Official (ISC)2 Guide to the CISSP CBK
Recently, on the CISSPforum, there was some discussion of the new, third edition of the Official (ISC)2 Guide to the CISSP CBK (which, I note, is pretending to be available as an ebook for only ten bucks). At the end of one post, one of the correspondents stated that he was “leaning towards buying the new book.”
First, lemme say that, for those who haven’t yet got the cert, I do recommend the “Official Guide” as my first choice. (Harris is easier to read, but does contain *lots* of errors, and I tell my seminar candidates that I refuse to answer any question that starts out “Shon Harris says …”
However, on the other hand … why would anyone who has the cert buy the guide? Of course, I am speaking from the perspective of someone who does read the source literature (and I am aware that all too many of my colleagues do not).
I also recall at least two seminar attendees who actually did have the cert. Furthermore, they were consultants, and thus going on their own dime for the course. The reason given was the same: they charged by the hour, so any time spent upgrading was time they could not charge. Therefore, regularly attending the seminar was the fastest, and therefore, in their situation cheapest, way to ensure they were current.
So, yes, I can see that some people would want to get the guide as a quick check. (In that regard, I would tend to recommend ISMH instead of the guide, but …) But I still find it kind of odd …