Chapter 16. Taking the Real Exam

Now you’ve done it! You’ve accessed the final chapter. We are at the final countdown! This chapter shows you how to go about taking the exam. Then it goes over some tips and tricks I have used over the years that have helped me to pass the exam. Finally, we discuss some of the possible future avenues that can lead you to a career in IT security.

Foundation Topics: Getting Ready and the Exam Preparation Checklist

The CompTIA Security+ certification exams can be taken by anyone. There are no prerequisites; although, CompTIA recommends prior networking experience and the Network+ certification. For more information on CompTIA and the Security+ exam, go to www.comptia.org/certifications/listed/security.aspx.

To acquire your Security+ certification, you need to pass the SY0-201 exam, which is approximately 100 questions. As of the publishing of this book, the passing score is 750 on a scale of 100–900. You get 90 minutes to complete the exam. The exam is administered by two testing agencies: Sylvan Prometric (www.2test.com) and Pearson Vue (www.vue.com). You need to register with one of those test agencies to take the exam. The exam can be taken in English or Spanish.

Because of the somewhat unorthodox grading scale, it is difficult to estimate exactly what percentage of questions you need to get correct to pass the exam. The best bet is to attempt to know as much as possible and shoot for 85% correct when first taking a practice exam.

It is important to be fully prepared for the exam, so I created a checklist that you can use to make sure you have covered all the bases. The checklist is shown in Table 16-1. Place a check in the status column as each item is completed. Historically, my readers and students have benefited greatly from this type of checklist.

Table 16-1. Exam Preparation Checklist

Table 16-2 gives a partial example of a cheat sheet that you can create to aid in your studies. For example, the first row shows common ports. Add information that you think is important or difficult to memorize. Keep the descriptions short and to the point. A few examples are listed in the table.

Table 16-2. Example Cheat Sheet

Tips for Taking the Real Exam

Some of you will be new to exams. This section is for you. For others who have taken exams before, feel free to skip this section or use it as a review.

The exam is conducted on a computer and is generally multiple choice. You have the option to skip questions. If you do so, be sure to “mark” them before moving on. There will be a small checkbox that you can select to mark them. Feel free to mark any other questions that you have answered but are not completely sure about. When you get to the end of the exam, there will be an item review section, which shows you any questions that you did not answer and any that you marked. Though you shouldn’t mark a lot of items and don’t want to skip around too much, sometimes it is unavoidable and can save time in the long run if a question is overly difficult. A good rule of thumb is to keep the marked questions between 10% and 20%.

The following list includes tips and tricks that I have learned over the years when it comes to taking exams. By utilizing these points, you can easily increase your score.

First, let’s talk about some good general practices for taking exams:

• Pick a good time for the exam—It would appear that the least amount of people are at test centers on Monday and Friday mornings. Consider scheduling during these times. Otherwise, schedule a time that works well for you, when you don’t have to worry about anything else. Keep in mind that Saturdays can be busy.

• Don’t over-study the day before the exam—Some people like to study hard the day before; some don’t. My recommendations are to study off the cheat sheet you created, but in general, don’t overdo it. It’s not a good idea to go into overload the day before the exam.

• Get a good night’s rest—A good night’s sleep (7 hours to 9 hours) before the day of the exam is probably the best way to get your mind ready for an exam.

• Eat a decent breakfast—Eating is good! Breakfast is number two when it comes to getting your mind ready for an exam, especially if it is a morning exam. Just watch out for the coffee and tea. Too much caffeine for a person who is not used to it can be detrimental to the thinking process.

• Show up early—Both testing agencies recommend that you show up 30 minutes prior to your scheduled exam time. This is important; give yourself plenty of time, and make sure you know where you are going. You don’t want to have to worry about getting lost or being late. Stress and fear are the mind killers. Work on reducing any types of stress the day of and the day before the exam. By the way, you really do need extra time because when you get to the testing center, you need to show ID, sign forms, get your personal belongings situated, and be escorted to the your seat. Have two forms of ID (signed) ready for the administrator of the test center. Turn your cell phone or PDA off when you get to the test center; they’ll check that, too.

• Bring ear plugs—You never know when you will get a loud testing center—or worse yet, a loud test taker next to you. Ear plugs help to block out any unwanted noise that might show up. Just be ready to show your ear plugs to the test administrator.

• Brainstorm before starting the exam—Write down as much as you can remember from the cheat sheet before starting the exam. The testing center is obligated to give you something to write on; make use of it! By getting all the memorization out of your head and on “paper” first, it clears the brain somewhat so that it can tackle the questions. I put paper in quotation marks because it might not be paper; it could be a mini dry erase board or something similar.

