best for your preparations. -
drakhan2002
Member Posts: 111
Get practice questions from cccure.org - lots of resources...It's not the moments of pleasure, it's the hours of pursuit...
-
NotHackingYou
Member Posts: 1,460 ■■■■■■■■□□
Have you tried the online Sybex exams included with the book? Also take a look at Kelly H's videos on Cybrary.When you go the extra mile, there's no traffic.
-
cjthedj45
Member Posts: 331 ■■■□□□□□□□
in (ISC)² CISSP CBK :
Detection
Response
Reporting
Recovery
Remediation and Review (Lessons Learned)
Your step is missing mitigation? -
cjthedj45
Member Posts: 331 ■■■□□□□□□□
NotHackingYou wrote: »Have you tried the online Sybex exams included with the book? Also take a look at Kelly H's videos on Cybrary.
Thanks I have both of those. I'm going to go with Sybex Incident Respone process -
cjthedj45
Member Posts: 331 ■■■□□□□□□□
Hi, I am gone take my exam second time. This time I am just working with Sybex book as it has more info than Eric. First attempt went with Eric Conrads book. But this time I am purely working with Sybex and the Offical ISC2 book for tests (This is by Sybex as well).
All he very best for your preparations.
Thanks good luck with yours. I have been using Sybex, but got the 11th hour as a quick review guide. -
cjthedj45
Member Posts: 331 ■■■□□□□□□□
drakhan2002 wrote: »Get practice questions from cccure.org - lots of resources...
Yep got that one thanks -
1975rt
Registered Users Posts: 3 ■□□□□□□□□□
You are write, right step.Your step is missing mitigation?
Incident Response:
Detection
Response
Mitigation
Reporting
Recovery
Remediation
Lessons learned -
jumblerr
Member Posts: 101 ■■■□□□□□□□
I passed yesterday, first try. One resource I do not see mentioned very much is Larry Greenblatt's YouTube Videos. TO me that was the deciding factor, based on my test.
