Passed G2700

Chris:/*Chris:/* Member Posts: 658 ■■■■■■■■□□
Hey All I passed the GIAC Certified ISO-27000 Specialist exam.

It was a tough exam for me because it is not technically based. I have gained a significant amount of knowledge from preparing for this certification and it has been an enlightening journey.

Study Material: IT Governance: A Manager's Guide to Data Security and ISO 27001 / ISO 27002 (9780749452711): Alan Calder, Steve Watkins: Books How to Achieve 27001 Certification: An Example of Applied Compliance Management (9780849336485): Sigurjon Thor Arnason, Keith D. Willett: Books CISSP All-in-One Exam Guide, Fifth Edition (9780071602174): Shon Harris: Books
Buy Information Security Management Handbook by Harold F. Tipton, Micki Krause Used from Barnes & Noble Information Security Management Handbook, Sixth Edition, Volume 2 (978142006708icon_cool.gif: Harold F. Tipton, Micki Krause: Books
ISO 27000
ISO 27002:2005

This will be the one and only GIAC certification I prepare for without the official material. The practice exams were good but much easier than the real exam. That is a different experience than what I had with the GSEC practice exams which were spot on to the exam.

My study track was about a month and a half of study time. Two weeks before the exam I take the first practice exam without my notes or books. I then organize my notes to match the exam format and create quick reference indexes. I take the second practice test a week before the practice exam using my notes and books. The last week I review all my weak areas an touch up my notes to better prepare for the exam.

This is the method I used for the GSEC and it worked very well and this seemed to work well overall for the G2700 as well.

I will say this though the notes really did not make or break me on this test they just confirmed my choice.

Policies, procedures, guidelines and standards are not foreign to me but this type of exams does test your knowledge of the application and nature of those controls to the standard.

Now on to the CISSP and CHFI which I should be taking next month.
M.S. Information Security and Assurance
B.S. Computer Science - Summa Cum Laude
A.A.S. Electronic Systems Technology


Sign In or Register to comment.