"Some great books in this video that strengthen the concepts of identity and access management."– Luke Ahmed

Today is Day 11 of Yihenew’s CISSP study plan, moving into Identity and Access Management (IAM) — a cornerstone of both CISSP Domain 5 and real-world security operations.

Key Areas Covered:

• Identity vs. Authentication — confirming who you are vs. proving it with credentials

• Authorization — determining what resources an authenticated user can access

• Accounting (AAA) — tracking user actions for auditing and non-repudiation

• Access Control Models — DAC, MAC, RBAC, and ABAC, with CISSP focusing on when each is most appropriate

• Federated Identity & SSO — streamlining access across multiple systems while maintaining security

• CISSP Tie-In — IAM is one of the most frequently tested areas on the exam because it connects technical controls with governance, risk, and compliance

In this CISSP study plan session, Yihenew emphasized that IAM is not just about passwords or tokens — it’s about managing trust. From role-based access control in enterprises to federated identity in the cloud, IAM defines who gets in, what they can do, and how we prove accountability.

Quick CISSP Practice Question

Which of the following best represents the principle of least privilege in IAM?

A. Allowing administrators unrestricted access at all times

B. Giving users access only to the resources necessary for their job role

C. Assigning broad permissions by default to speed up operations

D. Allowing users to self-select access levels through a portal

✅ Correct Answer: B. Giving users access only to the resources necessary for their job role

Explanation: The principle of least privilege ensures users only have the minimum access needed to perform their duties. This reduces risk and limits the damage of compromised accounts. Administrators should also operate under least privilege except when elevated rights are explicitly required.

Check out Yani's TikTok or see Day 10 or Day 12.

👉 Can you take the Yani Challenge?

55 days of consistent CISSP prep, tackling one domain at a time, using only the resources below:

Course

Luke's CISSP Course (2 months access, $89.98)

One-to-one Zoom sessions with Luke Ahmed (2 weeks before exam)

Books, Notes, and Practice Questions

All-In-One Study Guide by Shon Harris (Around $45)

Sybex 10th Edition (Around $52.55)

Official CISSP Practice Tests, 4th Edition by Mike Chapple & David Seidl (Around $35)

How To Think Like A Manager for the CISSP Exam ($29.99)

Total Cost: approxiamately $250 depending on your geographic location. Yani is located in East Africa.

📚 Study Plan (55 Days of Dedication):

- Weekdays: 2–3 hours of focused study—late nights and early mornings (5 AM).

- Weekends: 5–6 hours of deep study sessions.

Pass CISSP in first attempt within 100 questions.

Yani's biggest expense was his time, committment, consistency, and dedication! It was worth it because he passed first attempt in 100 questions using the above resources only.

If Yihenew could do it, so can you.

All the best Future CISSP. You can feel free to contact me anytime as well.

Thank you.

Luke Ahmed