Average Customer Review:
 ( 67 customer reviews )
Write an online review and share your thoughts with other customers.
Most Helpful Customer Reviews
25 of 26 found the following review helpful:
 This IS the Book to buy FIRST!Sep 11, 2001
By Kurt Steiner, CISSP
It's been said many times that the vast ocean of the CISSP Common Body of Knowledge (CBK) is fifty miles wide and two miles deep and preparing for it can be quite an overwhelming endeavor. Various on-line study groups and web sites have numerous suggestions and links where freely available materials and helpful hints may be found. Individuals share there study guides and suggest the best books to procure for the study quest. I myself have participated and contributed in these vibrant forums. It's been said many times over that NO one book can effectively cover the CBK and to prepare the CISSP candidate for the exam. I too have amassed a large collection of the most suggested tomes. Well The CISSP Prep Guide almost negates this statement. The CISSP Prep Guide is now the FIRST place to start! I wish it had been in print a year ago when I began my quest for the CISSP. It is a complete and affordable textbook covering the MEAT of the CBK. This book completely defines and explains the major points of the CBK. It is an extremely readable and understandable text. If you can't afford attending the ISC2 CISSP Seminar either because of cost or time away from work this book is for you. If you have already attended the CISSP Seminar this book is for you. I was blessed by having the opportunity in attending the CISSP Seminar yet I am still finding that The CISSP Prep Guide is building upon the materials presented in the seminar. I can see where my copy of The CISSP Prep Guide will quickly become a dog-eared reference text that I use to refer to while carrying out my duties as an Information Systems Security Officer with the U.S. Government.
16 of 16 found the following review helpful:
for CISSP, start hereSep 16, 2001
By kgab
This book is exactly what CISSP candidates need to prepare for the exam. The authors make sure to cover the CISSP Common Body of Knowledge in enough detail, give pointers along the way, and include sample questions to practice for the exam.Since this is a study guide, the emphasis is on breadth, not depth of coverage, and that's the way it should be. Several inaccuracies and typos should be corrected in the second edition (e.g. the description of lattice-based control on p. 34, or sample question 9 in Chapter 10 and its answer). So is this now my favorite survey of computer and information security? Not quite. I still prefer "Secure Computing" by Rita C. Summers, even though it is already 4 years old. Unfortunately it is out of print, and it is a mystery why McGraw Hill wouldn't print a few thousand copies to satisfy the demand. Another CISSP prep book is coming soon (Mandy Andress, "CISSP Exam Cram"). Let's hope it will be as good as the Prep Guide.
18 of 19 found the following review helpful:
Scholarly Presentation - Keeps Reader FocusedNov 22, 2001
By James W. S. Ludwig, CISSP
I studied this work 30-days before taking the CISSP November 2001 examination. You don't pass the CISSP exam from just reading; broad experience is mandatory. The 'Prep Guide' helped me pull my experience into focus for the exam; the book does not give you the answers on the test, it helps you understand the concepts, thus, it helps the reader understand the exam questions which in turn allows the exam taker to go quickly into deep memory and find the answer that most resembles those on the exam. Of all the thousands of dollars of "security" books that I have purchased, read, and studied, the 'Prep Guide' is the only one that extensively covers the broad spectrum of topics emphasized in the exam. Main plusses of the book:
(1)It keeps you focused in your study,
(2) The scholarly writing is a good preparation for the way the examination questions are stated,
(3) It will continue to be a solid reference book in my security practioners library (the added HIPAA information may have been filler but I find it useful in the profession if not for the exam), and
(4) Best price of any prepration security book for the focused information that it provides. Oh, yes, and it helped me receive my CISSP certification in November. Buy the book and study the book, you will not go wrong.
12 of 12 found the following review helpful:
Excellent Introduction & Framework to StartDec 26, 2001
By Richard K. Min
I enjoy reading this book very much. I have adopted this as one of the textbooks for my undergraduate Computer Security course. I think this is one of the best introduction and survey to provide a solid framework for the field, and for those to prepare CISSP. It is very well written as a summary, with excellent references for the original and critical sources. I see some of the frustration by other reviewer (for example, on Chapter 3) but I think that the authors have done a superb work. The problem or frustration is, I think, due to the vast amount, depth and bredth of each field to be summerized (which can easily be expanded into several books). I use this book as a framework, along with (1) Incident Response (by Mandia & Prosise) and (2.1) Hacking Exposed (2nd ed, by Scambray, McClure, Kurtz) or (2.2) Maximum Security (3rd ed, Anonymous) to supplement the reading and case study.
12 of 12 found the following review helpful:
Masterful Coverage, Well OrganizedSep 14, 2001
By Stephen Lee
I have had the CISSP certification squarely on my radar for about a year now, but the sheer amount of information to compile and read and remember is simply too much. This is because the compiled readings are mainly at best, guesswork. What's more, the weightages of the Ten Domains of Computer Security can be markedly different, and no one can really be sure of the importance of certain sections as compared to others. For example, both authors who are themselves CISSP certified, place Telecommunications and Network Security as more heavily covered in the exam than say, Security Management Practices, clearly a time saver for those who like me, am also pursuing the BS7799 Auditor certification. Within each chapter, the authors also clearly prioritize the topics. In the Chapter entitled Access Systems, the topic Decntralized/Distributed Access Control takes up half of the chapter, again, demonstrating that more attention has to be paid by the reader. Though the information to cover is vast, I never felt that I needed a map to navigate the contents. Each chapter's objectives are clearly stated, and the section lucidly explained. Best of all, the visual and textual aspects are just right for the eye. Of course, for a exam that covers 10 domains, the number of acronyms faced is numerous, but the nifty Glossary takes care of any confusion that may arise. Besides the coverage of the ten domains in 10 chapters, the Appendices are extremely helpful. Topics such as HIPAA Compliance through HIPAA-CMM are covered, so is the British Standard 7799. If you feel that coverage is not deep enough (which is not really a factor in the exam), the authors provide useful References for Further Study, also found as Appendix H. In summation, the book is extremely well organized, and the additional information provided in each Appendix make this not only a required study tool, but also a "must have" reference.
See all 67 customer reviews on Amazon.com
|
based on 67 reviews
