Related Posts
More Posts
Just thought it was funny

Are you a diverse person? Are you an ally to DEI?
I’d love to speak with you for 10-20 mins about my LLC and Nonprofit and the work that I’ve been looking to do as it relates to education and diversity.
Please feel free to view the video on the homepage of my website:
https://www.bridginglegaciesacrosscampuses.org/mission
Should this be of interest to you, please feel free to use this link below to set up a meeting:
https://calendly.com/jleebridgingandbuilding/30-minute-meeting-over-the-phone
Off Topic : 1) When Does a software engineer start financial planning for retirement since the our Career span is only 15-20 years on average.
2) How much and which schemes to invest to mitigate the risk?
3) How much do we need for retirement? Tata Consultancy Infosys Mindtree IBM Wipro Capgemini Cognizant HCL Technologies
Additional Posts in Cyber Security Bowl
Hello Deloitte 🐠 20 YOE. Have referral for a content and marketing M role in cybersecurity -- the focus of my career pivot. Submitted my application today, but my referrer isn't in Cyber. Interested to widen my Deloitte Cyber network to get my resume in front of a human, since ATS has no vision or imagination. If you're willing to connect, please DM. So far, made it several interview rounds into roles with EY and Accenture. Optimistic, but want to be as proactive as possible. Thanks!
Anyone ever heard of or worked for Sygnia?
Any tripwire pros here? How did you get started?
New to Fishbowl?
unlock all discussions on Fishbowl.





Subject Expert
Congrats. Answer really depends on your interests and what you’re trying to do.
Community Builder
Congrats on the CISSP! Well done! I earned Security+ 601 but heard CISSP was much harder.
(OP, I also dm'd. ) Deloitte 3, are you in cyber now?
Congrats!!!!!
Thank you!
I have a little over 7yoe, a CISA and another privacy cert. I don't think cert chasing is all that valuable tbh
D1, Yes, but at a certain point it doesn't matter
Congrats! How long did it take you to study?
Sure, no worries! I watched Mike Chapple’s entire LinkedIn Learning course for CISSP prep and read some of the Official Study Guide, 9th edition (also written in part by Mike Chapple). I did some practice questions too but they’re not really like the actual exam at all so I stopped using them after I learned that and focused more on understanding the material itself
Congrats to OP. Welcome to ISC2.
I did it 12 months ago and relaxed, but need to score CPE points.
Any tips on most efficient method for generating CISSP CPE points?. Looks to me like 2points per online module - so need two per month to maintain. Anyone found a module that delivers 20 CPE points……🤔. TIA.
Coach
I believe sans webcasts count for 1 cpe
Congrats!!!! You must be so relieved and happy after all this hard work
100%. The scope of the CISSP is wider than any other exam I’ve taken. The sheer amount of potential info that can be questioned on is crazy. Definitely a wave of relief after reading the exam printout report
Uhh I guess the path doesn’t exist afterward. I am probably the most technically sound person (not a technical test, oof) on the team I’m on and so I haven’t been able to grow and apply the concepts.
Also, welcome to the club!
Congrats. I passed the CISSP and decided to give the CCNA a try. It has been a struggle
Thank you! And yeah domain 4 of the CISSP which covered networks/network security was the area I was the weakest in, so I can imagine that that’d be a difficult cert to obtain (CCNA)
Congrats I would say go cloud && what did you use to study attempting the CISSP next
Thank you! Yeah I was thinking cloud might be a good idea. And the materials I used to study I went into detail in the comment chain with KPMG 1 just a few comments above. Good luck with your preparation!
Coach
Congrats on passing the CISSP - now onto the next set of certs. Neither the CCSP, CCSK or CISM will make you more proficient in security nor make you appear more so externally.
My recommendation is to gravitate towards certs that have more of a hands on component. The CCNA is a great next step - people that understand how packets move through a network actually come across as competent.
I would maybe grab the Security+, but only if you plan to do a lot of hands on work.
The Pentest+ looks interesting for giving you more knowledge in how attacks work. The ejpt certification is also really solid. Really what you are looking for is a certification that gives you hands on with hacking - that way you will know how hackers move through an environment - that's key for creating blue team defenses.
After that you can pivot into cloud and terraform.
Coach
None of those three certs are difficult - they are just different than the cissp.
The difference is that the three certs mentioned above focus on skills that are actually relevant to your day to day job as a security professional.
My recommendation is that you start with the security+ then get the ccna and then move into the pen test+
What will help you a lot is doing everything hands on....read a chapter...then do it in real life.
Also you can power through the difficult parts by watching videos from youtube, reddit or stack overflow. Somewhere in there - somebody will explain things more clearly
I don’t want to do a billion cpe hours so I’ve focused on my client work instead of certs
I’m one year in my Master’s in Cyber and company is paying for CISSP boot camp next week. Don’t have cyber experience yet though. Do you think it’s doable to pass the CISSP if I continue studying intensely until Jan? Or do you think your cyber experienced helped most?
I think it’s doable. Technically you won’t be a full CISSP until you meet the work experience requirement, you’ll just be an “Associate of ISC2” instead. After you pass the exam you have six years to meet the 5 year requirement (4 with a college degree) if you don’t already have that amount.
From a difficulty/feasibility standpoint, I think you can pass the exam without the experience but it might be more challenging because you don’t have any prior knowledge to draw from. With that being said I needed to study more intensely for the domains in which I had the least hands on experience in (such as Domain 4 covering networking).