A large financial institution has recently suffered a breach due to inadequate network monitoring. As a CISSP professional, you have been tasked with designing a comprehensive network monitoring strategy to detect and respond to potential threats in real-time. The institution's network is complex, with multiple branches worldwide, using a mix of cloud and on-premises services. It is crucial to have visibility into encrypted traffic without compromising data integrity or performance. Which approach should be implemented to achieve these objectives effectively? Options: A. Deploy a network-based intrusion detection system (NIDS) capable of decrypting SSL/TLS traffic for analysis. B. Implement Secure Sockets Layer (SSL) bridging at the firewall to decrypt and inspect traffic, then re-encrypt before forwarding. C. Utilize endpoint-based monitoring tools that can decrypt traffic locally for analysis before it enters the network. D. Adopt an advanced network traffic analytics platform that leverages machine learning to identify anomalies in encrypted traffic without decryption.

Hi everyone, I wanted to ask those who have recently taken the exam and submitted their endorsement application: how long did it typically take for you to your application approved?

I passed CISSP this Friday and thought I’d share my resources. Thor Pederson’s CISSP series/easy, medium and hard questions Think Like a Manager - YouTube Video Destination CISSP WannaBe practice questions Official Study Guide and Tests The test is something else, had no idea how I was doing the whole time. But at question 100 it told me the test was done, so I either did really good or really bad. I looked at the clock and had only been testing for an hour and some change. I didn’t even look at the print out when they handed it to me, and when I did check it in the car as I sat in the parking lot I didn’t even look shed a few tears of joy. Anyway, this is just me saying this is very possible and you can do it. Thinking like a manager is the most important part of this test. You can be the most technically gifted person when it comes to Information Security but if you don’t think from the business perspective you won’t pass this test. Good luck to those who haven’t passed yet and congrats to my fellow CISSP’s

A consulting firm is setting up a guest Wi-Fi network. They want to provide internet access to guests while ensuring that the guest network is completely isolated from the internal corporate network. They also want to limit the number of concurrent guest connections and prevent any single guest from consuming excessive bandwidth. Which combination of technologies would BEST achieve these goals? a) VLANs, NAT, and QoS b) Firewalls, Intrusion Detection Systems (IDS), and VPNs c) DNS, DHCP, and Web Application Firewalls (WAFs) d) Routers, Switches, and Load Balancers