CISSP 2024 exam changes in DETAIL!

The mort important and most challenging topic for most people on the CISSP exam is: cryptography. Take our FREE Mini MasterClass on cryptography to learn the fundamentals!

destcert

Thanks Rob and Team. I just passed the CISSP exam today @125 questions. Your book and videos were a main factor to my success! Love the layout and explanations. Finally something I can grasp :)

mapzie

Thanks, Rob! Helped me getting provisionally passed yesterday!

clarencepanganiban

Made it to the end, yeah!! I took the exam about 2 months ago knowing I wasn't ready. (Wasn't able to reschedule since it was less than 24 hours, 22 to be exact (they don't play) my fault). I was right on par with where i thought I was in the study process doing well but need more time. I will be taking it again in the next few month and am using your materials now that I have found them. Thank you so much for all this information!

ShawnCottier

Thanks Rob, I passed yesterday on my 3rd attempt!!🎉

usmclongrangebrainsurgeon

@1:16:00 Sure, it's highly valuable. This is classically detailed. Great content! Thank you.

oludave

Please Don't be offended, after viewing many of your video's and listening to your voice. I was thinking you were a lot younger based on your accent to a British ear. You sound like a late teenage/20's super geek (In a good way) Great videos and very well presented. The slipped in humour and expressive way you present is great. Thanks for sharing :)

gurninbongo

wow - production on this video is insane. randomly stumbled on this while researching to take the test on 2nd attempt. this visuals are engaging. hoping it makes a difference for me in my studies. thank you!

JustAsaph

Very enlightening and helpful. Thank you for putting together all these updates for the CISSP 2024 exam for all of us. Awesome job!

Gus_Leon

Just passed the CISSP today and my only resources were your videos, the book and the app. I Found all the resources very helpful. The study questions made me feel confident I could pass the exam to the point where I felt overconfident. I like the app because it didn't matter if I got the questions incorrect because I would be told why it was incorrect. Thank you very much for all your help. The think like a manager video was awesome.

Shadyoaks-farm

Thank you Rob, I think this video is one of the best of the CISSP videos on YouTube, very informative and great presentation.
Much appreciated

fouadahmed

@Rob and Team, I passed the exam today. The credits go to your book and these well-organized videos. Thank you!!! You guys made it possible.

Db

Excellent video. Big thank you to you Rob, John and Lou. It must have been massive effort to prepare this. As usual, you and your team explain things to the point so people can easily understand things. Great how you are providing this already few months prior to the change so students can get a good sense of the impact of the changes.

stho

Rob, I passed today. Big thanks to your mindmap series and 2024 update video. 2021 material is still very relevant. Cheers

KhoaNguyen-br

The exam outline has been updated with minor changes, including a new subdomain in Domain 3 and 31 new topics. Key changes involve the addition of secure access service edge (SASE), passwordless authentication, and interactive application security testing.


