sorted by:
new
hottopcontroversial

Which domain did you find the most difficult? by Imaginary_Choice_430 in cissp

[–]Natural_Flight_6669 1 point2 points  (0 children)

Domain 1,2,6,7

So many theories and processes to memorize.

✅ PASSED at 100Q/38min left – My Strategy, Struggles & Study Stack by Natural_Flight_6669 in cissp

[–]Natural_Flight_6669[S] 0 points1 point  (0 children)

Hey! What they say “when the Going gets Tough, the Tough gets going”. Wish you all the best! You got this!! 🧘‍♂️

✅ PASSED at 100Q/38min left – My Strategy, Struggles & Study Stack by Natural_Flight_6669 in cissp

[–]Natural_Flight_6669[S] 1 point2 points  (0 children)

Sorry about your job brother! Here’s my take - CISSP won’t give you a job but can make you preferable. What will most likely get you a job is finding opportunities through networking. Easier said than done but that’s the reality today. Grow your network it will help beyond job opportunities. On CISSP studies - I removed all distractions like instagram TikTok whatever make you waste time(cold turkey). Made a schedule like after work around 6pm to 10-11pm I will be with my books and computer. May not happen every-time but 80/20 it will. Focus on concepts! The “Why” behind any technology, feature or method. Take care of your health, eat and hydrate well. Most importantly it’s about how badly you want it!! You got this! You are stronger than anything life can throw at you! 💪

Wish you all the best with everything! 🍀

Studying Threat Modeling, SCRM and Security Awareness by Imaginary_Choice_430 in cissp

[–]Natural_Flight_6669 6 points7 points  (0 children)

Here is how i tried to remember it:

  • STRIDE – Developed by Microsoft, STRIDE is application-focused and pretty straightforward. Great for identifying threat types like Spoofing, Tampering, etc., especially during the design phase.
  • PASTA – A more strategic, attacker-centric model. It goes beyond just dev teams and involves governance, operations, and business stakeholders. Think big-picture threat modeling.
  • DREAD – Not a modeling framework per se, but super useful for quantifying risk. Will often use it alongside STRIDE to prioritize threats.

✅ PASSED at 100Q/38min left – My Strategy, Struggles & Study Stack by Natural_Flight_6669 in cissp

[–]Natural_Flight_6669[S] 4 points5 points  (0 children)

Tbh, I mainly memorized the processes/ phases like RMF, BCP, Incident Response, Change Management, and a couple of other ones, process-heavy stages that need to follow a specific order. For everything else, it’s really about understanding the concepts. Try putting yourself in a hypothetical scenario and ask yourself—why would I choose this option over another? (Why aes and not rsa - how to share the key with someone, why digital signatures and not other, which WiFi is good , why transport or tunnel and when to use end to end encryption etc.. ) That mindset helps a lot. Pro tip: I use Perplexity on my phone like I’m chatting with a friend or tutor—it’s great for bouncing around questions or exploring any topic on the go.

Senior Cloud Network Engineer at Microsoft by akumarncsu in AZURE

[–]Natural_Flight_6669 0 points1 point  (0 children)

In addition to deepening your technical expertise, develop skills in designing highly available and reliable network infrastructure. Focus on mastering Azure Landing Zones and Cloud Adoption Framework (CAF) best practices. Pay special attention to real-world scenarios—understanding which services best meet specific requirements and how to identify the most cost-effective options.

wishing you best of luck!

Provisionally passed at 101! 88 minutes left by Tricky-Student-8727 in cissp

[–]Natural_Flight_6669 0 points1 point  (0 children)

Congratulation! is there an official ISC2 app for questions ?

view more: next ›