Its the first time i decided that i have to cut the book in parts to actually read it! Yes i took the biggest knife i had at home and cut the book in 5 parts. Thats why i will review this book in parts : - )

First part i read is chapters 1 to 3 which spans over more or less 150 pages.

To be honest first three chapters are not great. I guess there are some interesting stories about people going to jail for fraud or companies loosing credit cards due to lack of security but its not really what i was hoping for.

I took this book to learn how do people commit fraud and how to protect your company from it. I wanted to learn something about real methods, real procedures, guidelines, best practices and pitfalls. what i got so far was a lot of words. I was expecting it to happen as CISSP book has 1200 pages! I mean, come on! How much of real information can you gather and pack into 1200 pages?! that would take a dozen of PHD's!

Any way i think chapters 1-3 are not really so bad just not very informative. I don't care that much about dictionary-like definitions. I want to see how to create and execute risk assessment or how to approach PCI compliance test etc. I think there is too much space used to convince the reader that security is important. If CISSP is aimed at high-end security professionals, then is it not safe to assume they know that security is important? Would you really try so hard to convince them or start every paragraph with a sentence saying that in current times companies are more and more exposed to IT attacks etc. Its just my personal opinion but i think its way too wordy.

On the other hand chapters 1-3 do show some useful methods. Describe how to prepare risk analysis and how could you calculate relative risk of particular incidents happening. There is a high level overview of what security frameworks are and what different types of documents are for. Its not really anything amazing but its quite interesting.

In summary not really great part of the book. Too simplistic (like readers are non IT people), too wordy, repeating the obvious over and over again.

Partial Book Score: 5/10