Summary of How to "Think like a Manager" for the CISSP Exam

00:00:00 - 00:30:00

In this video, a security leader provides guidance on how to think like a manager when studying for the CISSP exam. The video covers topics such as incident response, policy development, and remediation, and provides a drill-down on different types of cryptography and their uses. It finishes by providing advice on how to ask why when making decisions, which is important for thinking like a manager.

• 00:00:00 This video covers the key concepts of the "CISSP mindset," which is the focus of the CISSP exam. It explains that due diligence and do care are related concepts, and that due diligence involves activities like research, planning, and evaluation, while do care includes activities like implementation, operation, and upkeep. The video also outlines the importance of due diligence and do care in reducing liability for senior management and downstream parties in the event of a loss.
• 00:05:00 The video discusses the difference between due diligence and do care, and provides practical examples of each. Due diligence is the process of investigating a situation before making a decision, while do care is the process of taking appropriate action after a decision has been made.
• 00:10:00 The video discusses the concepts of management and responsible action, and how these concepts are relevant to security leaders. It also discusses the concept of thinking like a manager, and how understanding your priorities will help you focus on the most important aspects of your role. Finally, it provides an example of how cost versus value can be important when making decisions as a security leader.
• 00:15:00 In this YouTube video, a security leader explains how to calculate the value of a safeguard, or the cost of a security measure that would prevent an organization from incurring a potential revenue loss. The video also discusses how to determine whether a safeguard is cost effective.
• 00:20:00 The video discusses how to think like a manager for the CISSP exam, focusing on key processes and frameworks. It covers topics such as incident response, policy development, and remediation. It concludes with a discussion of how to choose the correct answer for a process question.
• 00:25:00 The video provides guidance on how to think like a manager when studying for the CISSP exam. It explains that a manager would know the difference between four security areas (security guidelines, security procedures, security baselines, and shared responsibility model), and would be familiar with cryptography algorithms. The video provides a sample question about cryptography and provides a great resource to help learners close any gaps in their knowledge.
• 00:30:00 The video discusses how to think like a manager when it comes to cryptography, and provides a drill-down on the different types of cryptography and their uses. It finishes by providing advice on how to ask why when making decisions, which is important for thinking like a manager.