Related Posts
Can any of you help me with any openings?
I am looking for a role as a Business Analyst/ Consultant. I have >3 years of overall experience (b.tech+mba). Actively looking for a change.
Preferred location: Bengaluru, Pune, Hyderabad, Gurgaon
EY ZS Associates KPMG Genpact PwC Société Générale Amazon
Bain & Company Atlanta people! I’m in the process of applying for MBA programs and wanted to ask what recruiting is like for MBB from Emorys program? Is there a reasonable shot at getting into the Atlanta office from Emory, or are those openings primarily filled by other schools (Duke, UVA, etc.)
Boston Consulting Group
McKinsey & Company
Bain & Company
More Posts
Dinner compensation allocation by firm

Who wants to be a millionaire?
Additional Posts in Risk Assurance
New to Fishbowl?
unlock all discussions on Fishbowl.





Literally same pretty path as you dude. Came from accounting background on IT audit and looking to transition to take the cissp as well
IT auditors/consultants generally perform better than technical ppl on the CISSP. This is because IT auditors are focused more on the broader governance/management of the cyber program, and technical ppl tend to leverage their real-world experience, which may not fit into the “perfect ISC2” world.
CISSP is a management cert more than anything else. The technical stuff isn’t very deep. I personally recommend just diving into the material. The official book is quite dry though especially if you don’t have familiarity with the concepts. I suggest using a variety of sources to learn: book, practice questions, videos, flash cards.
just study for 4-5 months and take the exam. Not as hard as technical certification.
Yes the cissp is worth it, it's about the most technical exam you can take that isn't a platform or domain specific cert.
Would you all recommend that I study some concepts in general before studying for the actual exam prior? In terms of technical things
CISSP is not very technical and "cyber" is very vague. Depending on what cyber means to you the CISM or one of many more technical certs (CISA - gov agency - has a list). Also if the main goal is to get out of SOX, CISA (cert) will help you into IA and SOC. And a good prep for CISSP if you still want it.
Thanks! I have the CISA, I have just heard that CISSP is more technical and more for people that are doing other non-SOX work (which is what I do) like PCI, etc. I’m pretty decided on going for it so thanks for the advice