CISSP Study Agenda and Resources, 16-

Weeks
(Updates since first post -- Content: added slides, aligned tests with domains, removed page references,
added ISC2 Code of Ethics, added Sybex study resources; Format: Changed from image to markdown,
improved table formatting)
Edit 5 Feb 2019: Added link to differences between 7/8 Sybex book.
Edit 25 May 2019: Added Cybrary MP3 link.
Edit 20 Jan 2020: Added audible resources link, and added a little formatting Edit 25 Nov 2020:
unfortunately I can’t find a legal source for free Cybrary resources such as the MP3s and the slide deck.
These are crossed out at the moment, let me know if you find a legal source for these.

CISSP Study Agenda, 16-Weeks

Based on CISSP Official Study Guide, 7th or 8th edition
Last Updated: August 2018
The following is an example schedule for studying once per week. The slide numbers are from
the Cybrary slides. The chapter titles and the chapter order are identical between the 7th and 8th
editions of the Sybex book, though the page numbers are slightly different. You can use this to
study from the Sybex 7th edition or the 8th edition (check the differences here).
Cybrary
Domai Slides (see
Chapter and Title n 5.b. below)
Chapter 1 Security Governance Through
Session #1 Principles and Policies 1 1-47
Chapter 2 Personnel Security and Risk
Management Concepts 1
Session #2 Chapter 3 Business Continuity Planning 1(7) 48-97
Chapter 4 Laws, Regulations, and Compliance 1
Chapter Tests 1-4 Domain 1 - Security and
Session #3 Risk Management 119-133
Chapter 5 Protecting Security of Assets  2
Chapter 6 Cryptography and Symmetric Key
Session #4 Algorithms 3 163-222
Chapter 7 PKI and Cryptographic Applications 3
Session #5 Chapter Tests 5-7 Domain 2 - Asset Security 134-162
Chapter 8 Principles of Security Models,
Design, and Capabilities 3
Chapter 9 Security Vulnerabilities, Threats, and
Session #6 Countermeasures 3 223-252
 Cybrary
Domai Slides (see
Chapter and Title n 5.b. below)
Chapter 10 Physical Security Requirements 3(7)
Chapter 11 Secure Network Architecture and
Session #7 Securing Network Components 4 253-318
Chapter 12 Secure Communications and
Network Attacks 4
Chapter Tests 8-12 Domains 3-4 - Security
Engineering / Communications & Network
Session #8 Security 319-361
Chapter 13 Managing Identity and
Authentication 5
Session #9 Chapter 14 Controlling and Monitoring Access 5 362-436
Chapter 15 Security Assessment and Testing 6
Session #10 Chapter 16 Managing Security Operations 7 437-480
Chapter 17 Preventing and Responding to
Incidents 7
Session #11 Chapter 18 Disaster Recovery Planning 6(7) 98-118
Chapter 19 Incidents/Investigations and Ethics 7(1)
Chapter Tests 13-19 Domains 5-7 - Identity &
Access Management / Security Assessment &
Session #12 Testing / Security Operations 481-503
Chapter 20 Software Development Security 8
Chapter 21 Malicious Code and Application
Session #13 Attacks 8(3) 504-508
Chapter Tests 20-21 Domain 8 - Software
Development Security
Session #14 Practice Exam #1
Session #15 Practice Exam #2
Recommended CISSP Study Resources
By far, the most recommended resources are:
1. BOOK Sybex Book 8th edition (note that this is very similar 7th edition).
 https://www.amazon.com/Certified-Information-Security-
Professional-Official/dp/1119475937
 The Sybex book comes with online practice exams and other study
tools (21 Chapter Review tests, 4 Bonus Exams, Flashcards and
Glossary) at sybextestbanks.wiley.com.
 2. PRACTICE EXAM Boson Practice Exam (MSRP $99, sales occasionally
between $15 and $30 off)
 http://www.boson.com/practice-exam/cissp-isc2-practice-exam-
2018?r=1&st=1
 Here are two different ways to utilize Boson.
 Special offer after getting a boson account is $15 off. Max I’ve seen
is $30 off. $25 off seems to be offered Dec 13 and July 20 each
year.
 Pass guarantee (money back only if fail within 6 months of
purchase) http://www.boson.com/guarantee
 Boson vs. Pearson? Boson is
better. https://www.reddit.com/r/ccna/comments/4bln99/who_uses_
boson_exsim_vs_pearson_practice_exams/
3. VIDEOS
 Here is a Dec 2020 thread on video recommendations
 Cybrary, Free
 Academy of Cyber - Graeme Parker, Free - this was added by
personal appeal by the organization, please post a review of the
material. If it emerges to be controversial, I can remove this
listing. (set to private on Dec 1, 2020)
4. AUDIO Shon Harris (old and free, but download takes a long time from the web)
 https://www.mhprofessionalresources.com/sites/CISSPExams/inde
x.php
 If that link doesn’t work, try this
one: https://www.mhprofessionalresources.com/sites/CISSPExams
/exam.php?id=AccessControl
 “What's really helped me a lot is listening to the Shon Harris Audio
files, though they are old. There's over 25 hours of her discussing
the domains. I've listened to them about three times as I commute
to work, walk, etc.”
 MP3s from Kelly's Cybrary course
. If you're burning in data format it should only take you 2 CDs, or
19 if you're going audio format (but most modern vehicles can
process MP3 files just fine).
5. SLIDES Sunflower and Cybrary
 Sunflower v2.0 2017 (37
pages): https://docs.wixstatic.com/ugd/dc6afa_fc8dba86e57a4f3cb
9aaf66aff6f9d22.pdf
 Cybrary (508 pages): https://content.cybrary.it/assets/level1/Class
%20Asset%20Downloads/CISSP%208%20Domains.pdf
Last Minute, before the test
Last minute videos: Larry Greenblatt 2020 tips, 2018 tips and Kelly Handerhan's "Why you WILL
pass the CISSP".
Many people recommend as a final study book before the test (i.e. “last minute studying”):
Eleventh Hour CISSP: Study Guide 3rd Edition; by Eric Conrad et. al. (this covers the previous
edition, 2015, of the test).
https://www.amazon.com/Eleventh-Hour-CISSP-Study-Guide/dp/0128112484
Other Resources
Although the above lists the most recommended resources, here are a list of other resources
variously mentioned on this sub.
*Links will be added as time allows*
 Books (Sybex, 11th hour, All-In-One)
 Online video trainings (Kelly, Larry, Sari, Thor, etc)
 Instructor led classroom training
o Training Camp
 Practice questions libraries
 Study portals (cccure, Study Notes and Theory, etc)
 Audible and other audio
EBooks
(with email) https://www.netwrix.com/cissp_study_guide_pdf.html
ISC2 Resources
Available on the ISC2 website (https://www.isc2.org/Certifications/CISSP):
 CISSP Exam Outline (v1115) (under “Your Pathway to Certification 2 Register
and Prepare for the Exam”)
 Certification Acronym Glossary (near the CISSP Exam Outline link)
 Ultimate Guide to the CISSP (on the right sidebar, email required)
 ISC2 Code of Ethics: https://www.isc2.org/Ethics
Online CISSP Study Guide on Github
https://github.com/so87/CISSP-Study-Guide has
There are some additional resources on the github link, including the following topics:
 General Tips
 Free Government Training
 Book
 Video Course(cybrary)
 More Free Videos
 Video Questions
 Flash cards
 Pratice Tests
 Review on Exam
 Learning how to learn.
 Tricky definitions I've missed on practice tests