Certified in Cybersecurity Study Guide
Preparing for ISC2's Certified in Cybersecurity (CC)? You are in the right place. This is the written companion to our CC practice exams, a complete walk through everything the test covers, in one place. CC is the foundational certification for people new to the field, so it assumes no IT background and starts from the ground up.
The CC exam is less about memorizing trivia than about showing sound judgment in everyday situations. Questions tend to describe a small scenario and ask which idea fits, so the skill being tested is naming the right concept, not reciting a definition. You will read a described harm and decide whether confidentiality, integrity, or availability is at stake, pick the access-control model that grants the least access, or tell business continuity (keeping work going during a disruption) apart from disaster recovery (restoring the technology afterward). When two answers both seem to work, the exam usually rewards the more proportionate, documented, least-privilege choice.
The guide follows the five official domains, weighted the way the real exam weights them: Security Principles (26%), Network Security (24%), Access Controls (22%), Security Operations (18%), and Business Continuity, Disaster Recovery and Incident Response (10%). Each chapter builds the mental model in plain language, separates the look-alike options with comparison tables and decision trees, and ends with a cheat sheet. Start at the top, or pick a domain from the list beside this page.