This exam prep video covers all topics new or updated on the CISSP 2024 exam syllabus. Together with my full "CISSP Exam Cram Full Course (All 8 Domains)"
๐ Books ๐
CISSP: The Last Mile - https://leanpub.com/cissplastmile
Official Study Guide - https://amzn.to/3PCy6sZ
Practice Tests Guide - https://amzn.to/3C7wep7
๐ Practice Exams ๐
Pocket Prep (great for knowledge checks)
https://pocketprep.sjv.io/cissp
Quantum Exams (good for simulated exam difficulty)
https://quantumexams.com/
๐ Flashcards ๐
Exam Prep Flashcards
https://insidethemicrosoftcloud.com/flashcards
** Presentation Download **
https://1drv.ms/b/s!AmhtzcmYt5AVif93c3IIKpBCIdUbgQ?e=cXTOiI
Chapters
00:00 Introduction
04:59 ๐ Recommended Exam Prep Materials
12:50 ๐ DOMAIN 1
15:59 - 1.2.1 The 5 Pillars
16:31 - 1.3.4 & 1.9.9 โป๏ธ Security Control Frameworks, Risk Frameworks, SABSA
18:45 NIST RMF and NIST CSF (quick comparison)
19:28 - FedRAMP
20:13 - ISO 27001/27002:2022
23:09 1.4.5 Issues Related to Privacy
35:49 - 1.7.2 External Dependencies
36:33 - 1.11.2 Risk Mitigations
40:10 ๐ DOMAIN 2
40:28 ๐ DOMAIN 3
41:37 - 3.1.11 Secure Access Service Edge
42:50 ๐ 3.6.1 FIPS 140-2 Superseded by FIPS 140-3
47:34 ๐ Key Management Lifecycle
49:17 โ๏ธ 3.6.3 Quantum Key Distribution
51:56 โป๏ธ 3.10 Information System Lifecycle
59:00 ๐ DOMAIN 4
01:01:01 - 4.1.2 IPv6
01:03:16 - 4.1.5 Converged Protocols
01:04:13 ๐ 4.1.6 Transport Architecture
01:05:50 ๐ 4.1.7 Performance Metrics
01:07:11 ๐ฆ 4.1.8 Traffic Flows (N/S, E/W)
01:08:07 - 4.1.9 Physical Segmentation
01:11:12 - 4.1.10 Logical Segmentation
01:11:57 - 4.1.11 Micro-segmentation
01:12:30 - 4.1.12 Edge Networks
01:14:49 โ๏ธ 4.1.17 Virtual Private Cloud (VPC)
01:15:43 ๐ 4.1.18 Monitoring and Management
01:17:24 ๐ DOMAIN 5
01:19:28 โ๏ธ 5.1.6 Services
01:20:09 - 5.2.1 Roles and Groups
01:25:42 - 5.2.2 Passwordless
01:33:24 - Zero Trust Refresh
01:34:29 ๐ฎโโ๏ธ 5.4.7 Access Policy Enforcement
01:40:37 - 5.5.5 Service Account Management
01:42:32 - 5.6.1 Implement Authentication Systems
01:43:27 - 5.2.6 Credential Management (with cloud update)
01:45:32 ๐ DOMAIN 6
01:47:06 - 6.1.4 Location (audit design and plan)
01:53:33 - 6.2.2 Pentest Teams (Red/Blue/Purple/White)
01:54:51 - 6.5.4 Location (audit execute and facilitate)
01:56:52 ๐ต๏ธ 3 Audit Standards You Should Know
02:02:39 ๐ข DEMO: Retrieve SOC 2 Report from a CSP
02:04:46 ๐ DOMAIN 7
02:06:23 - 7.2.3 SOAR (with 2024 SIEM refresh)
02:13:26 - 7.12.6 Communication (in DR testing)
02:15:26 ๐ DOMAIN 8
02:16:24 - 8.1.1 Software Development Methodologies
02:21:36 - 8.2.9 Software testing (IAST, SCA)
02:24:03 - 8.4.5 Cloud Services
02:31:13 - BONUS: Difficult Question Strategy (R.E.A.D.)
Music by @musicforvideolibrary