This exam prep video covers all topics new or updated on the CISSP 2024 exam syllabus. Together with my full "CISSP Exam Cram Full Course (All 8 Domains)"
** Official Study Guide and Practice Tests Bundle (9th edition) **
Get it on Amazon at https://amzn.to/490x6qC
** Presentation Download **
https://1drv.ms/b/s!AmhtzcmYt5AVif93c...
** Exam Flashcards (from Inside Cloud and Security) **
https://insidethemicrosoftcloud.com/f...
Chapters
00:00 Introduction
04:59 Recommended Exam Prep Materials
12:50 DOMAIN 1
15:59 1.2.1 The 5 Pillars
16:31 1.3.4 & 1.9.9 ♻ Security Control Frameworks, Risk Frameworks, SABSA
18:45 NIST RMF and NIST CSF (quick comparison)
19:28 FedRAMP
20:13 ISO 27001/27002:2022
35:49 1.7.2 External Dependencies
36:33 1.11.2 Risk Mitigations
40:10 DOMAIN 2
40:28 DOMAIN 3
41:37 3.1.11 Secure Access Service Edge
42:50 3.6.1 FIPS 1402 Superseded by FIPS 1403
47:34 Key Management Lifecycle
49:17 ⚛ 3.6.3 Quantum Key Distribution
51:56 ♻ 3.10 Information System Lifecycle
59:00 DOMAIN 4
01:01:01 4.1.2 IPv6
01:03:16 4.1.5 Converged Protocols
01:04:13 4.1.6 Transport Architecture
01:05:50 4.1.7 Performance Metrics
01:07:11 4.1.8 Traffic Flows (N/S, E/W)
01:08:07 4.1.9 Physical Segmentation
01:11:12 4.1.10 Logical Segmentation
01:11:57 4.1.11 Microsegmentation
01:12:30 4.1.12 Edge Networks
01:14:49 ☁ 4.1.17 Virtual Private Cloud (VPC)
01:15:43 4.1.18 Monitoring and Management
01:17:24 DOMAIN 5
01:19:28 ⚙ 5.1.6 Services
01:20:09 5.2.1 Roles and Groups
01:25:42 5.2.2 Passwordless
01:33:24 Zero Trust Refresh
01:34:29 ♂ 5.4.7 Access Policy Enforcement
01:40:37 5.5.5 Service Account Management
01:42:32 5.6.1 Implement Authentication Systems
01:43:27 5.2.6 Credential Management (with cloud update)
01:45:32 DOMAIN 6
01:47:06 6.1.4 Location (audit design and plan)
01:53:33 6.2.2 Pentest Teams (Red/Blue/Purple/White)
01:54:51 6.5.4 Location (audit execute and facilitate)
01:56:52 3 Audit Standards You Should Know
02:02:39 DEMO: Retrieve SOC 2 Report from a CSP
02:04:46 DOMAIN 7
02:06:23 7.2.3 SOAR (with 2024 SIEM refresh)
02:13:26 7.12.6 Communication (in DR testing)
02:15:26 DOMAIN 8
02:16:24 8.1.1 Software Development Methodologies
02:21:36 8.2.9 Software testing (IAST, SCA)
02:24:03 8.4.5 Cloud Services
02:31:13 BONUS: Difficult Question Strategy (R.E.A.D.)