Shon Harris - CISSP All in one Exam Guide

A must-have reference for any cyber security practitioner, this book provides invaluable practical knowledge on the increasingly complex universe of security concepts, controls, and best practices necessary to do business in todays world.

Steve Zalewski,
Chief Security Architect,
Levi Strauss & Co.

Shon Harris put the CISSP certification on the map with this golden bible of the CISSP. Fernando Maym carries that legacy forward beautifully with clarity, accuracy, and balance. I am sure that Shon would be proud.

DavidR.Miller, CISSP; GIAC GISP; PCI QSA;
SME; MCT; MCITPro Enterprise Admin;
MCSE NT 4.0, 2000, 2003, 2008; CEH;
ECSA; LPT; CCNA; CWNA; CNE;
GIAC GISF; CompTIA Security+, etc.

An excellent reference. Written clearly and concisely, this book is invaluable to students, educators, and practitioners alike.

Dr. Joe Adams, Founder and Executive
Director, Michigan Cyber Range

A lucid, enlightening, and comprehensive tour de force through the breadth of cyber security. Maym and Harris are masters of the craft.

Dr. Greg Conti, Founder,
Kopidion LLC

I wish I found this book earlier in my career. It certainly was the single tool I used to pass the CISSP exam, but more importantly it has taught me about security from many aspects I did not even comprehend previously. I think the knowledge that I gained from this book is going to help me in many years to come. Terrific book and resource!

Janet Robinson,
Chief Security Officer

The All-in-One Exam Guide is probably responsible for preventing tens of thousands of cyberattacks and for providing the strategic, operational, and tactical knowledge to secure vital government and corporate data centers and networks.

I personally used Shons work to achieve my CISSP and I have globally recommended it to many audiences. I have led many large organizations and one of my fundamental requirements for any of the budding CISSPs that I have mentored on their path to achieve a CISSP certificate was that they had to do two things before I would send them to a CISSP training boot camp. First, they had to prove to me they read Shons Gold Book, as I called it, and second they had to attend a free online CISSP preparation seminar. I had great success with this methodology.

I look forward to all future editions.

Bill Ross, CISSP, CISM, IAM,
SABSA Master Intelligence Officer, ITIL

Shon Harris and the All-in-One CISSP book have been the secret to my success. While at RSA I engaged Shon in getting 90 percent of the worldwide sales engineers CISSP certified, all with the assistance of this book. I took this same program with me to Symantec, and Shon worked with me to ensure we had the same type of results with both security engineers and security executives at Symantec. Her straightforward approach contained in this book gave each individual the specific information they needed to take the CISSP exam. As a plus, each of them gained a great deal of knowledge and solid base that is required by todays security professionals. I count myself as fortunate to have been introduced to Shon and the All-in-One CISSP early in my security career!

Rick Hanson,
CISSP Symantec Security Business Practice

I have no hesitation in recommending Shon Harris All-in-One Exam Guidethe consummate guide to (a) passing the prestigious CISSP examination specifically and (b) more generallya great insight into the wider world of information security.

Mike Rabbitt, CISSP,
CISA Information Security Officer

A must-have for anyone serious about becoming a CISSP.

Clment Dupuis, CD,
Owner and Founder of The CCCure
Family of Portals, www.cccure.org

This is the best book to prepare for CISSP exam. Period.

Sabyasachi Hazra, CISSP, CISA,
CISM, PMP, CCSE, ISO 2700 1LA,
CEH, CCSP, CCSA, CCSE, CCSE+,
MCSA, CCNP, Deloitte & Touche

Shon Harris is amazing at explaining the most complicated technologies in very simplified terms. This is a great book for studying for the CISSP exam, but also the only reference manual needed for any technical library.

Casey Batz,
Network Security Engineer, VMware

Shons CISSP All-in-One Guide has been the go-to study guide for the more than 200 new CISSP holders developed in our region over the last two years. It continues to be a great asset for both the novice and experienced security practitioner.

Alex Humber, Symantec Corporation

Not coming from a technical background, your guide was exactly what was needed to prepare for the CISSP exam. The material was presented in a way that allowed for not only grasping the concepts but also understanding them. The CISSP exam is one of the toughest out there, and your guide is a great tool for preparing for that rigorous undertaking.

Dr. Kevin Schatzle, CISSP, CFE, CPP

I heard from others for years that Harris CISSP book was the gold star and now that I am getting around to preparing for the examI see exactly what they mean. I thought I had a firm grasp on most items that make up information security, but this book really showed me that there is a lot more involved than I imagined. This book has broadened my horizons and provided me deep insight. And by the way, I passed the CISSP exam easily from just studying this one book.

Paul Rose, CEH, CISA, and now
CISSP Security Compliance Officer

Shon Harris really takes a different approach to writing, which helped me tremendously. The explanations, scenarios, metaphors, and a sprinkle of humor here and there made this book enjoyableinstead of a dreaded task. Some of the technical concepts I learned ten or more years ago, but after reading this book I now see how I did not understand these concepts to the necessary depth and I also understand how these technologies work together in the real world. The book has made me a much better security professional and allowed me to get my CISSP certification. Thanks for such a great piece of work!

Mike Peterson, Information Security Officer

Copyright 2019 by McGraw-Hill Education. All rights reserved. Except as permitted under the United States Copyright Act of 1976, no part of this publication may be reproduced or distributed in any form or by any means, or stored in a database or retrieval system, without the prior written permission of the publisher, with the exception that the program listings may be entered, stored, and executed in a computer system, but they may not be reproduced for publication.

ISBN: 978-1-26-014264-8
MHID: 1-26-014264-7

The material in this eBook also appears in the print version of this title: ISBN: 978-1-26-014265-5, MHID: 1-26-014265-5.

eBook conversion by codeMantra
Version 1.0

All trademarks are trademarks of their respective owners. Rather than put a trademark symbol after every occurrence of a trademarked name, we use names in an editorial fashion only, and to the benefit of the trademark owner, with no intention of infringement of the trademark. Where such designations appear in this book, they have been printed with initial caps.

McGraw-Hill Education eBooks are available at special quantity discounts to use as premiums and sales promotions or for use in corporate training programs. To contact a representative, please visit the Contact Us page at www.mhprofessional.com.

Information has been obtained by McGraw-Hill Education from sources believed to be reliable. However, because of the possibility of human or mechanical error by our sources, McGraw-Hill Education, or others, McGraw-Hill Education does not guarantee the accuracy, adequacy, or completeness of any information and is not responsible for any errors or omissions or the results obtained from the use of such information.