It's going to be a living document, more so than my other resource lists. A lot of these are coming right from a couple CISSP study guides I am using on Books 24/7, and a lot of these are coming from my own time spent on Google.
General Resources:
The (ISC)2 CISSP Page https://www.isc2.org/cissp-domains/default.aspx
CISSP and SSCP Refresh FAQ: https://www.isc2.org/cissp-sscp-domains-faq/default.aspx
Cybrary is a great resource for security related training https://www.cybrary.it/
SANS has a ton of reading, blogs, posters https://www.sans.org
SANS Webcasts are a gold mine of free material https://www.sans.org/vendor/webcasts/
Eric Conrad has questions and podcasts here http://booksite.elsevier.com/companion/conrad/
CISSP Study Notes https://www.gypthecat.com/isc2-cissp-revision-notes-study-and-exam-tips
Domain 1: Security and Risk Management
Federal Rules of Evidence Rule 803
Federal Rules of Evidence Rule 1001
US Copyright Office - Fair Use
Copyright and Public Domain
(ISC)2 Code of Ethics
Intangible Assets
Domain 2: Asset Security
Executive Order 12356
SSD Garbage Collection Briefly Explained
What is TRIM?
Erasing Data in SSDs
Secure Deletion of Data from Magnetic and Solid State Memory
PCI DSS Requirements and Security Assessment Procedures 3.1
ISO/IEC 17799:2005
COBIT FAQ
NIST SP 800-53 Security and Privacy Controls
Domain 3: Security Engineering
Assessment of Access Control Systems
Applying the Take-Grant Protection Model
Protection - Principles and Practice
Protection in Operating Systems
DOD Standard - TCSEC
Information Technology Security Evaluation Criteria (ITSEC)
ECSC-EEC-EAEC. The Common Criteria for Information Security Technology
Communication Theory of Secrecy SystemsFIPS Publication 197
Making a Faster Cryptanalytic Time-Memory Trade-Off
Making a Faster Cryptanalytic Time-Memory Trade-Off
Minimum Interoperability Specification for PKI ComponentsA Cryptographic Evaluation of IPSEC
CAC: Common Access Card
NFPA 75: Standard for the Protection of IT Equipment
Zachman Framework
Domain 4: Communications and Network Security
Domain 5: Identity and Access Management
Domain 6: Security Assessment and Testing
Domain 7: Security Operations
Domain 8: Software Development Security
OWASP has a ton of AppSec videos and reading https://www.owasp.org
Youtube Resources:
Starting with the CISSP specific sources, and followed by a number of more general sources that have videos of use to the aspiring CISSP.
Why you are going to fail the CISSP Leo's Top 10 things not to do
Leo Dregier's Channel Other content by the creator of the previous video
ITMastersCSU CISSP Playlist
Sushil Andre's Channel
Simplilearn CISSP Playlist
Keith Barker's Channel - a ton of great stuff on a number of I.T. certifications
PluralSight's Channel
The Geek Academy
I'm a C I double S P (a little CISSP Humor)
CAC: Common Access Card
NFPA 75: Standard for the Protection of IT Equipment
Zachman Framework
Domain 4: Communications and Network Security
Domain 5: Identity and Access Management
Domain 6: Security Assessment and Testing
Domain 7: Security Operations
Domain 8: Software Development Security
OWASP has a ton of AppSec videos and reading https://www.owasp.org
Youtube Resources:
Starting with the CISSP specific sources, and followed by a number of more general sources that have videos of use to the aspiring CISSP.
Why you are going to fail the CISSP Leo's Top 10 things not to do
Leo Dregier's Channel Other content by the creator of the previous video
ITMastersCSU CISSP Playlist
Sushil Andre's Channel
Simplilearn CISSP Playlist
Keith Barker's Channel - a ton of great stuff on a number of I.T. certifications
PluralSight's Channel
The Geek Academy
I'm a C I double S P (a little CISSP Humor)
0 comments:
Post a Comment
Discuss this post!