Passed G2700
Hey All I passed the GIAC Certified ISO-27000 Specialist exam.
It was a tough exam for me because it is not technically based. I have gained a significant amount of knowledge from preparing for this certification and it has been an enlightening journey.
Study Material:
Amazon.com: IT Governance: A Manager's Guide to Data Security and ISO 27001 / ISO 27002 (9780749452711): Alan Calder, Steve Watkins: Books
Amazon.com: How to Achieve 27001 Certification: An Example of Applied Compliance Management (9780849336485): Sigurjon Thor Arnason, Keith D. Willett: Books
Amazon.com: CISSP All-in-One Exam Guide, Fifth Edition (9780071602174): Shon Harris: Books
Buy Information Security Management Handbook by Harold F. Tipton, Micki Krause Used from Barnes & Noble
Amazon.com: Information Security Management Handbook, Sixth Edition, Volume 2 (978142006708: Harold F. Tipton, Micki Krause: Books
CERT VTE CISSP Videos
ISO 27000
ISO 27002:2005
This will be the one and only GIAC certification I prepare for without the official material. The practice exams were good but much easier than the real exam. That is a different experience than what I had with the GSEC practice exams which were spot on to the exam.
My study track was about a month and a half of study time. Two weeks before the exam I take the first practice exam without my notes or books. I then organize my notes to match the exam format and create quick reference indexes. I take the second practice test a week before the practice exam using my notes and books. The last week I review all my weak areas an touch up my notes to better prepare for the exam.
This is the method I used for the GSEC and it worked very well and this seemed to work well overall for the G2700 as well.
I will say this though the notes really did not make or break me on this test they just confirmed my choice.
Policies, procedures, guidelines and standards are not foreign to me but this type of exams does test your knowledge of the application and nature of those controls to the standard.
Now on to the CISSP and CHFI which I should be taking next month.
It was a tough exam for me because it is not technically based. I have gained a significant amount of knowledge from preparing for this certification and it has been an enlightening journey.
Study Material:
Amazon.com: IT Governance: A Manager's Guide to Data Security and ISO 27001 / ISO 27002 (9780749452711): Alan Calder, Steve Watkins: Books
Amazon.com: How to Achieve 27001 Certification: An Example of Applied Compliance Management (9780849336485): Sigurjon Thor Arnason, Keith D. Willett: Books
Amazon.com: CISSP All-in-One Exam Guide, Fifth Edition (9780071602174): Shon Harris: Books
Buy Information Security Management Handbook by Harold F. Tipton, Micki Krause Used from Barnes & Noble
Amazon.com: Information Security Management Handbook, Sixth Edition, Volume 2 (978142006708: Harold F. Tipton, Micki Krause: Books
CERT VTE CISSP Videos
ISO 27000
ISO 27002:2005
This will be the one and only GIAC certification I prepare for without the official material. The practice exams were good but much easier than the real exam. That is a different experience than what I had with the GSEC practice exams which were spot on to the exam.
My study track was about a month and a half of study time. Two weeks before the exam I take the first practice exam without my notes or books. I then organize my notes to match the exam format and create quick reference indexes. I take the second practice test a week before the practice exam using my notes and books. The last week I review all my weak areas an touch up my notes to better prepare for the exam.
This is the method I used for the GSEC and it worked very well and this seemed to work well overall for the G2700 as well.
I will say this though the notes really did not make or break me on this test they just confirmed my choice.
Policies, procedures, guidelines and standards are not foreign to me but this type of exams does test your knowledge of the application and nature of those controls to the standard.
Now on to the CISSP and CHFI which I should be taking next month.
Degrees:
M.S. Information Security and Assurance
B.S. Computer Science - Summa Cum Laude
A.A.S. Electronic Systems Technology
M.S. Information Security and Assurance
B.S. Computer Science - Summa Cum Laude
A.A.S. Electronic Systems Technology
Comments
-
-Foxer- Member Posts: 151Good job!
I thought the practice test for it were pretty close to the actual test though. -
Chris:/* Member Posts: 658 ■■■■■■■■□□Portions of the practice tests were right on, other parts I found pretty far off.Degrees:
M.S. Information Security and Assurance
B.S. Computer Science - Summa Cum Laude
A.A.S. Electronic Systems Technology -
Chris:/* Member Posts: 658 ■■■■■■■■□□Thank you.Degrees:
M.S. Information Security and Assurance
B.S. Computer Science - Summa Cum Laude
A.A.S. Electronic Systems Technology -
ill_ace Registered Users Posts: 4 ■□□□□□□□□□How was the difficulty compared to GSEC or GPEN? Not sure if you have those but I just want to get an idea of how hard I need to study for this one.
-
Chris:/* Member Posts: 658 ■■■■■■■■□□Harder than the GSEC but I have not yet taken GPEN, but I would assume easier than the GPEN. I would still study as much as possible.Degrees:
M.S. Information Security and Assurance
B.S. Computer Science - Summa Cum Laude
A.A.S. Electronic Systems Technology -
CarlAlex Registered Users Posts: 1 ■□□□□□□□□□Chris,
Not sure if your still posting onto this forum, however, I need your advice. Could you please email me at cd.alexander at Yahoo dot com. I will explain in more detail.
Have a great day.
CarlAlex -
Chris:/* Member Posts: 658 ■■■■■■■■□□Yes I still post but have been extremely busy with work, school, knowledge based readings, my eCPPT and GSEC white paper.
Sorry I don't email people out of the blue unless I know why. Please provide some details first.Degrees:
M.S. Information Security and Assurance
B.S. Computer Science - Summa Cum Laude
A.A.S. Electronic Systems Technology