Recent CCSP Exam Feedback

February 11, 2021 by Ben Malisow in Blog Entry

One of my former students, Mark Landes, shared this with me today. Mark reminds us of the purpose and use of practice questions: not to learn the material, but to prepare for how to deal with questions about the topics. Thanks, Mark, and congratulations!

”Hi Ben. I was in the CCSP boot camp with ISC2 conference last November. Just wanted to let you know I passed the certification exam in December and got the confirmation of award in late January. Your class and books (study guide and practice exams) were a great help. There were not a lot of direct ‘book questions’ from either, but rather a lot of questions applying the cloud models and technologies the books taught. The practice of answering all those sample questions really helped prepare from a psychological perspective. Thanks again!”

49 Signal with Raphael Fiedler

February 05, 2021 by Ben Malisow in Blog Entry

Tech Talk with Prashant Mohan

February 04, 2021 by Ben Malisow in Blog Entry

I was extremely honored to appear on a Tech Talk session moderated by my friend and colleague Prashant Mohan, hosted by INFOSEC Train. The audience was great, and it was Prashant’s first time as a moderator! I had a blast. You can check out the recording here:

https://youtu.be/ztoC9N3K3Wc

48 Securing Your Business For Real with Thomas Tyler

January 29, 2021 by Ben Malisow in Blog Entry

Links mentioned in the show:

CapinTech: https://capintech.com/

CapinCrouse: https://www.capincrouse.com/

Magazine Contribution

January 28, 2021 by Ben Malisow in Blog Entry

I was very proud to have been interviewed for the cover story in the latest issue of the Information Security Professional magazine. Many thanks to writer Astrid Harders and editor Anne Saita!

https://magazines.isc2.org/pages/2021/2021-01/

47 All the Singularities

January 22, 2021 by Ben Malisow in Blog Entry

Vinge’s original paper on the subject: https://edoras.sdsu.edu/~vinge/misc/singularity.html

New Edition

January 19, 2021 by Ben Malisow in Blog Entry

Just published the official Second Edition of my book, "How To Pass Your INFOSEC Exam: A Guide To Passing The SSCP, CISSP, CCSP, CISA, CISM, Security+, and CCSK" with revisions, updates, and corrections to the original.

The ebook is available here: https://www.amazon.com/.../ref=dbs_a_def_rwt_bibl_vppi_i3

The paperback is available here: https://www.amazon.com/dp/B08T7HNPK7?ref_=pe_3052080_397514860

Many, many thanks to Robin Cabe, who formatted it, and Rachel Ribando-Gros (https://ribandogros.webnode.com/) for the kickass new cover. You two are the BEST!

46 Arrr Matey

January 15, 2021 by Ben Malisow in Blog Entry

The CCSK Practice Tests book: https://www.amazon.com/CCSK-Practice-Tests-Ben-Malisow/dp/B08RR9KTZZ/ref=sxts_sxwds-bia-wc-nc-drs1_0?cv_ct_cx=ccsk&dchild=1&keywords=ccsk&pd_rd_i=B08RR9KTZZ&pd_rd_r=d7c8a658-2ab4-46f0-a921-dc2595a63ac0&pd_rd_w=CROFX&pd_rd_wg=XbABw&pf_rd_p=a64002b9-9c26-4361-b8a1-b0f5a4835670&pf_rd_r=BN4PPDN544B0Q0ZYAHKV&psc=1&qid=1610716163&sr=1-1-38d0a374-3318-4625-ad92-b6761a63ecf6

Big News: ISC2 Online Testing

January 11, 2021 by Ben Malisow in Blog Entry

ISC2 is finally going to experiment with offering online testing. It’s the last major INFOSEC certification body to do so, and it’s taken a long time to get to this point. I applaud this evolution, and am pleased that underserved communities will finally be able to leap the barrier to entry that physical testing required. (I’m also glad that online testing will reduce pollution necessitated by travel.)

Well done, ISC2!

https://www.isc2.org/News-and-Events/Press-Room/Posts/2021/01/11/ISC2-To-Offer-Online-Exam-Proctoring-for-CISSP-and-Other-Cybersecurity-Certifications

45 - 2021: At Least it's Not Mad Max

January 08, 2021 by Ben Malisow in Blog Entry

As promised, the link to the new book: CCSK Practice Tests by Ben Malisow

New Year, New Book!

January 01, 2021 by Ben Malisow in Blog Entry

New year, new book!

If you're studying for the CCSK, I just published over 300 practice questions covering all topic areas of that exam. It might also be a useful resource for CCSP studies, too, as many of the questions will be applicable for that test.

Many thanks to Mohamed Malki for technical review and editing, the inimitable Rachel Ribando-Gros, for being the best go-to graphics pro (with the most patience!), and Robin Cabe for layout and formatting. Y'all are wonderful, and I can't thank you enough.

