CISSP Domains 5 & 6: Exam Traps Rapid Review

Most CISSP Domain 5 and 6 questions are lost to look-alike answers: OAuth vs OIDC, a vuln scan vs a pen test, SOC 2 Type I vs Type II. This rapid review drills every high-yield trap pair in Identity and Access Management (13% of the exam) and Security Assessment and Testing (12%), so you can find the one hinge word that separates two ‘correct’ answers. With Professor Erica, Liam, Mei, and Michael, we move fast through the exact confusions the exam is built to exploit, then close with a manager-mindset trap drill on the BEST and MOST question patterns.

In this video:

• Identification vs authentication vs authorization, and why access-rights questions are authorization
• Why two passwords are not MFA, and how FAR, FRR, and a lower CER decide a biometric scenario
• OAuth (authorization) vs OIDC (authentication) vs SAML, plus the Kerberos clock-sync trap
• MAC vs RBAC vs ABAC vs DAC sorted by who decides access, and why deprovisioning comes 1st
• Vulnerability assessment finds, penetration test proves, plus SAST vs DAST
• SOC 2 Type I (design at a point in time) vs Type II (operating effectiveness over a period)

Anchored to the (ISC)2 CISSP Detailed Content Outline effective April 15, 2024.

▶ Watch next: CISSP Domain 1: Ethics & the 5 Pillars (Canon Order) https://www.youtube.com/watch?v=0Sn04fbYrnM