# CISSP Revision Plan v2 ## Personalized Study Plan for Zhi Yong **Exam Date:** July 2026 **Created:** April 20, 2026 **Tutor:** Cupid AI (Claude for deep reasoning) **Status:** In Progress - Domain 1 --- ## 📊 Exam Overview | Domain | Weight | Questions | Status | |--------|--------|-----------|--------| | 1. Security & Risk Management | 16% | 80 | 🟡 In Progress | | 2. Asset Security | 10% | 50 | ⬜ Not Started | | 3. Security Architecture | 13% | 65 | ⬜ Not Started | | 4. Communication & Network Security | 13% | 65 | ⬜ Not Started | | 5. Identity & Access Management | 13% | 65 | ⬜ Not Started | | 6. Security Assessment & Testing | 12% | 60 | ⬜ Not Started | | 7. Security Operations | 13% | 65 | ⬜ Not Started | | 8. Software Development Security | 10% | 50 | ⬜ Not Started | | **TOTAL** | **100%** | **500** | | --- ## 🗓️ 12-Week Study Schedule ### **Phase 1: Foundation (Weeks 1-3)** **Focus:** Domains 1 & 2 (26% of exam) #### Week 1-2: Domain 1 - Security & Risk Management **Topics:** - ✅ CIA Triad (Completed) - ✅ Policy Hierarchy (Completed) - 🟡 Risk Management (In Progress) - ⬜ Legal & Regulatory - ⬜ Professional Ethics **Resources:** - AI Question Bank v2 (500 questions) - Domain 1 Flashcards - Practice quizzes **Activities:** - Daily: 30 min flashcards - Every 2 days: Tutoring session with Cupid - Weekend: Practice test (50 questions) #### Week 3: Domain 2 - Asset Security **Topics:** - Data classification - Data ownership roles - Data lifecycle - Secure disposal methods --- ### **Phase 2: Technical Core (Weeks 4-7)** **Focus:** Domains 3, 4, 5 (39% of exam) #### Week 4-5: Domain 3 - Security Architecture **Topics:** - Security models (Bell-LaPadula, Biba, Clark-Wilson) - Cryptography (symmetric, asymmetric, hashing) - PKI and certificates - Secure architecture design #### Week 6: Domain 4 - Communication & Network Security **Topics:** - Network protocols - VPNs and secure communications - Wireless security - Network attacks #### Week 7: Domain 5 - Identity & Access Management **Topics:** - Access control models (MAC, DAC, RBAC, ABAC) - Authentication methods - SSO and federation - Identity lifecycle --- ### **Phase 3: Operations & Assessment (Weeks 8-10)** **Focus:** Domains 6 & 7 (25% of exam) #### Week 8-9: Domain 6 - Security Assessment & Testing **Topics:** - Vulnerability assessment - Penetration testing - Audit techniques - Security metrics #### Week 10: Domain 7 - Security Operations **Topics:** - Incident response - Disaster recovery - Business continuity - Logging and monitoring --- ### **Phase 4: Software & Final Review (Weeks 11-12)** **Focus:** Domain 8 & Full Review (10% + review) #### Week 11: Domain 8 - Software Development Security **Topics:** - SDLC - Secure coding practices - Application security testing - DevSecOps #### Week 12: Final Review & Mock Exams **Activities:** - Full practice exams (125 questions each) - Weak area review - Flashcard review - Rest before exam --- ## 📚 Study Resources ### **Question Banks** | Version | Location | Questions | Status | |---------|----------|-----------|--------| | v1 | cissp-question-bank-500.md | 500 | ✅ Complete | | v2 (AI) | question-bank-ai/ | 500 | ✅ Complete | | v3 (AI) | question-bank-ai-v3/ | 500 | 🟡 In Progress | ### **Practice Tests** - Interactive HTML quizzes (all 8 domains) - Full exam simulation (125 questions, 3 hours) - Available at: https://yeozhiyong.github.io/CISSP-Revision-2026/practice-tests/ ### **Flashcards** - Domain 1: 16 cards ✅ - Domain 2: 12 cards ✅ - Domain 3: 20 cards ✅ - Available at: https://yeozhiyong.github.io/CISSP-Revision-2026/flashcards/ --- ## 🎯 Study Methodology ### **Daily Routine (Recommended)** | Time | Activity | Duration | |------|----------|----------| | Morning | Flashcards review | 15 min | | Lunch | Read notes/concepts | 20 min | | Evening | Practice questions | 30 min | | Weekend | Tutoring session + practice test | 2 hours | ### **Tutoring Sessions with Cupid** - **Frequency:** 2-3 times per week - **Duration:** 30-45 minutes - **Format:** Concept explanation → Practice questions → Review - **LLM:** Claude for deep reasoning (default) ### **Progress Tracking** - [ ] Domain 1: Target 80%+ on practice tests - [ ] Domain 2: Target 80%+ on practice tests - [ ] Domain 3: Target 75%+ on practice tests - [ ] Domain 4: Target 75%+ on practice tests - [ ] Domain 5: Target 75%+ on practice tests - [ ] Domain 6: Target 75%+ on practice tests - [ ] Domain 7: Target 75%+ on practice tests - [ ] Domain 8: Target 80%+ on practice tests - [ ] Full practice exam: Target 700+ score --- ## 📝 Current Progress Log ### April 20, 2026 - ✅ Started Domain 1 tutoring - ✅ Reviewed CIA Triad (3/3 correct) - ✅ Reviewed Policy Hierarchy (2/3 correct - learned about policy approval) - 🟡 Started Risk Management (formulas) - ✅ Set Claude as default LLM for tutoring - ✅ Integrated Claude Pro with OpenClaw --- ## 🔗 Quick Links - **Study Hub:** https://yeozhiyong.github.io/CISSP-Revision-2026/ - **Practice Tests:** https://yeozhiyong.github.io/CISSP-Revision-2026/practice-tests/ - **Flashcards:** https://yeozhiyong.github.io/CISSP-Revision-2026/flashcards/ - **GitHub Repo:** https://github.com/yeozhiyong/CISSP-Revision-2026 --- ## 🎯 Next Session **Topic:** Risk Management (continued) - Risk response strategies - Risk formulas practice - Due Care vs Due Diligence - Practice questions **When:** Next tutoring session with Cupid --- *Generated by Cupid AI Tutor - April 20, 2026* *Using Claude for deep reasoning and explanations*