Enjoy!

https://www.amazon.com/dp/B08RR9KTZZ?ref_=pe_3052080_397514860

44. The Origins of Safing with Raphael Fiedler

January 01, 2021 by Ben Malisow in Blog Entry

43. The Imitation Game with Prashant Mohan

December 25, 2020 by Ben Malisow in Blog Entry

Our first ever return guest, Prashant Mohan, joins us in celebrating nerd hero Alan Turing in our movie review of The Imitation Game (Morten Tyldum, 2014).

42. Safing: Fighting Surveillance with Raphael Fiedler

December 18, 2020 by Ben Malisow in Blog Entry

Join us in exploring a new way to control your personal privacy online in a conversation with the CEO of Safing, Raphael Fiedler. You know it’s going to be a great episode when their website header is “Fight surveillance because you love Freedom.”

Raphael’s company, Safing: https://safing.io/

Raphael’s podcast: https://safing.io/podcast/

Got an email from the CEO of ISACA recently....

December 17, 2020 by Ben Malisow in Blog Entry

THIS is how professional responsibility is done. This is how to craft an apology. This is leadership.

”Dear ISACA Community,

The integrity, high professional standards and smooth delivery of our certification exams are essential to maintaining the trust we’ve earned with ISACA’s professional communities. Last month we stumbled with the smooth delivery promise, and I am writing to our full member community to apologize. We must do better.

As some of you know, we experienced some unexpected issues when our certification exam vendor PSI performed a system upgrade. About 17% of our exam takers in November and the first few days of December were impacted. Earlier this afternoon, I reached out to those individuals to personally apologize and to offer them a complimentary exam retake if they did not receive a passing score.

We have also heard that our customer experience center response times to questions from the affected candidates has been slower than it should be. We are taking immediate steps to improve this, starting with a dedicated email address that affected candidates can use so their messages are marked as top priority. We have also added additional staff resources to the customer experience team.

During times of change and turbulence, individuals make an important choice to invest in themselves, and our certifications are “go to” education opportunities for IT professionals to advance their careers. Exam candidates invest time, money and dreams into our tests, and they deserve a trusted and smooth experience. I want you all to know that I take direct responsibility for these issues regardless of where the experience fell short. My team and I are committed to turning this experience around and helping candidates have a more successful exam day and a more positive experience with ISACA. In fact, beginning in early 2021, we are introducing 24/7 customer support so ISACA members and exam candidates no longer have to wait for help based on their time zone.

In addition, we are holding PSI accountable for their part in this issue. From the moment we began receiving information about this issue, we started regular meetings with the PSI leadership team, and they have assured us the technology issues are resolved. However, we plan to increase the communication to ensure this does not happen again.

Thank you for your trust in ISACA and our globally recognized credentials. We are committed to giving you and all of our members, customers and certification candidates the support you need and being a valued partner on your career and learning journeys.

Best regards,
David

David Samuelson
ISACA CEO”

I don’t think I’ve ever been more proud to be an ISACA member.

41. Section 230

December 11, 2020 by Ben Malisow in Blog Entry

The law, itself: https://transition.fcc.gov/Reports/tcom1996.txt

40. Test Prep Books With Prashant Mohan

December 04, 2020 by Ben Malisow in Blog Entry

Link for Memory Palace (CISSP):

https://www.studynotesandtheory.com/single-post/memory-palace-cissp-notes

Link for CIRRUS (CCSP):

https://www.infosectrain.com/blog/ebook-cirrus-8000-ft-of-ccsp-course/amp/

Radha Arora - https://in.linkedin.com/in/radha-arora-780262107

Study Notes and Theory - https://www.studynotesandtheory.com

Infosec Train - https://www.infosectrain.com

Fadi Sodah (Madunix) - https://www.linkedin.com/in/madunix

39. Prob gonna get hate for this but....

November 27, 2020 by Ben Malisow in Blog Entry

The links we promise in the episode:

California law related to gender identity in employment/trade associations:

https://leginfo.legislature.ca.gov/faces/billNavClient.xhtml?bill_id=201720180SB396

Canadian law regarding gender identity:

https://laws-lois.justice.gc.ca/eng/AnnualStatutes/2017_13/FullText.html

The Canadian province of Prince Edward Island takes this a bit further, as do several of the Canadian jurisdictions:

https://www.princeedwardisland.ca/sites/default/files/legislation/H-12%20-Human%20Rights%20Act.pdf

Here’s the ironic (and wildly contradictory) section (12):

“12. Discrimination in advertising prohibited

(1) No person shall publish, display or broadcast, or permit to be published, displayed or broadcasted on lands or premises, or in a newspaper or through a radio or television broadcasting station or by means of any other medium, any notice, sign, symbol, implement or other representation indicating discrimination or an intention to discriminate against any person or class of persons.

Free expression of opinion

(2) Nothing in this section shall be deemed to interfere with the free expression of opinion upon any subjectin speech or in writing. 1975,c.72,s.12”

38. Media Review: Shattered Glass (2003)

November 20, 2020 by Ben Malisow in Blog Entry