<div>
Shon Harris is good. I would personally recommend a week long training class. NIST docs are very good docs but not for the CISSP exam. As for the exam what do you want to know about it? There is only so much anyone who has passed it can say about the exam itself (like we are not able to talk about the questions and such). I passed mine back in 2003 but I understand it has gotten easier from people who have taken it lately (but it's still not an easy test). 
</div>


Shon Harris is good. I would personally recommend a week long training class. NIST docs are very good docs but not for the CISSP exam. As for the exam what do you want to know about it? There is only so much anyone who has passed it can say about the exam itself (like we are not able to talk about the questions and such). I passed mine back in 2003 but I understand it has gotten easier from people who have taken it lately (but it's still not an easy test).

<div>
<div class="content wysiwyg-content">
Hi,<br />
my friends i decided to study and apply for the CISSP exam so:<br />
1- i need to know which book i should read .. should i read Shon Harris or CBK nd edition ?<br />
2- if anyone has experience with that exam what is your recommendations to pass it ?<br />
<br />
Thanks
</div>
</div>


Hi,
my friends i decided to study and apply for the CISSP exam so:
1- i need to know which book i should read .. should i read Shon Harris or CBK nd edition ?
2- if anyone has experience with that exam what is your recommendations to pass it ?

Thanks

CISSP materials and step by step

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.

OS Security

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. In an encryption scheme, the intended communication information or message, referred to as plaintext, is encrypted using an encryption algorithm, generating ciphertext that can only be read if decrypted. For technical reasons, an encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. An authorized recipient can easily decrypt the message with the key provided by the originator to recipients, but not to unauthorized interceptors.

Encryption

IT Administration is the processes and best practices for programming and development, and incorporates methodologies for managing activities and projects. Common methodologies include waterfall, prototyping, iterative and incremental development, spiral development, rapid application development, extreme programming and various types of agile methodology. The life-cycle "model" is a more general term for a category of methodologies, and a software development "process" a more specific term to refer to a specific process chosen by a specific organization.