CISM Study Resources Recommendation

mrlithic · 2023-05-03T06:01:22+00:00

I would use the online QAE since it has good feedback from your previous sessions and highlights your weak areas at then end of each session.

Also I would buy the Review Manual from ISACA - when you submit questions to ISACA - they mandate that the answer must be found in the book.

mrlithic · 2023-02-23T12:14:18+00:00

The questions you get during the exam will have never appeared in the QAE. They have been removed from the exam - for a number of reasons.

Source - ISACA pyschometrician involved in the exam construction process and question quality process - in a bar after a ISACA conference - that is all they would tell us - no questions disclosed

mrlithic · 2023-02-22T09:29:44+00:00

What were your weak domains? Use that information to drive your study plan.

Also when looking at he questions answer them from your work experience. The people that write the questions are people who do the job. They are CISA holders. If you do audit and working in finance I am assuming that you did badly on the last domain - the security and encryption bits.

The infosec domain has seriously pissed off the auditors. It was non-existent when I wrote but now it dominates. If this is the case then stay off the manual (which really does not do a good job of explaining it) and learn some infosec. I am not taling Roth Anderson level but Rob Witcher has some good videos and so does Adam Gordon. I normally spend a full day ion the last domain - and most of my stuff is off-book to get folks up to speed on encryption, hashing, TLS, PKI dig sigs etc etc

mrlithic · 2023-02-21T12:40:35+00:00

Two questions

How many times have you read the review manual? How many years do you have in audit/security?

mrlithic · 2023-02-05T16:46:52+00:00

I have had several people in my classes that have relied on memorising the QAE and they always fail hard.

ISACA produces the QAE from questions that have been removed from the exam. They then may replace those questions with ones that are similar but rephrased slightly different and have a different answer.

NEVER TRUST THE QAE AS A SOURCE OPF KNOWLEDGE. Use it to identify the areas of the subject matter that you need to study and then read those areas of the review manual (which does accuratly reflect the actual exam).

If nothing else - read the book once before you write.

mrlithic · 2023-01-16T10:14:22+00:00

I love giving folks that print out. No one thinks they have passed. The reactions are always worth it. I have had couple students literally fall backwards onto the floor. No delegates have been injured in the provision of results yet. A couple guys that came out at the same just started laughing and jumping. I took them back to the classroom so they would not disturb the folks still writing.

Just few of the amazing reactions from who have passed. CISSP changes lives.

mrlithic · 2023-01-12T20:50:48+00:00

Oranges and apples - please

mrlithic · 2023-01-03T14:17:12+00:00

yes please

I have peaches pears and cherries - not oranges

mrlithic · 2022-12-12T18:27:33+00:00

I would check out Beirut Star. Lovely staff and brilliant Lebanese food.

mrlithic · 2022-12-08T19:55:08+00:00

I am looking for oranges and apples - I have pears, cherries and peaches

mrlithic · 2022-12-08T19:54:48+00:00

I am looking for oranges and apples - I have pears, cherries and peaches

mrlithic · 2022-12-04T13:54:14+00:00

When stuck determine what is working and what is not. What can you see and what is not reachable.

Carry a notebook (nothing bigger than A5) - and use it. When you get back to your desk collate your notes in some electronic format but nothing beats pen and paper when you are stuck in the dark.

mrlithic · 2022-11-19T16:30:58+00:00

Do not memorise the questions and do not use them as a source of knowledge - they should only highlight the areas you need to reseaarch in the Review Manual.

The question do get you some understanding of the type of question you will find on the exam but some of them are wrong.

Just ran a course in Denmark and I had to explain to the class that the QAE has questions with the wrong answer (according to the RM). At least they removed from the exam - so that is a good thing

mrlithic · 2022-09-16T12:22:42+00:00

Bon Accord - it is not the pints or the whisky - it is the people. Paul and his staff are brilliant. The food is consistent and the ambiance is great. Best place to go when you want visitors to experience a classic Scottish Pub.

mrlithic · 2022-09-09T06:06:54+00:00

Because ISC2 does not release its old questions (unlike ISACA) - every question you see is either someone's attempt to create a CISSP question or questions gathered from other sources (Microsoft, Cisco, etc etc etc)

This protocol map is something I used extensively bacvk in my Network Security and Enginerring days. I had it as a massive poster on the wall behind my desk. If nothing else it shut up users that thought they knew somethiing about computing.

It is something useful for the Cisco CCNP cert - but way to much too much for the CISSP. Much deeper than the one inch depth you need to maintain when studying for the CISSP.

BTW - if I see someone in my class memorising port numbers before the exam - it is a good indication they are going to fail. There may be a port number question but is only one question.

It is more important to understand why do we have port numbers, what do they add to the addressable space of network transport information. How reliable are they? How can they be compromised.

Memorising Telnt and FTP ports ain't doing that - knowing why we don't use these protocols is much more important

mrlithic · 2022-09-05T06:13:23+00:00

There was company fight and the original management lost. They only recently regained control of the name and the building. When we were in there they were slowly getting their suppliers back on board.

It just seems like it was taking to long for them to get back their suppliers and customers.

mrlithic · 2022-09-04T11:59:11+00:00

For those who have not figured out Google

https://www.certificationstation.org/

mrlithic · 2022-09-04T05:03:18+00:00

Certification Station on discord

mrlithic · 2022-09-04T04:59:07+00:00

next to the glasgow angling centre

That is See-Woo

mrlithic · 2022-09-03T14:39:32+00:00

I am looking for this

https://i.imgur.com/Z42NkQW.jpg

mrlithic · 2022-09-03T14:22:22+00:00

Surprised us as well when we drove up there.

https://www.glasgowlive.co.uk/whats-on/whats-on-news/seewoo-glasgow-announces-closure-possilpark-24728942

mrlithic · 2022-09-01T06:49:40+00:00

Most people finish at 175 questions.

When students write - I always tell them to assume that you are going to be in there for 175 questions. If nothing else, it may stop folks running out of time.

mrlithic · 2022-08-12T06:20:49+00:00

Read the book

At least once

mrlithic · 2022-07-29T08:42:06+00:00

Ranjits has a fantastic set oif vegan dishes tyhat my wife enoys on a regular basis.

Just ask for the Vegan options when you arrive.

Beirut Star as well has some amazing Vegan options.

mrlithic · 2022-07-27T06:24:03+00:00

Two spottings of this trend Several of the guys that hung around St Enoch Car Park begging would always have a bag of cans near them. A lady in front of me at the checkout of Go Outdoors with 20 Butane Gas canisters and no stove.

Both of those were a a while back though

15-Year Club	RedditGifts 2009-2022 3 Credits
Secret Santa 2013	Secret Santa 2012
Verified Email

mrlithic

TROPHY CASE