• Take small breaks while taking the exam—Exams can be brutal. You have to answer one hundred questions while staring at a screen for an hour. Sometimes these screens are old and have seen better days; these older flickering monitors can cause a strain on your eyes. I recommend small breaks and breathing techniques. For example, after going through every 25 questions or so, close your eyes, and slowly take a few deep breaths, holding each one for 5 seconds or so, and releasing each one slowly. Think about nothing while doing so. Remove the test from your mind during these breaks. It takes only half a minute but can really help to get your brain refocused.

• Be confident—You have studied hard, gone through the practice exams, created your cheat sheet—done everything you can to prep. These things alone should build confidence. But really, you just have to be confident. You are great...I am great...there is no disputing this!

Now let’s talk about some methods to use when faced with difficult questions. Use the following methods in the face of all difficult questions.

• Use the process of elimination—If you are not sure about an answer, first eliminate any answers that are definitely incorrect. You might be surprised how often this works. This is one of the reasons why it is recommended that you not only know the correct answers to the practice exams’ questions, but also know why the wrong answers are wrong. The testing center should give you something to write on; use it by writing down the letters of the answers that are incorrect to keep track.

• Be logical in the face of adversity—The most difficult questions are when two answers appear to be correct, even though the test question requires you to select only one answer. Real exams do not rely on “trick” questions. Sometimes you need to slow down, think logically, and really compare the two possible correct answers.

• Use your gut instinct—Sometimes a person taking a test just doesn’t know the answer; it happens to everyone. If you have read through the question and all the answers and used the process of elimination, sometimes the gut instinct is all you have left. In some scenarios you might read a question and instinctively know the answer, even if you can’t explain why. Tap into this ability. Some test takers write down their gut instinct answer before delving into the question and then compare their thoughtful answer with their gut instinct answer.

• Don’t let one question beat you!—Don’t let yourself get stuck on one question. Mark it, move on to the next question, and return to it later. When you spend too much time on one question, the brain gets sluggish. The thing is, with these exams you either know it or you don’t. And don’t worry too much about it; chances are you are not going to get a perfect score. Remember that the goal is only to pass the exams; how many answers you get right after that is irrelevant. If you have gone through this book thoroughly, you should be well prepared, and you should have plenty of time to go through all the exam questions with time to spare to return to the ones you skipped and marked.

• If all else fails, guess—Remember that the exams might not be perfect. A question might seem confusing or appear not to make sense. Leave questions like this until the end, and when you have gone through all the other techniques mentioned, make an educated, logical guess. Try to imagine what the test is after, and why they would be bringing up this topic, vague or strange as it might appear.

And when you finish:

• Review all your answers—Use the time allotted to you to review the answers. Chances are you will have time left over at the end, so use it wisely! Make sure that everything you have marked has a proper answer that makes sense to you. But try not to over think! Give it your best shot and be confident in your answers.

Beyond the CompTIA Security+ Certification

After you pass the exams, consider thinking about your technical future. Technical growth is important. Keeping up with new technology and keeping your technical skills sharp are what can keep you in demand. This technical growth equals job security.

Information Technology (IT) people need to keep learning to foster good growth in the field. Consider taking other certification exams after you complete the Security+. The CompTIA Security+ certification acts as a springboard to other certifications. For example, you might choose to go for other more difficult nonvendor certifications such as the CISSP. And of course, there are vendor-specific certifications from Microsoft, Cisco, Check Point, and many others. Now that you know exactly how to go about passing a security-based certification exam, consider more certifications to bolster your resume.

The best advice I can give is to do what you love. From an IT perspective, I usually break it down by technology, as opposed to by the vendor. For example, you might want to learn more about firewalls. If that is the case, you should delve into Check Point appliances, Cisco PIX and ASA devices, Microsoft ISA Server/Forefront, and as many of the SOHO router/firewalls that you can get your hands on. And that is just a small sample of what is out there where firewalls are concerned. Plus, that is just one portion of the security field. Whatever segment (or segments) of security you decide to pursue, learn as much as you can about that field(s) and all its vendors to stay ahead. Read up on the latest technologies, visit security websites, read security periodicals, and keep in touch with other fellow security people. Consider security conferences and seminars and ongoing training. Taking it to the next level, you might decide that there is a security threat that you would like to address. Who knows, in the future you might be interested in developing a security application or secure hardware device. My advice is this: Good engineering can usually defy malicious individuals; the better you plan your security product, the less chance of it being hacked.

Whatever you decide, I wish you the best of luck in your IT career endeavors. And remember that I am available to answer any of your questions about this book via my website: www.davidlprowse.com.

Hands-On Lab

Lab 16-1, “How to Approach Exam Questions,” has only a video solution. There is no step-by-step lab to go through first, so just proceed to watching the video.

There are no other Exam Preparation Tasks for this chapter as there are for the other chapters. After you have watched the video, move on to the two practice exams after this chapter.