To calculate the overall star rating and percentage breakdown by star, we do not use a simple average. Instead, our system considers things like how recent a review is and if the reviewer bought the item on Amazon. It also analyses reviews to verify trustworthiness.
Technical terms were written in an easy to understand manner and the points to remember (clearly indicated within the book with icons) gave me an anchoring point to pinpoint the key definitions / topics to pay attention to and study for my cissp exam. I also appreciate the humour they have injected within the book to break away from the monotony of a serious subject.
I consult and resell on a lot of the major vendors in Cloud Access Security Brokers (CASBs) and NG (Next Gen) Firewalls, Web Application Firewalls (WAFs) and so on but decided recently to go after CISSP accreditation (can only become an associate without 5 years worth of credits).
This is not for dummies and certainly is a solid entry-level read - covers most areas of the exam. Perhaps focusses a little too much on Identity Access Management (IAM - makes up only 13% of exam).
Covers the basics forming disaster recovery, business continuity, CIA framework, maximum tolerable downtime elements and least privilege setups. Gives a fairly brief analysis of governance, policy and applicable laws.
Seems to be very lite on NetSec (although very much separate is covered in InfoSec). Very little on cloud or hybrid environments, although again is a separate qualification with CSP. The book (and all others) are very light on modern enterprise solutions and what InfoSec professionals are using as interface daily, what options are applicable.
The sample tests available online are a nice start but certainly won't fully prepare you for the exam - some strange questions on physical security (such as guard dogs) ... very unlikely to field those kinds of questions in the exam.
But overall a decent read (quite a few lists and subheadings though) and will give you a nice introduction to the theory behind information security and cybersecurity.
Tip? Read the whitepapers from most major vendors, follow their blogs, follow news sources and learn about how information is compromised in the industry alongside blogging what you learn yourself... There's a lot of material and I found this is the best way to retain that knowledge and remember the hundreds of acronyms. There's a lot of practices such as Unified Endpoint Management (UEM) or User & Entity Behavioural Analytics (UEBA) that don't get addressed in explicitly in the book but the theory is explained.
My day job involves designing IT Infrastructure that adheres to PCI Data Security Standards so knowing about Information Security is a key part of my day to day work. Because of this I find I need to be aware of the various Infosec requirements that are covered by qualifications like CISSP. I've always liked the approach that the Dummies series of books use to teaching and this was a no brainer choice when I saw it.
The book is updated for the 2018 domains and takes you through each of the 8 domains and highlights the key requirements before diving a little deeper into each. There is access to a set of flashcards for revision on the Dummies website and I do like this approach to reinforcing learning, personally I find it very effective.
Don't get me wrong, this is not a comprehensive guide to passing CISSP, but it is a great guide to the domains and gives you enough information to go out and carry out your own deeper study. It might even get me to go for the exams, you never know.