I'm sure we have a few CISSP's here so I think its a good place to ask, What is generally accepted by ISC2 as requisite experience in the CBK domains? Does it have to be document able resume type experience?
I mean I hope to look at SSCP in a year or two, and I have little formal experience in the field, I've dealt a lot with malicious code as a PC repair specialist, but again, not in a repair shop. even in the military, though I performed roles that may fall under the domains, It wasnt part of my job description.
"You're only smoke and mirrors..."