Study Notes and Theory - A CISSP Study Guide

The CISSP is much more than just something to add to your resume.  Spending hours and hours studying the material and watching videos naturally just makes you a stronger security professional.  Even if you never take the exam itself, just studying and reading the different topics of the CISSP Common Body of Knowledge can only increase your knowledge in the security field.  

You have decided to focus and dominate this exam.  You have decided to start focusing on improving your career in the information security industry.


A lot of the stuff on the site is already free like the blog posts, study experiences, and study resources.  It might take a lot more effort on your part, but it is possible to pass by just using the free stuff and reading your study guides.

If you are looking for custom CISSP videos, original study notes, and custom scenario-based practice questions with explanations, then that's why we have a paid members section.

Subscription Plans


$60/three months

$115/six months

  • Based in the United States of America, EST.

  • Membership approval may take up to 24 hours.

  • Cancel anytime.

  • Automatically renews until cancelled.

This is not a CISSP website that will guarantee a pass.  Passing the exam is a personal choice that comes out of sheer self-dedication and hard work.  In the end, it's just going to be you and the exam.  No notes, no books, no videos, no instructors - just you and the new CAT format exam.

"Luke, I passed man!!  Thanks for all the resources you provide for the group. Joining the group was a key and a big help on this long journey." - Setta V.

What I do guarantee, is that you will find the same amount of information here with your

$24.99 monthly membership, that you would at a $3,000 5-day bootcamp class.  The videos on this site are updated to reflect the latest CISSP concepts along with real world examples to really ingrain the knowledge into your memory. Every single practice question is original and scenario based with explanations, and not found anywhere else on the web.


Domain 1: Security and Risk Management

The Importance of BCP/DRP

Domain 3: Security Engineering

Defense in Depth

Domain 5: Identity & Access Management

Real-World OAuth 

Domain 7:  Security Operations

Job Rotation

Domain 2: Asset Security

Data Destruction

Domain 4: Communications & Network Security

The TCP Handshake

Domain 6: Security Assessment and Testing

Certification vs Accreditation

Domain 8: Software Development Security

SQL Injection Demonstration

"I got a lot of help from his videos. They are too good. He will make you relate with his real life experiences which you will understand and not forget ever. He has given his heart and soul to create those videos and you will feel that." - Prashant M.


All practice questions are created by me over the course of teaching CISSP for 4 years. The questions are verified by another CISSP for accuracy and context, and they all come with explanations.  The questions are drawn from real-world experience and meant to be harder than the actual CISSP questions.


With your Study Notes and Theory membership you also get to be part of our Telegram group.  This group was founded in conjunction with Study Notes and Theory to help anyone pursuing the CISSP certification. It has helped produce over 100 CISSPs worldwide!

Click here for more information about the Telegram Group.


If you feel like the CISSP is not in your future or would like to come back to it at a later time, you can always cancel.  I'd hate for you to waste your time and money on something you will not use.

If at any time you wish to cancel future payments you should contact Study Notes and Theory.

Alternatively, you may call PayPal Customer Service at 1-888-221-1161. You will be required to provide your first and last name, the phone number or email address you provided when you signed up, and the last 4 digits of the credit card you registered.

Thanks for visiting the site.

Luke Ahmed, CISSP

"I am sure your questions will be beneficial for a lot of CISSP candidates since it stands above any of the current test engines in its genre.  When others put signature dynamics, you put an effective heuristic approach towards the questions. I would encourage all CISSP aspirant's to practise such questions because you will only realize its real value after the exam!"  - Kiranz A. 

Recent Member Updates

May 9th, 2018

Why We Need


April 25th, 2018



April 4th, 2018



March 26th, 2018



February 24th, 2018

25 Practice


February 19th

Packet vs

Stateful Firewalls

February 16th


Network Security

February 11th

1-2 Months

Before The


February 7th


Set E

February 2nd

Due Care/

Due Diligence

January 28th

2018 April CISSP

CBK Review

January 21st

Transport Layer

Security Video

January 19th

Flashcards Set D

January 15th

The Return of

Dan's PDF Notes!

January 11th

Code of Ethics


January 8th


January 1st

25 Practice


December 18th


Absolute Notes"

December 12th

Covert Channels


December 7th

Third Set of 

50 Flashcards

December 4th

25 New Practice Questions

Total Questions: 200

November 29th

A PDF of Dan's Notes

November 24th

The New CISSP 

CAT Exam Video

November 19th


Attack Video

November 15th

Ciphertext-Only Attack


November 12th

Digital Signatures Video

November 6th

Second Set of

50 Flashcards

October 30th

Data Classification

Practice Question

October 25th

50 Flashcards

Set A

October 20th

MD2 Hashing


October 13th

Hard Token Implementation

October 7th

Protecting Privacy


October 2nd

25 New Practice Questions

Total: 175

September 27th

CDC: Data Verification


September 25th

Best Evaluation Method


September 21st

Equifax and CISSP


September 16th

Biba Model Video

September 8th

IPSec VPN Practice

Question Video

September 6th

25 New Practice Questions

Total Question: 150

September 3rd

Physical Controls

6 Subcategories of Controls

August 30th

5 Practice Question

Review Video

August 27th

Bell-LaPadula Model

August 20th

Mandatory Access


August 16th

Old OSI Model Video

August 14th

25 New Practice Questions

Total Question: 125

August 10th

New Study Technique:
Cross-Domain Correlation:

DES and Crypto Work Factor


August 6th

OSI Model Part 1

OSI Model Part 2

August 2nd

New Study Technique:
Cross-Domain Correlation:

Capability Maturity Model

July 31st

Technical Controls

6 Subcategories of Controls

July 28th

Study Notesfor Security Assessment and Testing

July 26th

Practice Question Video

Clark-Wilson vs Biba

July 11th

Administrative Controls

6 Subcategories of Controls

July 11th

CISSP Code of Ethics Video

July 9th

25 New Practice Questions


July 7th

Video on Kerberos

Video on Network Cabling

July 4th

Cryptography Notes

July 4th

Software Security Notes

© 2013 Study Notes and Theory
Terms and Conditions/Privacy Policy

Proudly created to make you

a better security professional.