Sign in Subscribe
Cyber Security Tips Featured

How I Passed The CISSP Exam

Barry Kavanagh

7 min read
How I Passed The CISSP Exam

Passing the CISSP (Certified Information Systems Security Professional) exam has been one of the most challenging yet rewarding milestones of my career. It has allowed me to truly test my knowledge of technology, business, compliance, risk and cybersecurity that I've built up since graduating college. I achieved this goal of mine by studying consistently over several months, using a variety of resources, and developing a structured approach. In this post, I'll share my own personal experience, the strategies I used, and some tips that I hope will help you succeed as well.

Timelines, Preparation & Discipline

I began my CISSP preparation in January (2024), after ordering study materials and planning out my resources over the Christmas break at the end of 2023. February was touch and go with other life priorities so my study plan officially kicked off in March, with the aim of sitting for the exam in August. This gave me about 4-5 months of consistent preparation (if I stuck to the plan), allowing for some days off to attend to family and friend events.

I think this is a tip in itself, I've seen many advise that you should lock yourself away for these months to fully concentrate, this wouldn't work for me as I recharge when spending time with friends and family. If this sounds like you too then I would recommend committing to some events to give yourself a mental break but you will have to sacrifice some of the more spontaneous ones until after the exam but don't worry, they will understand.

Timeline Overview:

  • December/January: Ordered books and outlined my study plan.
  • March-August: Consistent study sessions with periodic breaks.
  • August: Sat for the CISSP exam.

Study Materials and Resources

The CISSP exam voucher cost in Ireland is 665 (inc. VAT) as of writing. I relied heavily on a combination of books, apps, and online content. Here’s a breakdown of the resources I found most valuable:

Books:

  • CISSP Official Study Guide (9th Edition): I used both the physical and audiobook versions. The combination of reading and listening helped reinforce my understanding of the material. I aimed to complete two chapters a week, mainly on weekends or during my commutes (using audiobooks when driving). This was part of a study pack that included the Official Study Practice tests mentioned below (Total cost: €71)
  • 11th Hour CISSP: Study Guide: This was my go-to resource for final revisions. Although my copy was slightly dated as it was borrowed from a generous friend of mine, it was incredibly useful for solidifying key concepts from the various domains. I aimed to finish this a week or two before the exam. I can honestly say this book complemented the official study guide so well and only took a few days to finish.
  • CISSP Official Study Practice Tests: I utilized these practice questions to test my understanding and improve time management. While I didn’t get through every question, they were invaluable for identifying gaps in my knowledge. If I was to advise here I would aim to get through about 500 questions, if you're getting most of them correct and learning from the incorrect ones this should be a good indicator that you probably don't need to spend more time on the rest of the practice questions. (Part of the study pack)

Apps:

  • LearnzApp CISSP Exam Prep: I used this app periodically during my preparation. A month before the exam, I subscribed to the premium version for more comprehensive practice. The day I passed the exam I cancelled the subscription. (Total cost €14.99)

YouTube:

  • Kelly Handerhan - "Why You Will Pass The CISSP Exam": I watched this video twice in the week leading up to the exam. It helped me get into the right mindset and offered valuable insights on approaching the exam with confidence. Simple, but effective.

Communities:

  • Reddit: I joined the CISSP subreddit, to get a sense of common challenges and advice from others preparing for the exam. It was helpful to see what others were experiencing, and it provided a sense of community. There's also some success stories in there too and info on the certificate pack that gets sent to you once you've passed.
  • Discord: Although I did not join the Discord servers, they do exist and are very helpful from what I hear. A quick search should easily find these.

Study Approach and Techniques

Throughout my preparation, I adopted a structured approach to studying that made the process more manageable and effective. I find structure to be a crucial component in any exam attempt, even a simplistic structure is better than none at all.

