Hi Everyone, I’m proud to share that I have provisionally passed the CISSP CAT exam today! It will definitely test your fitness, but it is all worth it. Huge respect to everyone here. For those who are still traveling, keep going; it will be worthwhile, and you will reach the end. Here's my personal strategy for exam prep. Note: This is still required reading: ISC2 CISSP Certified Information Systems Security Professional Official Study Guide & Practice Tests Bundle (Sybex Study Guide). Wave 1—Setup 1. Join https://www.skool.com/cybersecurity-study-group (obviously, you're here already 🙂). 2. Subscribe to https://cissp.app/ 3. Buy the book: https://leanpub.com/cissplastmile#about 4. Download and print out: https://destcert.com/cissp-mindmaps/ Wave 2—Study 1. Watch: https://www.youtube.com/watch?v=5BnhDVOnzmg 2. Watch: https://www.youtube.com/watch?v=gKe88tIeVYo 3. Watch in full: https://www.youtube.com/watch?v=aLIFzIBNM_8&list=PL7XJSuT7Dq_XPK_qmYMqfiBjbtHJRWigD 4. Watch in full: https://www.youtube.com/watch?v=hf5NwUSEkwA&list=PLZKdGEfEyJhLd-pJhAD7dNbJyUgpqI4pu 5. Go through the mind maps daily. 6. Read the book. 7. Use cissp.app and practice a minimum of 25 questions each day (three-month prep period). a. Check the gap analysis summary every 100 questions at the latest and go read up on your weak areas. Wave 3—Last month 1. Watch https://www.youtube.com/watch?v=5BnhDVOnzmg 2. Watch https://www.youtube.com/watch?v=gKe88tIeVYo

Hi Group, I’m happy to share that today (7th April 2026) I passed my CISSP exam. I prepared using the official materials: the Official Study Guide, the Official Practice Tests, the Learnz app for flashcards and questions, and Mike Chapple’s official course on LinkedIn Learning. And last but not least, the discussions and meetings within this group really helped me deepen my understanding of several topics. Thank you all for the support, and good luck to everyone on your journey. Feel free to reach out if you want

Hi Everyone, I’m pleased to share that I have provisionally passed the CISSP today (10/04/2026) - a great way to head into the weekend! It was certainly a tough exam (perhaps tougher in my own head at times). Some of the questions were genuinely challenging, but I’m really glad to have gone through the experience and come out the other side and crossed the finish line 🏁 I wanted to take a moment to thank this community - it has been a fundamental pillar in my preparation. The support around exam technique, content, and discussions have been invaluable. A special thank you to @Vincent Primiani and the CISSP team for running the group sessions - creating a space where we can learn, challenge ourselves, and grow together. Huge respect to everyone here - and for those still on the journey, keep pushing… it’s absolutely worth it, and you’ll get to that finish line. On to the next one! Cheers, Indy

During a confirmed ransomware incident, the IR team identifies that the attacker is still actively exfiltrating data through a compromised service account. The legal team requests that no systems be taken offline to preserve evidence for potential litigation. Operations wants the bleeding stopped immediately. What should the incident commander prioritize FIRST? A. Disable the compromised service account to stop active data exfiltration B. Isolate affected network segments while preserving system state for forensics C. Initiate a full forensic image of all affected systems before any containment action D. Convene an emergency meeting with legal, operations, and security to align on priorities Come back for the answer tomorrow, or study more now!

4th Time