CISSP
CISSP Overview
| Attribute | Value |
|---|---|
Goal |
Pass CISSP exam, become certified |
Target Date |
2026 Q3 |
Interest Link |
IT > InfoSec |
Status |
Planning |
Primary Resource |
(ISC)2 Official Study Guide, Boson practice exams |
Practice |
Domain-focused study, practice questions |
Prerequisite |
5 years security experience (or 4 + degree) |
Curriculum (8 Domains)
| Domain | Description | Weight | Status |
|---|---|---|---|
1. Security & Risk Management |
Governance, compliance, ethics |
15% |
[ ] Not Started |
2. Asset Security |
Data classification, ownership |
10% |
[ ] Not Started |
3. Security Architecture |
Secure design principles |
13% |
[ ] Not Started |
4. Communication & Network |
Network security, channels |
13% |
[ ] Not Started |
5. Identity & Access Management |
Authentication, authorization |
13% |
[ ] Not Started |
6. Security Assessment |
Testing, auditing, monitoring |
12% |
[ ] Not Started |
7. Security Operations |
Incident response, DR/BC |
13% |
[ ] Not Started |
8. Software Development Security |
SDLC, secure coding |
11% |
[ ] Not Started |
Progress: 0 / 8 domains (0%)
Current Tasks
| Priority | Task | Due | Status |
|---|---|---|---|
P2 |
Acquire study materials |
2026-03 |
[ ] Pending |
P2 |
Map work experience to domains |
2026-03 |
[ ] Pending |
P2 |
Create 12-week study schedule |
2026-03 |
[ ] Pending |
Key Notes
CISSP Mindset:
-
"Think like a manager, not a technician"
-
Focus on WHAT and WHY, not HOW
-
Risk-based decision making
-
Least privilege, defense in depth
Experience Mapping:
| Domain | Work Experience | |--------|-----------------| | 4. Network | 802.1X, ISE, firewalls | | 5. IAM | ISE, RADIUS, AD, PKI | | 6. Assessment | Vulnerability scanning, audits | | 7. Operations | Incident response, SIEM |
Study Strategy:
-
Study 1 domain per week
-
Practice questions daily
-
Review weak areas on weekends
-
Take practice exam every 2 weeks