Welcome to the RecertHero soft launch!
Submit bugs, feature requests, and feedbackISC2 · Under 2 hours
Short opportunities — under two hours each — that count toward CISSP renewal. Useful when you need to bank a few credits between deeper sessions. RecertHero estimates the CPE value of every opportunity, so you can plan toward the 120 CPEs CISSP requires every 3 years — without re-keying each entry into ISC2's portal.
13 results mapped to CISSP, soonest first.
An end-to-end walkthrough of modern Zero Trust design: identity-aware proxies, micro-segmentation, continuous authorization, and how to evolve a legacy perimeter network without a forklift rewrite.
How to design an insider risk program that respects employee trust, with concrete signal sources, escalation playbooks, and HR/Legal partnership patterns.
How appsec teams at high-velocity orgs run lightweight threat modeling during planning. Includes the STRIDE-per-element worksheet template and three real case studies.
A leader's view of AI governance: model risk classification, vendor due diligence, the EU AI Act in practice, and a sample policy template you can adapt.
Practical hardening for production Kubernetes: PSA, NetworkPolicies, admission webhooks, audit logging, and the most common CIS Benchmark gaps you'll find in a real cluster.
Three QSA panelists walk through the most-failed PCI DSS 4.0 requirements, with evidence examples that pass and ones that don't.
Implement a defense-in-depth security strategy for Azure Storage. Harden storage accounts, govern access with Microsoft Entra ID and stored access policies, enforce network perimeter controls using firewall rules and private endpoints, and enable Microsoft Defender for Storage to detect threats from malicious uploads and compromised AI agent credentials.
Learn to design and implement strong authentication controls, apply Just-in-Time privileged access strategies, and extend identity-based security to AI-powered applications using Microsoft Entra.
A 10-minute video explaining why identity is the new perimeter, with three concrete control patterns: just-in-time access, conditional access, and continuous verification.
Implement a defense-in-depth security strategy for Azure Key Vault. Configure hardened vault settings, control access through RBAC and just-in-time privilege, manage keys, secrets, and certificates, and detect threats using Microsoft Defender for Key Vault and Defender CSPM.
A facilitator's kit + recording of a 90-minute exercise simulating a ransomware incident touching on-prem AD, two cloud tenants, and a third-party MSP. Includes injects, scoring sheet, and after-action template.
NIST's finalized PQC standards, hybrid key exchange in TLS 1.3, and a phased migration playbook that prioritizes high-value, long-lived secrets.
A focused refresher on CISSP Domain 1 for re-certifiers. Covers the major framework families (NIST, ISO, COBIT), risk treatment options, and exam-style scenario discussion.
ImportantRecertHero is an independent aggregator. Credit estimates are guidance only — always verify with your certifying body.