It's good to get study questions from an authority. Since this review is pre-CISSP test I can't speak to the value of those questions. I'm certain they'll be right on target though.

I liked the book very much. I liked that newer information is included like wireless networking HIPAA and other topics.

I think the book is about 100 pages too thick. One can literally rip out the first 99 pages and not loose any content. The first 99 pages are all the questions. The rest of the book are the questions repeated again along with the answers. I couldn't help but think someone went out of their way to create a bigger book knowing that all the information could've been covered in fewer pages.

Since the original CISSP Study Guide is also formatted this way I guess it's okay, but it still wastes a lot of paper IMHO and more than likely adds to the cost of the book.

Call it a pet peave I guess. Other than that, a great book and highly recommended.

Russell Dean Vines and Ronald Krutz have yet another first rate manual; for the CISSP exam. The authors have gone the extra mile to produced a book that an additional studsy guide companion to their already successful CISSP Study Guide.

This is not an addendum to the first book but rather a cut to bone manual that focuses on the exam objectives. While it may appear that the small manual is nothing more than questions and answers, after reading the text I found it provided more than just bullet points.

There is over 200 questions with detailed explanations to work with as well as a cd-rom, using the highly successful, Boson testing engine with an additional set of practice questions. Used as a final preparation tool or as a supplement to The CISSP Prep Guide, either way you have a great study tool.

Advanced Q&A is exactly what was needed as a companion to the CISSP Prep Guide. The questions in the original Prep Guide seemed too easy, and these are definitely not easy! It has been suggested to read the Prep Guide and answer the All-in-One questions, but now with the CD included, that's not necessary; Advanced Q&A is a complete study solution.

Security, security, security, that's seems to be the hottest growing area of the IT industry over the last 18 months. CompTIA release of the security+ exam is the foundational standard by which companies have set a measuring stick for those looking to break into the Security field.

In this book the authors have given you a good breakdown of the domains associated with a very tough exam. The authors seem to have covered every objective and the material is technically accurate and up to date.

The book has over 150 practice questions included. What I found to be most helpful was the communication security as well as the infrastructure security sections. Looking at the overall content of the book you should have a good base in which to learn from.

I was very pleased with the cdrom included, which has a practice question using the Boson Testing engine. Overall the authors have created a very good study guide and based on what I have seen from the exam, this book should help.

After reviewing most of the Security+ material on the market, this book helped me the most in passing the CompTia certification. It appears to be the only Sec+ book authored by a Security+ certified professional, and the questions in the book and extra questions on the CD were dead on.

The CISSP Prep Guide: Gold Edition is a very comprehensive, technical guide that will help you pass the CISSP. It is also horrible to read. If you need a reference guide to build on a few weak areas covered by this exam then you might find this book a valuable reference. I am very familiar with Telecom and networking, but need to read up on most other section. For this, I have been turning to a book purchased by a co-worker: CISSP Cert Exam Guide by Shon Harris. I don't know if the Harris book has the same information coverage as the Gold Edition, but it is far easier to read. Take this advice: Read a few sections of each book. These are too expensive to take the chance - I took the chance and regret it...

I just took the CISSP exam after three weeks of studying, with The CISSP Prep Guide: Gold Edition as my main study guide. Unfortunately, Krutz & Vines have included a wealth of information that I didn't need to know, meaning I spent hours memorizing superfluous information. For example, they delve into the gory details of the various cryptographic algorithms. I was careful to learn that information, only to have another exam guide point out that "the CISSP exam does not cover the specific details of how cryptographic algorithms work, so if you are confused by this information, feel free to move on."
While it is true that you can do well on the CISSP test by studying this book, you don't need much of the information presented here, and most of it is presented more concisely in other study guides. Furthermore, other study guides I used contained valuable information that was not in this book, information that did appear in test questions.
As goofy and badly-written as it may seem, Shon Harris's study guide will serve you better in the end.

***** I tested out using The Prep Guide 2001 Edition (Gold edition is new in Oct. 2002) and I definitely recommend it as a primary guide for studies leading to an CISSP Certification.

***** There is very little left out of this book. Using the ISC2 Study Guide that you can download from free, you can check the similar sections in this book.

