You can always get the rest of my courses with my low-price Udemy

instructor coupons: https://thorteaches.com/udemy/

Now is also a good time to join the discussions, and try daily free practice
questions and get study support on my Facebook CISSP, CISM, CISA group:
https://www.facebook.com/groups/ThorTeaches/

You can get all my CISSP and CISM courses as a 12-month full access on my own
hosting: https://thorteaches.com/

Take a look at my extensive list of free and paid CISSP, CISM, and CISA resource
recommendations: https://thorteaches.com/study-resources/

CISSP books I recommend for the current exam:

Next CISSP curriculum update is in 2021.

https://amzn.to/2ABCqW4
The official 2018 study guide (8th edition).

1|Page
https://amzn.to/2vfHWZ2
The official practice test booklet.

https://amzn.to/2LRGmHh
CISSP books 2015 version, since so little was changed these are still useful.
Shorter than the official guide, perfect for people with some years of IT Security experience.

https://amzn.to/2OJl4cv
Most students use this in the last 1-3 weeks, highly recommended for both newer and more
experienced IT Security professionals.

2|Page
https://amzn.to/2tXrfk6
AIO was what I used when I studied for my CISSP in 2010-2011, great resource for newer
IT Security professionals.

https://amzn.to/2O9pN6o
AIO question bank 1000+ practice questions.

CISM books I recommend for the current CISM exam:

Next CISSP curriculum update is in 2021.

3|Page
https://amzn.to/2EpNiGl
The official study guide from ISACA, recommended.

https://amzn.to/2tU1GAv
Cheaper and more in detail than the official book, more in detail, recommended.

https://amzn.to/2Ea27LY
The official practice questions, they are old exam questions and will show you how the exam
asks questions. Get these!

4|Page
 Remember you always have a 30-day,
no questions asked money back guarantee!

How to study for the CISSP and CISM certifications?

I often get the question from students: "What is the best way to study for the CISSP or CISM
certification?".
It is a hard question to answer, because we all learn differently.
I normally explain what I do for new certifications, and it seems to work well for most of my
students for their CISSP and CISM certifications.
For the CISSP I recommend (It is normal to use 2-6 months):
• Watch the videos (1-3 sources).
• Read the book (I recommend the official Sybex and/or AIO).
• Re-watch the videos.
• Start doing practice questions, after each test re-watch videos and reread book for the
questions you got wrong.
• At this point it is really practice tests > weak areas > practice test > weak areas and on and
on.
• For the last 1-2 weeks, I suggest 11th hour, re-watch videos, do practice tests, scoring 80%+
on all domains is recommended.

For the CISM I recommend (It is normal to use 1-3 months):

• Watch the videos (1-2 sources).
• Read the book (I recommend the official ISACA and/or AIO).
• Re-watch the videos.
• Get the official ISACA CISM questions 9th edition. They are real retired CISM exam questions,
they will give you an exact idea of HOW ISACA is asking the exam questions.
• At this point it is really practice tests > weak areas > practice test > weak areas and on and
on.

5|Page
If you are doing both certifications, and you do the CISSP first, I would think 2-4 weeks would be
needed to study for the CISM. If you do the CISM first, I would think you would need an
additional 2-3 months for the CISSP. The CISSP questions are more technical, more convoluted,
and the curriculum is larger.

You can NOT memorize your way to the CISSP or CISM certifications:
• You need the knowledge.
• You need good English skills.
• You need to reason your way through the questions.

Spend a few minutes on each question initially, deconstruct the question:

"What are they ACTUALLY asking here", after you are clear on what they are asking, look at the
answer options, also deconstruct those if it is needed.
Often you will have 2 answers that are possibly right, you need to logic your way through why
one of them is MORE right.

Get more certification information for CISSP, CISM, and the CISA certifications here:

CISSP study approach: https://crackthecissp.com/

Build your own CISSP bootcamp: https://cisspclass.com/

Make your own CISSP study plan: https://cisspstudy.com/

CISM approach, materials, and study plan: https://cismclass.com/

CISA approach, materials, and study plan https://cisaclass.com/

6|Page