Official (ISC)2 Guide to the CCFP CBK

Posted on by Ben Rothke

The Certified Cyber Forensics Professional (CCFP) is the latest certification from ISC2, creators of the CISSP certification.   

The CCFP, like the CISSP, is built around a common body of knowledge (CBK) that includes established forensics disciplines as well as newer challenges, such as mobile forensics, cloud forensics, anti-forensics, and more.

For those looking for reference guide, the Official (ISC) 2 Guide to the CCFP CBK  is one of two guides currently available.  The other being the CCFP Certified Cyber Forensics Professional All-in-One Exam Guide by Chuck Easttom.

As to the Official (ISC) 2 Guide to the CCFP CBK, the book is written by experience cast of authors and contributors.  While listed at 992 pages, a number of the chapters have large fonts, more akin to a large-print edition to accommodate people who have poor vision.


Some of the material has overlap given the numerous authors.  It would be helpful if the material could also be better cross-referenced.  But that is the difficulty of a reference text with many authors.

The book covers in depth the six CCFP domains of the CBK, namely:

  • legal and ethical principles
  • investigations
  • forensic science
  • digital forensics
  • application forensics
  • hybrid and emerging technologies

For the experienced forensics professional looking to get a handle on the content for the CCFP exam, the Official (ISC) 2 Guide to the CCFP CBK is a decent study guide, at least until something better comes along.



























Auerbach  CRC 1482262479 Rothke 978-1482262476 Peter Stephenson

Ben Rothke

Senior Information Security Manager, Tapad

forensics & e-discovery fraud

Blogs posted to the website are intended for educational purposes only and do not replace independent professional judgment. Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSA Conference™, or any other co-sponsors. RSA Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.

Share With Your Community

Related Blogs