Start your CISSP preparation with (ISC)2 website – https://www.isc2.org. Understand what a CISSP is and the requirements for the exam. If you don’t have the minimum work experience required for a CISSP, you can start with the Associate program after passing the exam. Don’t wait!
The following resources helped me in preparing for the CISSP exam in 2004-
- Official (ISC)2 Guide to the CISSP Exam by Susan Hansche, John Berti, Chris Hare
- The CISSP Prep Guide: Gold Edition by Ronald L. Krutz, Russell Dean Vines
- Advanced CISSP Prep Guide: Exam Q&A by Ronald L. Krutz, Russell Dean Vines
- CISSP All-in-One Exam Guide, Second Edition (All-in-One) by Shon Harris
- CISSP Training Guide by Roberta Bragg
- Information Security Management Handbook by Harold F. Tipton
Item 1 would be a good book to start with. Going through the book could be a little dry (at least that’s what my expereince was). Once you finish reading item 1, start doing as many question as you can. It could be from item 2, 3, 4 or any other questions banks available out there. If you get stuck with a question consult Google and other online resources. An online version of item 6 is available at cccure.org
UPDATE: April 2013
- SANS offers a course that would help to prepare for CISSP – MGT414: SANS +S Training Program for the CISSP® Certification Exam. Even though I haven’t taken it, given the quality of their other course, I believe it would be worthwhile.
- (ISC)2, the non-profit organization that offers CISSP certification, provides Review Seminars – https://www.isc2.org/cissp-training.aspx
The list provided above are based on my experience. However, you may be able to find better ones.