CISSP Arrghh!

cjthedj45cjthedj45 Member Posts: 331 ■■■□□□□□□□
I recently failed the CISSP and I'm revising for my 2nd attempt. A lot people have recommended the Eric Conrad 11th hour, so I purchased as an additional resource. However it seems the incident response steps in the Eric Conrad book are wrong. It conflicts with Sybex 7th Edition which is very frustrating for me as I'm despartly trying to get passed this exam and this just adding confusion.

Sybex has the Mitigation step as containing the incident, taking the machine of the network, whereas Eric Conrad has the response stage as containment. Eric has the mitigation step as eradication understanding the root cause and returning the system to a known good state.

Starting to think I should have purchased ISC2 CISSP. However Sybex is endorsed by ISC2 so I guess I go with them?

Can anyone clarify the steps for me as my head is doing circles

Comments

  • malindakmalindak Member Posts: 58 ■■□□□□□□□□
    I prefer Sybex whenever i had confusion.

    Steps:
    Detection
    Response
    Mitigation
    Reporting
    Recovery

    Remediation – conduct RCA and take precautions
    Lesson learned – check to see lesson to be learned and possible improvements to the process.
  • OztexsOztexs Junior Member Member Posts: 32 ■■■□□□□□□□
    what other resources did you use ?
  • 1975rt1975rt Registered Users Posts: 3 ■□□□□□□□□□
    in (ISC)² CISSP CBK :
    Detection
    Response
    Reporting
    Recovery
    Remediation and Review (Lessons Learned)
  • d3s3rtf0xd3s3rtf0x Member Posts: 29 ■■□□□□□□□□
    I would go with Sybex mate.
  • pinksjpinksj Member Posts: 89 ■■□□□□□□□□
    Hi, I am gone take my exam second time. This time I am just working with Sybex book as it has more info than Eric. First attempt went with Eric Conrads book. But this time I am purely working with Sybex and the Offical ISC2 book for tests (This is by Sybex as well).
    All he very best for your preparations.
  • drakhan2002drakhan2002 Member Posts: 111
    Get practice questions from cccure.org - lots of resources...
    It's not the moments of pleasure, it's the hours of pursuit...
  • NotHackingYouNotHackingYou Member Posts: 1,460 ■■■■■■■■□□
    Have you tried the online Sybex exams included with the book? Also take a look at Kelly H's videos on Cybrary.
    When you go the extra mile, there's no traffic.
  • cjthedj45cjthedj45 Member Posts: 331 ■■■□□□□□□□
    1975rt wrote: »
    in (ISC)² CISSP CBK :
    Detection
    Response
    Reporting
    Recovery
    Remediation and Review (Lessons Learned)

    Your step is missing mitigation?
  • cjthedj45cjthedj45 Member Posts: 331 ■■■□□□□□□□
    Have you tried the online Sybex exams included with the book? Also take a look at Kelly H's videos on Cybrary.

    Thanks I have both of those. I'm going to go with Sybex Incident Respone process
  • cjthedj45cjthedj45 Member Posts: 331 ■■■□□□□□□□
    pinksj wrote: »
    Hi, I am gone take my exam second time. This time I am just working with Sybex book as it has more info than Eric. First attempt went with Eric Conrads book. But this time I am purely working with Sybex and the Offical ISC2 book for tests (This is by Sybex as well).
    All he very best for your preparations.

    Thanks good luck with yours. I have been using Sybex, but got the 11th hour as a quick review guide.
  • cjthedj45cjthedj45 Member Posts: 331 ■■■□□□□□□□
    Get practice questions from cccure.org - lots of resources...

    Yep got that one thanks
  • 1975rt1975rt Registered Users Posts: 3 ■□□□□□□□□□
    cjthedj45 wrote: »
    Your step is missing mitigation?
    You are write, right step.
    Incident Response:
    Detection
    Response
    Mitigation
    Reporting
    Recovery
    Remediation
    Lessons learned
  • jumblerrjumblerr Member New York, NYMember Posts: 101 ■■■□□□□□□□
    I passed yesterday, first try. One resource I do not see mentioned very much is Larry Greenblatt's YouTube Videos. TO me that was the deciding factor, based on my test.
Sign In or Register to comment.