I propose a new rule. I think it’s a very modest and very reasonable proposal. It has two parts.
1. No meeting can last longer than 6 hours (the length of the CISSP exam)
2. Material presented in said meetings may have no more than 250 items (the same number of questions in a CISSP exam)
I raise these points because I frequently find myself in meetings where we’re evaluating some new technology, or an old one under new standards, and it turns into CISSP-plus: an 8-hour marathon where we look at and argue about 400 things. And the first argument of the day lasts 30 minutes, naturally. The upside is that we aren’t being graded. But the downside is that we keep having these meetings.
My assignment for today is to find out if the date of eligibility for CPE (Continuing Professional Education) credits starts the date of the exam, or the date of certification.
David Farquhar is a computer security professional, entrepreneur, and author. He has written professionally about computers since 1991, so he was writing about retro computers when they were still new. He has been working in IT professionally since 1994 and has specialized in vulnerability management since 2013. He holds Security+ and CISSP certifications. Today he blogs five times a week, mostly about retro computers and retro gaming covering the time period from 1975 to 2000.