ISC2 CC 30-, 60-, and 90-day study plan with topic order, review loops, and final-week priorities.
This plan is a compact route for Certified in Cybersecurity (CC). It assumes you are using TechExamLexicon for concept clarity and the exact IT Mastery page for practice routing.
| Day | Focus | What to do |
|---|---|---|
| Day 1 | Orientation and scope | Read the exam guide overview and official vendor page, then use this study plan to mark the lanes you already know and the lanes that need practice. |
| Day 2 | Security principles and governance | Understand confidentiality, integrity, availability, risk, policy, ethics, and compliance basics. |
| Day 3 | Access control and identity | Use authentication, authorization, accountability, least privilege, MFA, and lifecycle management. |
| Day 4 | Network and system security | Recognize network controls, secure configuration, endpoint protection, monitoring, and hardening. |
| Day 5 | Incident response and operations | Follow detection, reporting, containment, recovery, communication, and lessons learned. |
| Day 6 | Security awareness and resilience | Use training, backup, recovery, business continuity, and safe user behavior. |
| Day 7 | Timed review and scheduling decision | Run a timed practice block, review explanations, update a one-page rule sheet, and verify current vendor facts before scheduling. |