O'Reilly logo
live online training icon Live Online training

CISSP exam preparation

Practicing the CISO skill set using case-based learning

Topic: Web Platform
Dean Bushmiller

CISSP is the gold standard of vendor-neutral cybersecurity certifications. If your organization is subject to PCI, GDPR, HIPAA, SOX, ISO 27001, or similar regulations, you need the CISSP to understand cybersecurity from a management viewpoint.

Many people try to brute-force the exam but fail because it requires finesse, a CISSP management way of thinking, and a clear study plan. Join expert Dean Bushmiller to learn how to break down a real-world case into problems and solutions and place yourself in the chief information security officer’s (CISO’s) seat for every case. By the time you finish, you’ll be able to write eye-opening statements that enlist leaders across your organization to address business security issues.

This is the second in a series of four courses on CISSP exam preparation, preceded by Building a Practice of Mapping Threats to Controls and followed by Deploying a Security Engineering Practice for the 8 Domains.

What you'll learn-and how you can apply it

By the end of this live online course, you’ll understand:

  • How to process articles via case-based best practices and how to process 15%–20% of all cybersecurity business questions
  • How to recognize what a CISSP exam question is asking
  • How to manage your organization’s cybersecurity
  • How to be a true security professional

And you’ll be able to:

  • Avoid cybersecurity technical brute-force traps
  • Build a plan for growing your managerial decision-making process
  • Write CISSP case solutions

This training course is for you because...

  • You need the CISSP
  • You need a plan to prepare for CISSP certification
  • You are moving from a security support role to a management position
  • You are a security designer, administrator, or engineer
  • You are maintaining your CPE/CEU’s for your profession
  • You are a Security Consultant, Analyst, Manager or Auditor.

Prerequisites

Prerequisites:

  • A basic understanding of (ISC)2’s CISSP requirements of certification
  • 4–6 years in information system security and 1–2 years in each domain of the CISSP (per CISSP exam requirements)

Recommended preparation:

Recommended follow-up:

About your instructor

  • Dean Bushmiller has taught the CISSP for 15 years, with a lifetime instructor approval rating of over 90%. He’s a leader of cybersecurity subject-matter experts and has over 1,000 hours of recorded training. He built the CISSP Mind Map workbooks and hosts a free weekly discussion on cybersecurity at Expandingsecurity.com. Dean has held the following certifications: CISSP, CFR, CVLP, CEH, ISSMP, CRISC, ISSAP, CCSK, CCSP, Exin Cloud, CHFI, CASP, GSEC, CCNA, MCSE 2K Charter, MCDBA, MCSA, MCP, MCT, CISM, PLCOP, PLA, PLCT, AWR-138-W, Cloud+, CEI, LPIC-1, and Security+. Though Dean is nonmilitary, he’s had the honor to train the US military since 1999; in recognition for outstanding service in the information assurance field, he’s received eight mission coins.

Schedule

The timeframes are only estimates and may vary according to how the class is progressing

Day 1

CISO (25 minutes)

  • Lecture: Why you should listen; case process
  • Hands-on exercise: Navigate shared content on O’Reilly online learning
  • Q&A

Break (5 minutes)

Break down business problems the CISSP way (25 minutes) - Lecture: Terms; knowledge assumptions; conflicts; decision makers; problems; solutions; outcomes; how this makes you a great CISSP exam taker; how this makes you a candidate for CISO - Q&A

Break (5 minutes)

Sample case 1 (25 minutes) - Lecture: Sample case reading - Hands-on exercises: Place in a domain; find a glossary; find an NIST-SP or ISO doc

Break (5 minutes)

Sample case 2 (25 minutes) - Lecture: Sample case - Hands-on exercise: Place in a domain; find terms, knowledge assumptions, and conflicts; discuss how voting works and how to narrow the topic

Break (5 minutes)

CISO seat for all cases (20 minutes) - Lecture: You’re management, not the customer, supplier, or third party; how to enlist business leaders to help solve the problem; the no-nos of cases; business, risk, outcomes, and potential losses

Break (5 minutes)

Write top business problems and solutions (35 minutes) - Hands-on exercise: Write top business problems and solutions in three sentences

Break (5 minutes)

Process (55 minutes) - Lecture: Improving process; preparation for next session; selection of eight topics of next day’s activities - Hands-on exercise: Correct tags - Q&A

Day 2

Review (30 minutes)

  • Lecture: Review day 1
  • Hands-on exercise: State background information; post your case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Activity 1 (25 minutes) - Hands-on exercise: State background information; post case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Break (5 minutes)

Activity 2 (25 minutes) - Hands-on exercise: State background information; post case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Break (5 minutes)

Activity 3 (25 minutes) - Hands-on exercise: State background information; post case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Break (5 minutes)

Activity 4 (25 minutes) - Hands-on exercise: State background information; post case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Break (5 minutes)

Activity 5 (25 minutes) - Hands-on exercise: State background information; post case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Break (5 minutes)

Activity 6 (15 minutes) - Hands-on exercise: State background information; post case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Break (5 minutes)

Activity 7 (15 minutes) - Hands-on exercise: State background information; post case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Break (5 minutes)

Activity 8 (15 minutes) - Hands-on exercise: State background information; post case problems; vote on top three problems; evaluate and critique other problems; solve top three problems

Wrap-up and Q&A (5 minutes)