CISSP ® : Certified Information Systems Security Professional Study Guide, Third Edition [Paperback]

James M. Stewart (Author), Ed Tittel (Author), Mike Chapple (Author)

Book Description

ISBN-10: 0782144438 | ISBN-13: 978-0782144437 | Publication Date: September 9, 2005 | Edition: 3

CISSP Certified Information Systems Security Professional Study Guide

Here's the book you need to prepare for the challenging CISSP exam from (ISC)¯2. This third edition was developed to meet the exacting requirements of today's security certification candidates, and has been thoroughly updated to cover recent technological advances in the field of IT security. In addition to the consistent and accessible instructional approach that readers have come to expect from Sybex, this book provides:

• Clear and concise information on critical security technologies and topics
• Practical examples and insights drawn from real-world experience
• Expanded coverage of key topics such as biometrics, auditing and accountability, and software security testing
• Leading-edge exam preparation software, including a testing engine and electronic flashcards for your PC, Pocket PC, and Palm handheld

You'll find authoritative coverage of key exam topics including:

• Access Control Systems & Methodology
• Applications & Systems Development
• Business Continuity Planning
• Cryptography
• Law, Investigation, & Ethics
• Operations Security & Physical Security
• Security Architecture, Models, and Management Practices
• Telecommunications, Network, & Internet Security

Editorial Reviews

From the Back Cover

CISSP Certified Information Systems Security Professional Study Guide

Here's the book you need to prepare for the challenging CISSP exam from (ISC)². This third edition was developed to meet the exacting requirements of today's security certification candidates, and has been thoroughly updated to cover recent technological advances in the field of IT security. In addition to the consistent and accessible instructional approach that readers have come to expect from Sybex, this book provides:

• Clear and concise information on critical security technologies and topics
• Practical examples and insights drawn from real-world experience
• Expanded coverage of key topics such as biometrics, auditing and accountability, and software security testing
• Leading-edge exam preparation software, including a testing engine and electronic flashcards for your PC, Pocket PC, and Palm handheld

You'll find authoritative coverage of key exam topics including:

• Access Control Systems & Methodology
• Applications & Systems Development
• Business Continuity Planning
• Cryptography
• Law, Investigation, & Ethics
• Operations Security & Physical Security
• Security Architecture, Models, and Management Practices
• Telecommunications, Network, & Internet Security

About the Author

James Michael Stewart, CISSP, is a security expert who has authored numerous publications, books, and courseware.

Ed Tittel, CISSP, is a freelance writer and a regular contributor to numerous publications, including C|Net, InfoWorld, and Windows IT Pro. Ed has authored over 130 books.

Mike Chapple, CISSP, is an IT security professional with the University of Notre Dame.

Product Details

• Paperback: 800 pages
• Publisher: Sybex; 3 edition (September 9, 2005)
• Language: English
• ISBN-10: 0782144438
• ISBN-13: 978-0782144437
• Product Dimensions: 9 x 7.3 x 2 inches
• Shipping Weight: 2.7 pounds
• Average Customer Review: 3.7 out of 5 stars  See all reviews (24 customer reviews)
• Amazon Best Sellers Rank: #1,292,320 in Books (See Top 100 in Books)

Customer Reviews

Most Helpful Customer Reviews

26 of 26 people found the following review helpful:

5.0 out of 5 stars Solid exam preparation tool, April 24, 2003

By 

J C O'Connor (Dublin, Ireland) - See all my reviews

This review is from: CISSP: Certified Information Systems Security Professional Study Guide (Hardcover)

I must admit a soft spot for Sybex (and Ed Tittel) study guides, having used them extensively for Microsoft exams. This book follows in that tradition, providing a good balance between detailed explanation and comprehensive coverage of the exam topics.

The bundled CD is useful. I raced through the 250 flash cards in an hour, which is good for jogging the memory. The four bonus exams, of 75 questions each, are good, but are not as difficult as the real thing. These exams provide grades broken down by each CISSP exam domain, which is excellent for identifying topics for revision.

One book can not guarantee coverage of all CISSP exam topics, particularly given the long list of references on the CISSP suggested reading list. I also skimmed through a friend's copy of Shon Harris's "All-in-One" exam guide. I would still rate this book higher, but Harris's book covers some topics in more detail then the Sybex book. The "All-in-One" practice exams are more difficult, though some of the questions are not clearly worded.

The biggest disappoint I have with the exam preparation experience is with the CISSP's ten domains. The examination questions are based on 'good exam fodder' from topics in the ten domains. The topics lean towards an academic approach to security, rather then knowledge needed by a working security professional.

The other references I would strongly suggest to help to gain a security brain, as well as a high exam score include: Stephen Northcutt's `Inside Network Perimeter Security', Ross Anderson's `Security Engineering', and Syngress's `Special Ops'. Maybe I should take one of the SANS security exams, which are much more practical in nature.

And best of luck with the exam!

13 of 13 people found the following review helpful:

4.0 out of 5 stars Great material -- just not enjoyable reading, July 17, 2003

By A Customer

Amazon Verified Purchase

This review is from: CISSP: Certified Information Systems Security Professional Study Guide (Hardcover)

As I took the CISSP exam, I kept thinking, "he really knew what he was talking about." If you were to know this book backwards and forwards, you would do well on the CISSP exam. However, this text suffers from a problem common among learning manuals -- if you didn't get a good sleep the night before you will be nodding off after only a few pages. It reads like a dictionary. Also, the summaries and tables were lacking in both quality and quantity.

After having said that, I have to admit that this book probably helped me the most out of the four I used to prepare for the exam. While Shon Harris' second edition of the All-In-One guide was much more readable and memorable, the content probably wasn't quite as good. Therefore, these two books probably tied as the ones on the top of my list were I to go through this process again.

9 of 9 people found the following review helpful:

4.0 out of 5 stars Very good resource, May 29, 2004

By A Customer

Amazon Verified Purchase

This review is from: CISSP: Certified Information Systems Security Professional Study Guide (Hardcover)

I purchased and used both this text and the Shon Harris book. The text here is dry reading but very informative. As I got closer to taking the exam, I used it primarily for the practice exams and then used those to identify my weak areas. The practice exams give a very good breakdown by domain area of your strengths and weaknesses. I agree with another reviewer that the Shon Harris book is easier reading. If you are relatively new to the material and teaching yourself, you may want to go with that book as your primary text. However, if you are already pretty familiar with the material and knowledgeable about the technical aspect of networking, then this book would probably provide you more useful material. Both are outstanding texts but one is more useful than the other based upon where you are starting from.