We’re thrilled to welcome May Brooks-Kempler ( @May Brooks ) to our community! May is one of the most respected CISSP instructors worldwide. She’s a (ISC)² Board Member, co-author of the Official CISSP Study Guide, TEDx speaker, bestselling author (Scams, Hacking, and Cybersecurity), and a recognized leader in the global infosec community. Here’s what this means for you: 📚 Study Group MasterClass Takeover – May is giving our members free admission to her upcoming CISSP MasterClass. This is a chance to learn directly from one of the best and show her what our study group is all about. 🎤 Pop-In Q&A – Keep joining our study groups, because you never know when May might drop in for a quick Q&A. 🤝 Exciting Collaboration – This is just the beginning. May is supporting our community as the go-to place for those just starting, self-studying, or looking for a group to prepare for the CISSP together. 💡 CPE Credit – You can self-submit for 2 CPE credits for attending the MasterClass. This is a huge moment for our group. Let’s pack the MasterClass, bring our energy, and show May the strength of our community. 👉 Registration link coming soon. Let’s show May we are happy she’s here in the comments!

Excited to join! I hope to learn and also contribute. Traveling to India next week for Mr. Prabh Neri’s course—please wish me success.

An organization is conducting a risk assessment and has identified several threats to its critical customer database. After calculating both the Annual Rate of Occurrence (ARO) and the Single Loss Expectancy (SLE), management now wants to determine the total expected loss per year. Which of the following should be calculated NEXT? A. Exposure Factor (EF) B. Annual Loss Expectancy (ALE) C. Residual Risk D. Total Cost of Ownership (TCO)

Big news! ​I'm thrilled to share that I've passed the CISSP exam on my first attempt, finishing at the 100-question mark. ​This was an intense but rewarding challenge, and my success was powered by a fantastic study stack. A huge thank you to the creators of: ​*Sybex Official Guide: The Audible version was a game-changer for constant learning. ​*Destination Certification: Their mind maps and app were crucial for visualizing and practicing concepts. ​*Cissp.app: An essential tool for drilling questions. ​*Pete Zerger's exam prep: For providing that critical strategic insight. ​Leveraging AI tools like Gemini and ChatGPT for dynamic Q&A sessions was also invaluable. ​Finally, a huge thank you to everyone who shares their knowledge and experiences so openly. I am eager to pay it forward and contribute to the community.

Senior management has approved funding for a new information security program. The CISO wants to ensure that the program is sustainable and aligned with business strategy. Which of the following is the MOST important first step? A. Develop detailed security policies and procedures for all business units. B. Conduct a comprehensive risk assessment across the organization. C. Implement baseline technical controls to address known vulnerabilities. D. Establish a security steering committee with representation from business leadership.