Enjoy! Let me know if any questions as you prepare.
@getdestroyed1958
3 жыл бұрын
For The Software Capability Maturity Model you can also think of it in terms of working out! Initial - starting point Repeatable- stay with your workout routine If you do that you will get Defined. Once you are defined it’s just a matter of Managing your gains. If you can do that, you will stay Optimized 😊
@InsideCloudAndSecurity
3 жыл бұрын
I like it! Thanks for sharing! 👍
@maclinepius3961
Жыл бұрын
Vcccccvvvvvvvvvvvv
@AsAxBoSs2012
Жыл бұрын
This is good example understanding which leads to memorization.
@mrrdw77
3 жыл бұрын
No WURD = Biba =No Write Up, No Read Down
@InsideCloudAndSecurity
3 жыл бұрын
That's a good one! 💡
@bethsumner6706
Жыл бұрын
OSI - Please Do Not Teach Stupid People Acronyms. 😂 And then on the Bell and Biba when trying to remember which is the simple and which is Star property: You have to read before you can write. Reading is simpler than writing. Therefore read = simple and write = *.
@InsideCloudAndSecurity
Жыл бұрын
Well Beth, that acronym is just plain mean! 🤣😆😂
@glbglbglbglb
3 жыл бұрын
Thanks for the great mnemonics. ACID and IDEAL are acronyms that don't need ones I think.
@InsideCloudAndSecurity
3 жыл бұрын
Agree with you there, but thought I'd offer... just in case. 😉
@victorontheweb
3 жыл бұрын
Bell LaPedula = Difficult to read and difficult to write down, therefore "No" read up and write down (if read is UP then write is DOWN), bIba and Clark-WIlson = The "I" in them stands for integrity / Goguen and Sutherland are men of "Integrity"
@InsideCloudAndSecurity
3 жыл бұрын
Hey Victor! Thanks for taking time to share your memory devices! Those are two I have not hear before. 👍
@nicolaspontoizeau3080
11 ай бұрын
Hi Pete thank you so much for your material. I am French and I would like to share the way I learn the 4 canons of the code of ethics. I use the 1st letter P protect... A act... P provide... A advance... => it gives the acronym PAPA that means "dady" in French it is pretty relevant to memorise when speacking responsible code of conduct 😉
@InsideCloudAndSecurity
11 ай бұрын
Makes sense! Thanks for sharing!
@sendhertothegrammys
3 жыл бұрын
More relevant for the OSI model, from layer 1 up: Please Do Not Toss Security Processes Aside ;-)
@InsideCloudAndSecurity
3 жыл бұрын
That definitely meets the relevance test I mentioned and I have never heard that one! Thanks for taking time to share!
@Brownbrostv
3 жыл бұрын
Thanks mate! It doesn't matter if I pass the exam or not, all the effort that you put in creating these videos - is appreciated! God bless you mate! keep the good content coming... :)
@InsideCloudAndSecurity
3 жыл бұрын
Happy to help! Good luck Naman! 👍
@webzest
Жыл бұрын
Love your techniques... Do you have a video on the OSI Model actual application? For example, the ports and or related dependencies that are required for the OSI Model to work. I took the practice Exam and one question was asked about at which layer does an encrypted authentication between a client software package and a firewall occurs?
@InsideCloudAndSecurity
Жыл бұрын
Thanks! OSI model? I talk about it in a couple of spots. I show the protocols at each layer here -kzitem.info/news/bejne/wKSvwJyPp3V_f3Y. Exam shouldn't go deep on protocol and layer matching. Will be more about function and the right protocol for specific situations, which we cover throughout the full course video - kzitem.info/news/bejne/wKSvwJyPp3V_f3Y
@silkeholtmanns6514
2 жыл бұрын
For the control categories (preventive, detective, corrective, deterrent, recovery, compensating, directive) I use "Prevention Detects Common Data Recovery Chaos & Disasters". I know that the logic is not 100% clean as prevention does not detect, but many words fit already. So I can live with the twist...
@InsideCloudAndSecurity
2 жыл бұрын
Perfection is the enemy of progress. If it meets your need, the twist looks like an appropriate compromise to me. 👍
@MaryMcCabe-m6z
Ай бұрын
Brilliant types. The techniques for learning are genius. Thank heavens I found this. Thank you :}
@InsideCloudAndSecurity
Ай бұрын
You're so welcome! Good luck on the exam. Make sure you check out my CISSP playlist! kzitem.info/door/PL7XJSuT7Dq_XPK_qmYMqfiBjbtHJRWigD&si=KRsxWk5yT5pcpUcj
@jenniferarnold-abington299
2 жыл бұрын
I provisionally passed today! Thank you so much for the succinct info filled video. I used this video as last minute prep a week before taking the test!
@lilianacarranza4050
Жыл бұрын
Hi, did you use any simulator?
@jenniferarnold-abington299
Жыл бұрын
@Liliana Carranza I used the ISC2 materials (app, book, extra test book), all-in-one book, a boot camp, study group, and watched this channel and destination certification.
@yehudagelbproductions
3 жыл бұрын
I find using memory palaces works wonders.
@InsideCloudAndSecurity
3 жыл бұрын
It definitely has value and is a proven technique, although more difficult for most to perfect. I lean on spaced repetition with candidates because it is easier most, and addresses long-term retention, and as a result, more likely to lead to comprehension of the underlying material.
