Activity
Mon
Wed
Fri
Sun
Dec
Jan
Feb
Mar
Apr
May
Jun
Jul
Aug
Sep
Oct
Nov
What is this?
Less
More

Memberships

CISSP Study Group

Public • 895 • Free

18 contributions to CISSP Study Group
Practice Question!
A large financial institution discovers unusual network traffic patterns at 2 AM. Initial investigation reveals encrypted data being transferred from a server containing customer financial records to an unknown external IP address. The CISO is immediately notified. System logs indicate that the suspicious activity originated from a privileged account belonging to a recently terminated system administrator. The account was supposed to have been disabled during off-boarding last week. What should be the FIRST priority for the incident response team?
Poll
43 members have voted
3
5
New comment 4d ago
0 likes • 4d
@Chitra Lakshmi kali I agree with you, that shutting down ALL connections is an extreme decision in this case, not sure if it is even possible; if this is a large financial institution, probably has a mix of several networks, on-premises, cloud, in different countries, how can you possibly stop ALL connections? we have identified already destination ip address and the user causing the problem, why we have to stop everything? and what is going to be next step? however for the exam we might need to chose option A, not sure
Exam completed, I am free now :)
Hello friends, I have passed my CISSP exam on October 31st. I was doing intensive preparation during July – October. I made schedule and appointed time at each day. Obviously that I was not following all days due to family/job/personal circumstances, but in 90% it was possible to follow. I have 10 years dedicated experience in industrial cyber security and most of the technical domains was less or more easier for me, but Risk Management, Information Security Governance, Software development and especially CISSP mindset was really “terra incognito” for me. I did not acquire any bootcamps or in class trainings. I was using below resources in the following sequence: 1. Kelly Handerhan videos dated by 2017 2. ICS2 2021 book (reading respective chapter after completion watching video from step#1) 3. Doing Learnzapp test (Do not take Learnzapp questions as the real or similar to the CISSP exam, it is not true. The questions good to learn ICS2 book only) 4. Watching videos on the @PrabhNair1 and Andrew Ramdayal channel 5. Reading success stories in Skool CISSP Study Group (thanks to all folks in Skool community and to @M B for your time to answer on my questions) The exam was really not easy (before I was passed GICSP and CISM exams). I had the following challenges: 1. Domain#8 Software Development questions (I had a lot in my exam) 2. Could security questions 3. Language barrier – some questions I really was not able to understand due to specific English write up, despite I am living and working in English speaking environment. 4. Time, time, time. I have completed 150 questions in 171 min. I used only 2 minute break during the exam. Sometimes I was giving myself only 10-15 seconds on the question, to accumulate time for more challenging questions. The below picture is my Learnzapp balance on the last day of the exam. The progress bar was very subjective for me, but it was helping to track weakness and strength in the domains. As well it was good to quickly learn particular information by reviewing the test results (I suggest to review both - wrongly and correctly answered questions), it directs in dedicated ICS2 book chapter where you can read enhanced information.
13
20
New comment 9h ago
Exam completed, I am free now :)
2 likes • 4d
Congratulations Dmitriy! It is very comforting to see people passing the exam :-). Enjoy the freedom!
Exam Tips & Techniques | Study Group Recording - 09/05/2024
In this engaging discussion, attendees, including CISSP candidates and recent passers, share insights on exam strategies, time management, and tackling tough domains. Learn about the importance of keyword focus, eliminating wrong answers, and techniques for mastering CISSP concepts. Don’t miss out on these valuable study tips!
10
4
New comment 7d ago
Exam Tips & Techniques | Study Group Recording  - 09/05/2024
2 likes • 7d
I really liked this video! especially towards the end, when you are talking about how to eliminate answers when the question is not even known! It might be an useful technique when you have no clue what the question is asking. Thank you!!
Experience with Quantum Exam
Hello, I see that many students are using the so called Quantum Exam test bank. I need to decide if they are worth to buy. I tested the 8 free questions available when you register to the site and they were quite difficult indeed. Is there someone currently using them to prepare for the exam? Is there someone that passed the exam that maybe can comment on that? Thank you!
0
0
Practice Question
Darrel believes that a database server in his environment was compromised using a SQL injection attack. Which one of the following actions would Darrel most likely take during the remediation phase of the attack? A. Rebuilding the database from backups B. Adding input validation to a web application C. Reviewing firewall logs D. Reviewing database logs
5
7
New comment 5d ago
2 likes • 9d
B
1-10 of 18
@sal-riz-2584
I am a network and security engineer with experience in ISP environment

Active 7h ago
Joined Oct 2, 2024
powered by