 | | |
| CISSP Certification All-in-One Exam Guide, 4th Ed. (All-in-One) | 
 enlarge | Author: Shon Harris
Publisher: McGraw-Hill Osborne Media
Category: Book
List Price: $79.99
Buy New: $39.99
You Save: $40.00 (50%)
Buy New/Used from $39.01
Avg. Customer Rating:  (5 reviews)
Sales Rank: 983
Media: Hardcover
Edition: 4
Number Of Items: 1
Pages: 1145
Shipping Weight (lbs): 4.7
Dimensions (in): 9.2 x 7.5 x 2.6
ISBN: 0071497870
Dewey Decimal Number: 005.8
EAN: 9780071497879
ASIN: 0071497870
Publication Date: November 9, 2007
Availability: Usually ships in 1-2 business days
|
| Editorial Reviews:
Product Description
All-in-One is All You Need Fully revised for the latest exam release, this authoritative volume offers thorough coverage of all the material on the Certified Information Systems Security Professional (CISSP) exam. Written by a renowned security expert and CISSP, this guide features complete details on all 10 exam domains developed by the International Information Systems Security Certification Consortium (ISC). Inside, you'll find learning objectives at the beginning of each chapter, exam tips, practice questions, and in-depth explanations. CISSP All-in-One Exam Guide, Fourth Edition will not only help you pass the test, but also be your essential on-the-job reference. Covers all 10 subject areas on the exam: - Access control
- Application security
- Business continuity and disaster recovery planning
- Cryptography
- Information security and risk management
- Legal, regulations, compliance, and investigations
- Operations security
- Physical (environmental) security
- Security architecture and design
- Telecommunications and network security
The CD-ROM features: - Simulated exam with practice questions and answers
- Video training from the author
- Complete electronic book
|
| Customer Reviews:
 The most complete book for CISSP April 25, 2008
This is the most complete book for CISSP study. It is deep in each of the 10 CBK domains. Also, it serves as an useful reference for security-related work.
 CISSP 4th Edition April 22, 2008
Reading this book cover to cover was a daunting task.
I've read many technical books throughout the years and I can honestly say this had to be in the top three most painful. 1100+ pages of inane comments, repetitive text, and poor topic transitions. That doesn't even cover the technical, typographic and other errors that should have been caught during the editing and technical review phases.
The authors attempt at injecting humor into the text falls flat. Starting most topics with an annoying quip just makes reading the book that much more difficult. For example, from Chapter 7: Telecommunications and Network Security, page 542, 'Layer 3 and 4 Switches' begins with, 'I want my switch to do everything, even make muffins.'
By the fourth chapter I had gotten used to skipping over any italicized text after a section break. This flaw carries over into the main text as well but it is near impossible to tune that out as you might miss something actually relevant to the topic.
Many of the examples used throughout the book are childish and overly simplistic. As a book touting "professionalism" it should be updated appropriately.
This being the fourth edition you would expect many of these issues would have already been addressed.
All that being said there is a lot of useful information in the book if you can overlook the issues. I have yet to try out the included testing materials so I can't comment on them at this point.
Information Security, awesomely reviewed... January 28, 2008
3 out of 3 found this review helpful
Although a green horn in the information security field, I was amazed at the ease of comprehension portrayed by this book. At first, I imagined it'll be a remix of the previous edition with a little bit extra info here and there; I found out that the information content was as fresh as ever; Currently using it for an introductory course at Walsh College and I must say, in comparism to the 3rd ed. this is a lot better.
Pleased with content.... January 14, 2008
5 out of 5 found this review helpful
I am still in the midst of reading the CISSP All-in-one guide, and so far, I am very impressed with the content, and my ease of understanding subject matter presented. This is a much easier read than the "Official ISC2 Guide to the CISSP Exam". I also purchased "CISSP for Dummies". Of the three...CISSP all-in-one has the best of both worlds...in-depth content, similar to "Official ISC2 Guide", but also, ease of read, similar to the "For dummies" book. If I had to do it all over again...and just by one text, the CISSP All in one guide would be the one I'd choose, hands down.
King of the hill for Security Tome December 24, 2007
19 out of 20 found this review helpful
I have exchanged email with the author and we have had a few phone calls, but I cannot say that I know Shon Harris well. However, after reading the 4th edition of her very successful book, I feel I know her better. I love the humor in the italics at the beginning of sections and - warning - sometimes in line with the technical material. I appreciate the plain, clear, as simple as possible, way the information is presented. It would be easy to make these concepts sound hard, Shon does not do that, not ever; thank you! The charts and graphics on the main do a fantastic job of making the information clear. She does an extraordinary job of moving between well written prose and bullet points in a style reminiscent of Dorothy Denning. At three inches thick and running over 1100 pages, one certainly cannot fault her for leaving critical information out. This is on par with the Matt Bishop book of being the Information Security Tome. I can't say that I learned that much reading the book since I do security all day, every day and have done so for years, but I never got bored and I went cover to cover ( not counting the detailed index in the back and the "so you want to be a CISSP in the front) and I was astounded by the author's craft, she tells the story of security as well as anyone ever has.
You do not need me to vouchsafe the value of this book ( and the CD) to prepare for the CISSP exam. If Shon is not the best known author, she is certainly in the top two or three in this category. But, I believe this book has another equally important role. It is perfect for the CxO that wants to understand what security is, what they need to know about it. I understand the knee jerk response to that is, "you cannot ask a CEO to read 1100 pages". Actually, the successful senior executives in the world are generally quite good at reading a LOT of information in a SHORT period of time. Shon is accurate, the writing is excellent, the diagrams help with "knowledge compression", a CFO interested in security can zip through this like a zero turn mower on a two acre MacMansion.
Nitpicks, sigh, I wish ISC2 had settled on the standard approach to incident handling instead of creating their own broken one. The Quantum Cryptography section is actually Quantum Key Exchange, but hey! That is a nitpick, no reader of this book actually needs to know the difference. And critics will be overjoyed because Shon seems to have threat, risk, and vulnerability in the right pidgeon holes. The most serious flaw in the book is in chapter 12, Hack and Attack Methods, some of that stuff I know cold and I got a bit confused reading that section, but it is the end of the book and my guess is that folks were getting tired. A few network traces would go a long way towards bringing that section to life. And you know what? The book remains 5 stars. Even if that section was spot on, even if the thirty weak pages out of the 1070 strong pages were perfect, the book is not designed to prepare the reader to be an IPS analyst. The overall message is clear and compelling, the bad guys do evil things with packets; I get the message so will the reader, let's move on.
The bottom line, if you think you know security and want to test your knowledge, buy the book, fire up the CD, install the test software and give yourself a run. Shon is a great author, but she has also compiled an awesome set of questions. Yes, they will prepare you for the CISSP exam, but they will also help you test your knowledge of security and your ability to think critically. If you have further questions about the book, or you disagree with my review, drop me a line and let's talk about it, stephen@sans.edu.
|
|
|
Powered by Associate-O-Matic
| | |