The CISSP Prep Guide
What people are saying - Write a review
At first glance this text appears to be a very nicely formatted collection of CBKs. After closer studying, I have discovered that there are several significant problems with overall content and writing.
1. Lacks parallel construction. Does not cover material on the same points hierarchically. Just try to build a table based on the information provided on Kerberos, SESAME, KryptoKnight and NetSP. I had to go dig through specs to even get a point by point comparison.
2. Content missing. Under Security Management Practices, the authors mention Custodian in table 1.2, but never even mention the topic under the main body of Roles and Responsibilities. Sloppy.
3. Introductions to following material missing in preceding paragraphs. This material shouldn't be a murder mystery, but I keep stumbling across material that isn't even properly introduced. It is as if they just started writing without an outline. I have had to build my own outline just to follow them and catch their omissions.
4. Advanced Sample Questions. Whether be it in college or elsewhere, it is patently irresponsible to ask questions on material not covered in the "lecture". Yet, the authors put forth sample CISSP questions on material that isn't covered in the body of the text. For example, Chapter 2 question 1 asks a question that is answered by the term "enforced path". Enforced path is not covered anywhere in the body. Here's a quick lesson to the authors, if it is important enough to write a question, it is even more important to cover the material adequately in the text.