@canuckle13
9 ай бұрын
Thanks for all your videos. These memorization tips were invaluable and helped me pass the exam this week 🥳
@InsideCloudAndSecurity
9 ай бұрын
Glad it helped! CONGRATULATIONS! 🏆🎉🌟
@gshoez5173
Жыл бұрын
Question about where the initial Triage happens. At the detection phase or Response ? I got study question wrong because i stated that the Triage happens at the Response phase per this video. The correct answer on the study question was at the Detections phase. Please advise
@gshoez5173
Жыл бұрын
Based on the CBK, i believe the triage happens at the detection phase. Just a heads up
@InsideCloudAndSecurity
Жыл бұрын
No, it happens at the first phase post-detection. Here's the evidence from two authoritative sources. You don't see the word triage mentioned to many times so it's a good question, but my language in the incident response section of the full course (watch here - kzitem.info/news/bejne/wKSvwJyPp3V_f3Ysi=5gh4NcX2v5WoARug&t=22277) and my use of the word triage in the Response section is consistent with the Official Study Guide, where on page 892 says: "one of their first tasks is to assess the situation. This normally occurs in a rolling fashion, with the first responders performing a simple assessment to triage activity and get the disaster response under way." If you look at this resource (swimlane.com/blog/how-to-do-incident-response-triage-right/) it confirms triage happens in the first phase after detection, also consistent with my video link above.
@InsideCloudAndSecurity
Жыл бұрын
Further supporting my evidence below, with Detection being the first phase, you cannot triage an issue until AFTER detection. You cannot assess what has not yet been detected, which is a distinct first phase. You cannot triage has not yet been detected.
@ashokc1988
2 жыл бұрын
You should change channel's name as "Gem's factory" 😃
@InsideCloudAndSecurity
2 жыл бұрын
😁👍
@kriskrossed4138
3 жыл бұрын
Dingo species comment made me laugh... Great stuff looking forward to the other domain videos !
@InsideCloudAndSecurity
3 жыл бұрын
LOL. Next installment coming soon. 😉
@dshaw2416
3 жыл бұрын
Great content...Keep up the good work!
@InsideCloudAndSecurity
3 жыл бұрын
Thank you! Will do!
@ferrisbeuler8657
Жыл бұрын
Want to run a mnemonic past you for SYSLOG levels. Emergencies are critical except when nobody is distressed. Emergency Alert Critical Error Warning Notification Information Debug
@InsideCloudAndSecurity
Жыл бұрын
That tracks! Is it helping you?
@glitchen
3 жыл бұрын
Richard! That made me smile. Keep it up sir!
@InsideCloudAndSecurity
3 жыл бұрын
Thanks, will do! 😉
@vanamstel_nl
3 жыл бұрын
Nice, thank’s a lot!
@InsideCloudAndSecurity
3 жыл бұрын
Happy to help!
@claudiabucknor7159
3 жыл бұрын
BINGO 👏👏👏👏
@InsideCloudAndSecurity
3 жыл бұрын
Hey Claudia! Glad to hear that! 👍
@GregWilson04
3 жыл бұрын
Great content. Do you have this in Powerpoint format?
@InsideCloudAndSecurity
3 жыл бұрын
Looking for a study reference? If I provide in PDF format, will that work?
@GregWilson04
3 жыл бұрын
@@InsideCloudAndSecurity Yes, sir. That would be great.
@InsideCloudAndSecurity
3 жыл бұрын
Here it is in pdf format - 1drv.ms/b/s!AmhtzcmYt5AViK1RKrDYhCHdHvnCkw?e=i4zP7J
@GregWilson04
3 жыл бұрын
@@InsideCloudAndSecurity Thank you. I really appreciate this.
@InsideCloudAndSecurity
3 жыл бұрын
You're welcome😉
@b213videoz
3 жыл бұрын
Excellent stuff! But I found a bug: according to CISSP TLS is Transport not Presentation layer. 6:38 isn't Containment meant to occur in Detection phase? "Response The response phase also called as containment phase. As the name suggests..."
@InsideCloudAndSecurity
3 жыл бұрын
Complicated it seems. Per Wikipedia, "Transport Layer Security (TLS) does not strictly fit inside the model either. It contains characteristics of the transport and presentation" en.wikipedia.org/wiki/OSI_model. Explains why it may appear in different layers in different charts on the Internet.
@InsideCloudAndSecurity
3 жыл бұрын
this 2-minute segment more closely maps to the terminology of the official study kzitem.info/news/bejne/zoKrsqh_rHabfm0. You can also read about this topic in Chapter 17, which may help provide deeper detail. Appreciate you taking time to make comments.
@JSAGOO
3 жыл бұрын
Thank you 🙏🏾
@InsideCloudAndSecurity
3 жыл бұрын
No problem 😊
@alimotiwala570
3 жыл бұрын
Thank you.
@InsideCloudAndSecurity
3 жыл бұрын
You're welcome!
@jpcosta
2 жыл бұрын
3:54 the OSG 9th ed. describes TLS as part of the Transport layer
@InsideCloudAndSecurity
2 жыл бұрын
Per Wikipedia: Although not developed under the OSI Reference Model and not strictly conforming to the OSI definition of the transport layer, the Transmission Control Protocol (TCP) and the User Datagram Protocol (UDP) of the Internet Protocol Suite are commonly categorized as layer-4 protocols within OSI. Transport Layer Security (TLS) does not strictly fit inside the model either. It contains characteristics of the transport and presentation layers. en.m.wikipedia.org/wiki/OSI_model. Bottom line is TLS shares characteristics of layer 4 and layer 5. I don't think the distinction in this one off scenario is going to cause you any headaches on the exam. Good luck on exam day. 🍀🤞
Пікірлер: 68