The CISSP - Certified Information Systems Security Professional designation is a globally recognized, vendor-neutral standard attesting to an IT security professional's technical skills and hands-on experience implementing and managing a security program. CISSP certification is highly sought after by IT professionals and is considered the golden standard certification for information security professionals. Department of Defense (DoD) Directive 8570.1 approved IAT Level III and IAM Level III.
For a more structured approach, ISC2 offers specific study tools like the CISSP Self-Paced Training Course, Official CISSP Flash Cards, an Official CISSP Study App...
To aid in your study and recall, here are six mnemonics tailored for various concepts within this domain:
Non-Government/Public Data Classification Levels: "Penguins Swim Peacefully, Chasing Piranhas"
Here are some mnemonic devices tailored for this domain which I have used and recommend...
Here are some mnemonics (which I personally recommend and have used for sure) to help remember key concepts...
This domain is weighted at 12% and covers conducting risk assessments, vulnerability scans, penetration testing and monitoring for security events.
Know discretionary access control (DAC), mandatory access control (MAC), role-based access control (RBAC) and attribute-based access control (ABAC).
Starting off I want to highly recommend the following FREE CISSP Domain 4 Youtube video resource by Pete Zerger and his Inside Cloud and Security CISSP series and channel. I used this one extensively while running, working out etc