***** The Section On Telecommunications and Network Security was excellent and did not leave much out. The only missing information I noticed was any in depth information on Telephone Systems Communications (including cellular), attacks, vulnerabilities, in depth or history. Perhaps the reason for this was this subject area is not mentioned in the ISC2 Study Guide - maybe one of the 25 questions that are used in the test for the future?

***** I read it from cover to cover and used the Internet as an additional source for every subject brought up in the book. For instance, I looked up Cryptography to complement the subjects discussed in the book. You need to do this to add depth to your information.

***** The 2001 book has an excellent set of Appendices, which I assume is followed up in the new book. (Q & A, Criteria, HIPPA, Glossary, excellent Reference list, Web sites.

***** It was a great discovery to me to find out the Ten Domains covered a lot of areas. Areas I wish I had know about earlier in my career and which have been dealt with in Information Systems by the Government and Corporations with interest in Security issues. It is an eye opener. Examples: The strategy for Business Continuity and Disaster Recovery will help many people. The strategy for separation of duties, dual man control, rotation of duties, forced vacations will be useful in today's networked world. Very few businesses practice these logical rules. The CISSP wakes up people to improve security in the real world.

***** Get this book for sure. I highly recommend it.

I used three books to help me prepare for the exam. The authors know their subject and reading it should help you. I also read "All in one CISSP Study Guide" by Shon Harris. Although studying with any material you can get you hands on is always a good idea, I likely could have simply used Shon Harris's masterpiece, one of the other books that I purchased and not any other books.

I found "The CISSP Prep Guide" lacking friendly examples and humor which made the book a dry, technical read. It kind of reminded me of the college text books about 16th Century music history. Sleepy and boring. And we all know computer security is more fun then that!

Read Harris's book first, Carl Endorf's book second and only this one if you have the time!

This book is exactly what CISSP candidates need to prepare for the exam. The authors make sure to cover the CISSP Common Body of Knowledge in enough detail, give pointers along the way, and include sample questions to practice for the exam.

Since this is a study guide, the emphasis is on breadth, not depth of coverage, and that's the way it should be.

Several inaccuracies and typos should be corrected in the second edition (e.g. the description of lattice-based control on p. 34, or sample question 9 in Chapter 10 and its answer).

So is this now my favorite survey of computer and information security? Not quite. I still prefer "Secure Computing" by Rita C. Summers, even though it is already 4 years old. Unfortunately it is out of print, and it is a mystery why McGraw Hill wouldn't print a few thousand copies to satisfy the demand.

Another CISSP prep book is coming soon (Mandy Andress, "CISSP Exam Cram"). Let's hope it will be as good as the Prep Guide.

It's been said many times that the vast ocean of the CISSP Common Body of
Knowledge (CBK) is fifty miles wide and two miles deep and preparing for it
can be quite an overwhelming endeavor. Various on-line study groups and web
sites have numerous suggestions and links where freely available materials
and helpful hints may be found. It's been said many
times over that NO one book can effectively cover the CBK and to prepare the
CISSP candidate for the exam. I too have amassed a large collection of the
most suggested tombs. Well The CISSP Prep Guide almost negates this
statement. The CISSP Prep Guide is now the FIRST place to start! I wish it
had been in print a year ago when I began my quest for the CISSP. It is a
complete and affordable textbook covering the MEAT of the CBK. This book
completely defines and explains the major points of the CBK. It is an
extremely readable and understandable text. If you can't afford attending
the ISC2 CISSP Seminar either because of cost or time away from work this
book is for you. If you have already attended the CISSP Seminar this book
is for you. I was blessed by having the opportunity in attending the CISSP
Seminar yet I am still finding that The CISSP Prep Guide is building upon
the materials presented in the seminar. I can see where my copy of The
CISSP Prep Guide will quickly become a dog-eared reference text that I use
to refer to while carrying out my duties as an Information Systems Security
Officer .

It must be difficult to write an exam review book before the exam is actually offered. I purchased this book for additional reference before taking the CISM Exam over the past weekend; 6/03. This was the first time the exam has been offered to the public. I estimate that 80% of the exam questions where not covered in this book. While the material presented by the author's is valid, it did not help much in terms of the exam. This book is much more useful for someone trying to obtain the CISSP not CISM.