CISSP Case Study

Mystery behind the CISSP® Case Study

The CISSP® Case Study is going to be a challenge you will have to face.   Most People will approach the CISSP® Case Study Questions the wrong way.

The first mistake that most will make is how you “process” any type of case study.

Most people follow the format of:

  • Q-Read the question in its entirety
  • A-Look at your choices, think to yourself, I don’t remember any of that
  • Q-Read the question again, looking for what you missed
  • A- Go back to the answers and start guessing
  • Q-If you are really bad, you’ll read the question again out of fear
  • A-And finally and reluctantly guess on an answer.  Sound Familiar? 

Thus the pattern is Q,A,Q,A,Q,A.   What really smart instructors should be teaching you (and most don’t or can’t) is how you tackle a Case Study Question.   We outline this completely if you want to check it out at CISSP® Case Study Download.

What you should do is look at your answers first.

Remember there is like 5 years of knowledge and experience you’re supposed to have right?  So you want to narrow that down in your brain by looking at your 4 choices first.    This at least gives you a starting reference point first to work with.   Try to find 1 (or a few) key words in the answer to give yourself clues.   These are were “Information Assurance Principles” come in place.    Look for words like, Identification, Authentication, Authorization, Accounting, (There are lots of others we talk about in the CISSP® Case Study)  What you really are doing here is comparing and contrasting information which is a popular testing measurement tool.

Either way,  by looking at your answer first, this forces you into the pattern of A,Q,A.

Format of Questions

Now I want to have an panacea moment here so allow me to deviate.

Case Study Questions like in the CISSP® normally will have this pattern.   Intro,  3 or more statements of information and a Conclusion.

  • Introduction
  • Point 1
  • Point 2
  • Point3
  • Summary, Conclusion, or Actual Question being asked  (<–You’re better off reading this part first and moving through the question backwards, Summary, Point 3, Point 2, Point 1, Probably don’t even need to read the introduction.)

So think about what happened?

  • Where are all of the time killer parts at (When you read the question 3 times for nothing because you guessed anyway)
  • Why is the new pattern faster? (You’re comparing and contrasting answers, so you are naturally focusing on the critical information already)
  • How much time did you save? (if you only read the conclusion and you were able to eliminate 2 of the wrong answers, that was a great use of your time right!!!)

Now, I could talk about this all day long, but like I said, if you want the full scoop,  check out the CISSP® Case Study which I give to you for FREE. Most of all, you have to understand how you get measured in any case study in an exam.  So if you have a list of most noteworthy CISSP® Content to study, put this down too!

Typical Case Study Formats

Let’s talk about Case Studies as a test question.  Case Studies usually fall under these categories which is especially relevant.

  • Estimation questions
  • Actual or theoretical client questions
  • Brain teaser questions
  • Graphic interpretation questions

As a learner you have to prepare for this.    Know this up front.  These are the rules and the mechanics of this “type” of test question.    Let’s explore a few.

Estimation questions.

I’ll illustrate this with math.   2+2+2+2+2+x=

  1. 10
  2. 11
  3. 12
  4. 13

Correct answer,  here you are walked down a logical path, and then you are asked to “estimate” based on some missing information.   Why did your brain chose X=2? and Pick 12 as the answer.    In theory,  it could have been 0-9.   What you are being tested on here is “estimation”.  Given the series, the next “logical” guess whould be that X is the same as the rest or 2.    Make no mistake here,   you’re ability to “estimate” information is what is being measures.

Actual or theoretical client questions.

These types of questions usually start out like:   You are an Information Security Manager of a large global network with regional offices in 6 countries.   Can you see here that I’m taking you down a “possibility” of a scenario.   The scenario may be generic or specific depending on the strategy of the question.    Keep in mind that with these types of questions, you “MAY” or “MAY NOT” have the experience,(either in the classroom or the real world) and this will play a significant havoc on your nerves.  Because now you’re like,  Oh, NO, I haven’t done that,  and then suddenly your guessing at answers due to fear.

Brain Teaser Questions

Example: If you have a chicken and a half, that lays an egg and a half in a day and a half.,   How many eggs will you have after 7 days.   Which if you are in to crazy stuff,   1.5Cx1.5Ex1.5D=7, none the less, what is being tested is your ability to think creatively and rationalize information

Graphic Interpretation Question

CISSP® Case Study, CISSP, Get Certified Now, Leo Dregier
CISSP® Case Study


Where should we place the Host Based Intrusion Detection System(IDS)?   This type of question is asking you to relate something to “something you have seen before” to test an experience.

So in conclusion, why does this the relate to the CISSP® Case Study?

Because if you don’t know the format of basic Case Study elements.  How can you ever pass the CISSP® Case Study questions?     If you want access to our CISSP® Case Study, you can get it here,  however, if you would like to be assessed of where you are in the learning process and come up with a rock solid game plan.  Then the CISSP® 3Hr Assessment is for you.


CISSP® 3Hr Assessment
CISSP® 3Hr Assessment


If you enjoyed this article, share it with someone who is studying for the CISSP® exam.   If you already have your CISSP®,  Please comment inline or on our social channels,  we’d love to hear from you!

Feel free to write us at info @