This volume, to state it succinctly, is little more than word soup. The desire to seek out third party certifications as a means of vetting candidates is understandable, however, if this manual is a guide, this certification does little more than insure that the candidate can understand the most inanely convoluted attempts at communication ever to emerge from the mind of a struggling MBA graduate.The discussion of management and organizational governance principles and structure is written in an absolutely impenetrable, rambling sentences comprised largely of useless words. The book is little more than an indoctrination into a useless and inane vocabulary wrapped around a few very risk management principles that could be explained far more concisely by a competent technical writer. More than half of the volume is spent introducing 'new' terminology and creating 'new' concepts, that are little more than a verbose repackaging of very basic concepts.If you need the CISM, find something written in plain English.although you might want to borrow this book from someone who failed the exam to get used to the absolutely infuriating word games that authors play with everything related to the certification.
The review manuals are a print product that provides a comprehensive overview of the content a CISA/CISM/CGEIT/CRISC will need to know in order to perform the task statements as outlined in the job practice areas. The review manual also serves as a good desk reference after you take the exam.
If you are looking to this cert as something to ad value to your information security business, look elsewhere. This volume, to state it succinctly, is little more than word soup. The desire to seek out third party certifications as a means of vetting candidates is understandable, however, if this manual is a guide, this certification does little more than insure that the candidate can understand the most inanely convoluted attempts at communication ever to emerge from the mind of a struggling MBA graduate.The discussion of management and organizational governance principles and structure is written in an absolutely impenetrable, rambling sentences comprised largely of useless words.
The book is little more than an indoctrination into a useless and inane vocabulary wrapped around a few very risk management principles that could be explained far more concisely by a competent technical writer. More than half of the volume is spent introducing 'new' terminology and creating 'new' concepts, that are little more than a verbose repackaging of very basic concepts.If you need the CISM, find something written in plain English.although you might want to borrow this book from someone who failed the exam to get used to the absolutely infuriating word games that authors play with everything related to the certification. If you are looking to this cert as something to ad value to your information security business, look elsewhere. I managed to read through this word soup by giving myself a '5 pages per day rule'. Otherwise it is completely impenetrable. I have 8 years of experience in the field, and reading this book is one of the toughest challenges I have had so far.
Unfortunately not in a good way.I do not believe reading this book is necessary in order to pass the exam, but you do need to familiarize yourself with the different concepts in security management. You should preferrably try elsewhere, reading shorter literature, white papers etc. Pretty much anything will be better than going through this book.Here are the major problems with the book- Huge amount of redundancy. An editor should reduce this down to 25%- Too many words. In striving to describe concepts and processes accurately and completely, the content drowns in words. Definitions become so wide, so vague, telling the reader everything and nothing at the same time.- No examples, just theory.
And this is not a theoretical subject - security management needs experience, not theory. So without years of just that, you will really struggle to see clearly what exactly each paragraph is trying to tell you- 'Helpful' images and tables are mostly unhelpful. These things are meant to simplify for the reader, but does nothing of the sort. Usually just copy pasted from some framework, probably so that the writer could feel he is offloading some of the stuff he might forget to put in words.If you are determined to read this book I would do this- Read headings, get the most important definitions and concepts, skip most of the content- Purchase any used, old edition, don't pay the horrific price tag of the new version- Leave a review like this. I purchased the Review Manual and the Questions, Answers & Explanations Manual together. I was extremely disappointed to receive two paperback books for the price of hardback, scholarly books. My only guess is that these books are geared toward a college course on the CISM; otherwise they would let the purchaser know that he/she was purchasing softback books.
Maybe that point was in the description and I overlooked. At any case, I've already marked in the book so I can't return it. I recommend not purchasing this book at this price and going with another vendor for less cost and better sturdiness.
Share. LinkedIn. Pomfort dpxheadereditor free version download for mac.
Facebook. H264 jmf encoder gui 1.0 build 20090510 for mac download. Twitter0I passed the ISACA’s CISM exam on May 10, 2018, and since then have received a number of messages asking about the preparation strategy and schedule, especially from the fellow students. Before I begin, please be informed that my preparation strategy could be very different from that of yours since I was juggling with semester midterms/exams, assignments, part-time 20/40 hour work week and additional responsibilities of CCIS Masters Council.