Combining Audiobooks and Physical Books (Tip #1)

One of the most effective strategies I used was reading the physical book while simultaneously listening to the audiobook. This might just be a little hack for my own brain but I found this approach made it easier to absorb the material and reduced my eye strain and so I read for longer and understood the material faster without re-reading paragraphs. I often listened during my commute, allowing me to cover more content efficiently. Be mindful of listening to sections that are using diagrams, you'll need to make sure you review them when you're no longer driving. Being a visual learner this was a lucky catch on my part.

Understanding Both Right and Wrong Answers (Tip #2)

After completing each chapter, I did the corresponding practice questions, ensuring I understood why each answer was correct or incorrect. This was crucial because it helped reinforce the concepts rather than just memorizing answers which is important for the CISSP exam. It also highlighted areas where I needed to focus more, making my study sessions more productive.

Using the 11th Hour CISSP Guide for Final Revisions (Tip #3)

A few weeks before the exam, I switched to the 11th Hour CISSP guide for a comprehensive review of all the domains. The concise format helped me consolidate my knowledge, making it easier to recall information during the exam. I recommend reading this book at least a week before the exam to solidify your understanding. It's so concise that I used it instead of flash cards!

Watching Kelly Handerhan's Video Twice (Tip #4)

The motivational video "Why You Will Pass The CISSP Exam" by Kelly Handerhan was a key part of my exam preparation. I watched it twice: first, a few days before the exam to boost my confidence, and again, the day before the exam to reinforce a positive mindset. Kelly’s explanations and exam tips provided a morale boost and practical advice on tackling tricky questions.

Final Week Preparations

The final week before the exam was all about consolidation and mental preparation. With most of my studying completed, I focused on revising key concepts and practicing problem-solving techniques like the algorithms for calculating the amount of symmetric or asymmetric key pairs needed for communications and the uses of public and private keys in encryption and digital signatures. This gave me more confidence in the cryptography domain which is a domain that fascinates me but took the most effort to fully understand (and appreciate!).

Practice Time Management with Timed Tests

In the days leading up to the exam, I used the CISSP Official Study Practice Tests to simulate exam conditions. I locked myself in a quiet room, set a timer, and worked through the questions to practice managing my time effectively. Targeting about 60 seconds per question. Realistically if you know the material, read the questions carefully and parse them to understand the ask, you'll know the answer within 30 seconds or so. I didn't allow myself to use noise cancelling headphones either as I wouldn't have these in the exam and needed to practice mindfulness when it came to distractions (there were a few distractions on the day so I'm patting myself on the back for this one). While I didn’t complete all the practice questions, this exercise helped me pace myself better during the actual exam and helped me feel confident in my time management going into the exam.

Final Revision of Key Topics

On the exam day, I spent a couple of hours at a nearby café, revising my notes. I reviewed critical concepts like the OSI/TCP/IP models and the cryptography algorithms I mentioned earlier. This quick review helped keep these important details fresh in my mind.

Exam Day Mindset

On the day of the exam, I focused on staying calm and confident. I knew that I had prepared thoroughly, and the final hours leading up to the exam were about keeping a positive mindset rather than cramming in last-minute details. I enjoyed a coffee, stayed relaxed, and reminded myself that I had put in the work and in the worst case scenario, if it doesn't work out I will learn from it and try again. Little did I know that the best case scenario was coming my way.

Conclusion

Passing the CISSP exam is not just about studying hard; it’s about being disciplined and putting in the work even when you don't feel like it. It's about using a mix of resources, maintaining a consistent study schedule, and adopting effective techniques like combining audiobooks with physical books, understanding practice question rationales, and taking a strategic approach to final revisions can make a significant difference. Finally it's also about being honest with yourself about what you think you know and what the practicing is telling you that you don't and focusing on those domains you are weaker in.

This was a really huge achievement for me both personally and professionally and I hope that sharing my journey and tips will help you pass the exam too!

Share on LinkedIn

If you enjoyed this post, please consider supporting my work through the button below or becoming a free subscriber, (it really helps).

If you're a business and would like to discuss consulting services, you can request a free consultation here: https://www.megabytesandme.com/services/

Thank you!