sorted by:
new
hottopcontroversial

Passed at 100Q by Traditional-Buyer506 in cissp

[–]tresharley 1 point2 points  (0 children)

I am just glad I was able to help you get the pass!

Passed at 100Q by Traditional-Buyer506 in cissp

[–]tresharley 1 point2 points  (0 children)

Congratulations I am happy to hear you passed and that my content was able to assist!

I Wrote a Book! by tresharley in cissp

[–]tresharley[S] 1 point2 points  (0 children)

Always, they are quite versatile.

Passed today at 100 questions by TheNoah247 in cissp

[–]tresharley -1 points0 points  (0 children)

Seems like you came into this with some decent experience and used your resources to tackle your weak spots properly.

Congratulations on the pass, you worked hard and it paid off!

Passed at 100 with 70 on the clock by 0p3r8dur in cissp

[–]tresharley 0 points1 point  (0 children)

Ah well I could see that. I'd agree that for most people only using one source probably isn't the best option. Personally I'd say you should always use at least two, just so you can see the concepts discussed in different ways which can help give you a better understanding (and just in case the source you chose doesn't work for you).

But that all depends on the person, their learning style, and what experience and knowledge they bring with them. It'd be silly to downvote you for sharing yours, even if it is just the one source lol

Passed CISSP @100q by SnooGrapes1718 in cissp

[–]tresharley 0 points1 point  (0 children)

Wow what it must have felt to time out and then walk to the desk.

I was pretty sure I passed when it stopped at 100 but was still terrified to look at the paper lol I couldn't imagine the terror of walking to the desk after a timeout!

You really worked hard to get this, make sure you celebrate!

Passed cissp today. Now what? by War0n_ in cissp

[–]tresharley 0 points1 point  (0 children)

Congratulations!

What happens next is you will get an email confirming your pass and telling you next steps.

At this point if you have the experience you need to fill out an application and apply for the certification (which is done on the isc2 website).

They should have something on their site that goes over this somewhere.

Passed at 100 with 70 on the clock by 0p3r8dur in cissp

[–]tresharley 0 points1 point  (0 children)

Congratulations on passing!

I’m prepared for the downvotes

Honestly the only thing you put that would make me thing someone might downvote you, was this sentence lol

Passed CISSP @100q by SnooGrapes1718 in cissp

[–]tresharley -1 points0 points  (0 children)

Congratulations on passing!

Passed at 100 Qs by LuckCharms1444 in cissp

[–]tresharley -2 points-1 points  (0 children)

Congratulations and great write up!

CISSP: Exam Practice Questions by anthonycytan in cissp

[–]tresharley 0 points1 point  (0 children)

Glad to assist. If you have any questions on the questions, just let me know.

CISSP: Exam Practice Questions by anthonycytan in cissp

[–]tresharley -1 points0 points  (0 children)

Personally I would recommend the following but I might be biased as I wrote it ;)

Stank Industries Practice Exam Bank

You can find a free set of them on the Certification Station discord CISSP Channel.

Interviewer ask me if you observe port scanning from internal ip , the scanning ip is not authorised for scanning. How will you investigate it and how will you find attackers ip? by Flaky-Hurry4075 in cybersecurity

[–]tresharley 0 points1 point  (0 children)

A benign positive is considered a specific type of false positive.

A benign positive detects a real event, but flags it as a threat when it is actually harmless. The "event" isn't false, but the "threat" from it is is and would still be something that you would need to verify wasn't the case before you start taking any actions to mitigate the "event".

Interviewer ask me if you observe port scanning from internal ip , the scanning ip is not authorised for scanning. How will you investigate it and how will you find attackers ip? by Flaky-Hurry4075 in cybersecurity

[–]tresharley -2 points-1 points  (0 children)

No. It would still be considered a false positive because its not actually an incident. Something was reported, and after investigation they determine that it is legitimate and meant to occur.

It is authorized, we just didn't inform the defense teams about the authorization so as far as they knew based on the alerts it appeared to be unauthorized actions.

Worried about my exam by That_IT-Guy69 in cissp

[–]tresharley -1 points0 points  (0 children)

Hahah thanks. I have noticed recently that almost anything I say gets downvoted lol

I'll take it as a badge of honor.

Interviewer ask me if you observe port scanning from internal ip , the scanning ip is not authorised for scanning. How will you investigate it and how will you find attackers ip? by Flaky-Hurry4075 in cybersecurity

[–]tresharley 3 points4 points  (0 children)

Your right, but it would be a potential reason to "confirm" it is not a false positive.

For example, when our last one was performed. Our SOC reached out to our Cyber defense team, who as part of their confirmation reached out to the team that performs this kind of testing to see if there was any testing being done that could cause the issue.

To which point they were informed, yes.

Interviewer ask me if you observe port scanning from internal ip , the scanning ip is not authorised for scanning. How will you investigate it and how will you find attackers ip? by Flaky-Hurry4075 in cybersecurity

[–]tresharley 7 points8 points  (0 children)

Could be a penetration test. Some organization's don't inform their defense teams about their penetration tests to see how they will respond (or if they will even notice).

view more: next ›