Highlights:
00:00 The CISSP exam is changing on April 15th, 2024, with minor updates. Existing study materials remain valid, focusing on understanding all major topics in each domain is crucial for success.
-Domain weightings are not crucial for the exam; scoring at least 70% in each domain is essential for passing. Focus on understanding all major topics in each domain for success.
-Exam changes include fewer questions and less time in the updated 2024 version. Despite these changes, most test-takers find the time sufficient for completion.
-Detailed analysis reveals minor changes in the exam outline, with no removal of domains or subdomains. Existing study materials remain relevant for the updated exam.
12:08 Confidentiality is about preventing unauthorized disclosure of information, Integrity ensures data is not tampered with, Availability ensures resources are accessible when needed, Authenticity verifies the legitimacy of senders, and Non-repudiation prevents denial of actions. These pillars are crucial for information security.
-Importance of Integrity in preventing unauthorized changes to data, allowing for legitimate updates and understanding, crucial for data security.
-Significance of Availability in ensuring resources are accessible for business operations, including network and system uptime, essential for modern businesses.
-Explanation of Authenticity in verifying the legitimacy of senders, crucial for identifying message origins and ensuring message integrity.
-Non-repudiation's role in preventing denial of actions, illustrated with examples like bank transfers, essential for accountability and trust in transactions.
24:13 Cyber security insurance policies can help organizations mitigate financial costs related to ransomware, breach investigations, and downtime. Understanding risk management frameworks like NIST 800-37 is crucial for exams and implementing secure practices.
-Differentiating between tampering, counterfeits, and implants helps in understanding risks associated with acquiring assets in cybersecurity.
-Mitigation techniques such as silicon root of trust and software bill of materials can enhance security by preventing tampering and counterfeits in hardware and software.
-Practices like zero trust, trust but verify, and secure access service edge (SASE) are essential for modern cybersecurity to adapt to evolving IT infrastructures and remote work environments.
36:21 Secure Access Service Edge (SASE) is about connecting systems and services close to users while maintaining security, revolutionizing wide area networks. Operational technology encompasses hardware and software for monitoring and controlling physical processes, with industrial control systems focusing on critical software for manufacturing and infrastructure.
-Quantum key distribution offers a new method for securely distributing symmetric keys, leveraging quantum entanglement for instant communication and unconditional security, promising advancements in cryptography.
-Information System Life Cycle covers the entire lifespan of an IT system, from conception to decommissioning, involving requirements gathering, system development, integration testing, operation, and disposal.
-Anycast transmission technology ensures users are connected to the nearest or best source of data on Content Distribution Networks, optimizing performance by reducing latency and improving user experience.
-Converged protocols like InfiniBand and Express Link provide efficient access to remote memory and devices across networks, crucial for high-performance computing and data-intensive tasks.
48:30 The video discusses converged protocols running on existing networks, transport architectures, and network topologies. It also covers data plane, control plane, and management plane functions in network operations.
-Exploration of different network topologies like bus, star, ring, and mesh, defining how devices are interconnected.
-Explanation of data plane, control plane, and management plane roles in network operations, determining packet movement and network intelligence.
-Comparison between cut through and store and forward methods in packet forwarding, balancing performance and error-checking capabilities.
1:00:41 Air gapping is a highly secure method of physically separating critical industrial control systems from other networks. Virtual routing and forwarding, virtual domains, and micro segmentation are advanced techniques for logical network segmentation.
-Virtual routing and forwarding (VRF) allows a single router to emulate multiple virtual routers, enhancing network flexibility and efficiency.
-Virtual domains enable network segmentation at the device level, such as setting up firewalls on virtual machines for enhanced security.
-Micro segmentation involves placing dedicated firewalls in front of specific servers to tighten security and reduce the impact of potential compromises.
1:12:54 Virtual Private Cloud (VPC) provides logical isolation for enhanced security, not physical isolation. Network observability, traffic flow shaping, and capacity management are crucial for network performance and scalability.
-Importance of logical isolation in VPC for enhanced security over physical isolation.
-Network observability, traffic flow shaping, and capacity management for optimal network performance and scalability.
-Advantages of passwordless authentication in enhancing security and reducing phishing risks.
1:25:01 The video discusses different types of assessments like on-premise and cloud-based assessments, highlighting the importance of hybrid assessments focusing on the connection between on-premise and cloud systems. It also explains the roles of red teams, blue teams, and purple teams in cybersecurity operations.
-Explanation of different types of cybersecurity assessments such as on-premise, cloud-based, and hybrid assessments, emphasizing the significance of assessing the connection between on-premise and cloud systems.
-Roles and responsibilities of red teams, blue teams, and purple teams in cybersecurity operations, detailing how red teams simulate hackers, blue teams focus on defense, and purple teams promote collaboration between the two.
-Importance of tuning security information and event management systems to reduce false positives and avoid false negatives, ensuring effective threat detection and response in cybersecurity.
-Overview of backup storage strategies, including the 321 rule for data backup, on-site and off-site backups, and the increasing trend of using the cloud for backup solutions in organizations.
1:37:10 The video explains how their integrated Learning System, including custom materials and high-quality recordings, helps achieve a high pass rate of 93-94% for the cisp exam, emphasizing first-time pass rates and effective exam strategies.
-The importance of custom learning materials and an integrated Learning System in achieving a high pass rate for the cisp exam, with a focus on detailed explanations and over 200 instructional videos.
-Emphasizing the significance of effective exam strategies and techniques provided in the master class to help students understand and answer questions correctly, contributing to the high pass rate.
-Differentiating their pass rates from others by highlighting the first-time pass rate and the dedication to ensuring students learn the material thoroughly to confidently pass the exam on their initial attempt.

Generated by sider.ai

mrmichaeljstew

I passed the exam 12 years ago. Excellent video, it was so good that I should watch a video on what changes were made in the previous exam update. Let me go searching.

CiaranGilchrist

Big thanks to you Rob and your complete team. I passed the exam on my first attempt. This and the Mindmap videos were the key Review material. Thanks again !! 🙏

devsoni

Totally worth sitting through the entire video. Thank you so much.

eeyorelovesmornings

Thanks Rob for a thoroughly detailed look at the 2024 Update. 👋

farukm

Very helpful content, good quality, straight to the point. Great work...well done and thanks for all th intel.

RachidElBoukiouty