Reddit reviews SSCP Systems Security Certified Practitioner All-in-One Exam Guide, Third Edition

I passed a few days ago. I felt pretty comfortable during the whole exam. I have a MSCSIA from WGU (I took SSCP 4 months after graduating). I have a CCNA, CCNA Sec, Security+, and a few others. I consider the SSCP a Security+ that uses more applied knowledge vs security+ (sec+ seems to quiz you more on facts you can answer the question with)

​

I utilized:

• Lynda that comes with WGU
  
  • https://www.lynda.com/ (login with WGU credentials; usable by WGU alumni aswell).
    
• ISC2 SSCP Official Practice Tests
  
  • (maybe google this.... or buy it from amazon ) then use the code inside the book to get access to the same questions, but in online form.
    
• SSCP AIO
  
  • This also gives you access to TotalSEM online quizzes
    
• Also had referenced to use pluralsight via WGU as well, but I like to watch videos as they line up with the course objective syllabus, there's also flashcards on ISC2 that I looked at maybe once, but I don't recommend it.
  
  ​
  
  I'd give this to anyone looking to pass the SSCP:
  
  I utilized Lynda; look for SSCP Cert Prep 1,2,3,4,5,6,7 while taking notes with the videos. After watching each video for one of the domains, I would use the questions at the end to see how I tested. For each question I got wrong, I would write it down and continue to the ISC2 Offical Practice Tests online and practice the entire set of questions for that domain. I DID THIS IN PRACTICE MODE. For each question I got wrong, I wrote them down in the same fashion I did for the end of domain questions in Lynda, and read the explanation as to why I got it wrong, and understood the purposes of the other answers that were wrong (if firewall was the wrong answer, I would understand what the purpose of a firewall was, and I would understand why VPN was the correct answer). Basically, knowing what each of the 4 answers are will give you the best chance for the SSCP.
  
  After I wrote down the issues I was having, I utilized the AIO book and tracked down the answers to the questions I got wrong and read the related section and took notes.
  
  I would re-take the official practice tests again only if I felt I was "shakey" (usually if I scored under 75%).
  
  I did this for each domain, and then after all domains I used the end of chapter tests in the AIO as another set of questions.
  
  I then took the 1st practice test with the official practice questions and got a 68% (I swear this was way harder than the SSCP, DON'T WORRY!)
  
  After the first practice test, I found out why I was wrong, studied the AIO on those again, and took notes.
  
  I then moved to the TotalSEM provided by the AIO book, and took 1 set of 125 questions, and then a second set with 250 questions. TotalSEM is easier than the SSCP, but i feel if you're getting over 90% on them, you will be ready for the SSCP.
  
  After I finished the 250q set from TotalSEM (the day before my exam), I took the second practice test from official practice test and got a 73%. Next day I took and passed the SSCP (provisionally).
  
  ​
  
  I took 7 weeks of studying (1 week per domain) and 1 week of pure test taking.
  
  ​
  
  TL;DR:
  
  

1. Watch the set of related videos per domain in Lynda, taking notes.
   
2. End of Lynda, answer questions and jot down what/why you got it wrong
   
3. Open the official practice test questions and take all of the domain questions in practice mode, again jotting down why/what you got wrong
   
4. Open AIO and find the section pertaining to the questions you got wrong and read it while taking notes
   
5. Take the domain test again from the official practice test
   
6. Do this until you do all 7 domains
   
7. Take 1st practice test from Sybex in test mode
   
8. jot down what you got wrong, and go back to AIO and take notes again
   
9. Go to TotalSEM and take 1 set of 125 questions, and a 2nd set of 250 questions (practice mode)
   
   1. I did not study after getting these questions wrong; I got 91% and 93% my first times
      
10. Take 2nd practice test from Sybex in test mode
    
11. Take SSCP.

Your most important starting step is to make sure that you have the foundational knowledge, at least at a conceptual level. I'm a big fan of books, so I would recommend a few to you.

Pick ONE of these. Exam is not necessary, but recommended:
Mike Meyers CompTIA Network+ All-in-One Exam Guide
Todd Lammle's CCENT Study Guide - ICND1

Pick ONE of these. Pay attention to business terminology as well. Again, exam is not necessary, but recommended:
Mike Meyers CompTIA Security+ Certification - SY0-501
CompTIA Security+ All-in-One Exam Guide
Darril Gibson SSCP All-in-One Exam Guide

100% read this. It's the Bible of Python scripting. Second edition is brand spanking new too:
Automate the Boring Stuff with Python

This is a good all-around Penetration Testing book that teaches Linux too. You don't *have* to use Kali, Ubuntu is probably less intimidating to those new to Linux, but you will have to install your own software/packages. This is the only book on this list I haven't read, but I often see it recommended:
Penetration Testing: A Hands-on Introduction to Hacking

While you read these books, you should install some kind of Linux distro on a home computer and use it for practice. I would also recommend doing HackTheBox(first challenge is to hack the login page) and starting with the easy boxes. Do as much as you can on your own first, but if you get stuck, watch IppSec's YouTube walk-through for the box you are on. Might be a bit overwhelming until you get through most of the books on that list though.

You should also start looking towards either the eJPT/eCPPT, the OSCP, or GPEN at this point, as those are the best value certifications in this field and will hold a lot of weight at an interview. There's some stigma with certifications in IT/CS, but the ones I listed are all baseline knowledge and/or high value for those in this field. At the very least the knowledge will go far. But definitely avoid anything from EC-Council like the plague.