Congratulations. Thanks for sharing the experience. You mentioned that this is your 28th certification. Amazing. Can you provide more details about what are those, why so many ? What is your current profession ? How does CISSP exam or certifcate compare to others ? Your reply will be very interesting to me. thanks

I just read the article on Microsfot Azure DDoS attack and found that, upon detection of the DDoS, they could not control/counter it fully/properly due to - An implementation error in their defenses !! So it kinda is related to Crowdstrike episode - Incorrect design or implementation and insufficient Testing.

Hello All I went back to see the timelines of my preparation. The jourey started in May looking at various cyber security certifications that are out there and wondering which one should I go for. I came across CompTIA Security+ and CEH (certified ethical hacker) as the most commonly quoted ones. But these looked a bit a bit junior level for me given my background of having worked in IT industry for more than 25 years. I already have working experience buildng IAM, Network Security products at layer 5-7 (proxy and VPN) , HA and BCP/DR products based on SAN networks. Then I came across CISSP exam as being the Gold standard for CISO and other management roles which seemed like a perfect fit me. I also came across CISM/CISA certification exams in the same league as CISSP .(to add some more - freshly seeing GIAC certifications and wondering if I may consider taking any one of them as they are a bit more specialized and in-depth in a particular area. What do you guys think ? ) After this research in May, I firmed on CISSP and in June 1st week I started my preparation . I came across lots of videos on youtube , and in particular I came across 1 video by Prabh Nair on how to prepare and which material to use) Based on this, a. I enrolled for CISSP Certification: CISSP Bootcamp on Udemy by Thor Pedersen b. Referred to Prabh Nair CISSP content , especially coffee shots c. Destination Certification @destcert who have some great mindmap videos and also crash courses on topics. d. I didnt prepare from the sybex cissp study guide by Make chapple(book was too expensive for me personally just for an exam and also I was not ready to go through a 1000 pg book anyway as it was intiimidating and would be endless and I already have a date of exam coming up) . Then I stumbled on his video lecture series in linkedin learning. So I enrolled for a paid subscription in July The topics are the same but I saw references in many places to dates of 2021 , so I felt they were old ones, probably still applicable but the course title mentioned CISSP 2024.

@N P Yes, I had sufficient experience that made up for the preparation. And after writing the exam, I can tell you that mere theoretical preparation without relevant experience wont just cut it

This is a rather confusing question. Both SAML and oauth serve the purpose. Oauth is an authorization protocol but used for auth too.. SAML ofcourse is for federated identity.

Suppose OIDC was also one choice. Then what would be the answer?

Congratulations @Richard Abimiku . Join this elite club. Good luck.