The reading order is The Problem of Security, The Superior Security Practitioner, Real Security Management and (if you are brave enough) The Complete Bitter Pill.
The first book - The problem of security - is a savage takedown of all that is wrong with security. Whether as a business function, a career or as an industry, it's functionally broken. Find out how badly and why. We cannot fix it until we understand it.
This book as sold all over the world and led to countless emails thanking me for writing it. Your suspicions are confirmed, and you are not alone.
The second book from RSD. In the first book, I talked about the problem. Before we talk about what we need to 'do' about it, we need to talk about what we need to BE to resolve it.
This book provides a clear competency model for anyone seeking to separate themselves apart from their peers in security.
The third book in the RSD series provides a new philosophy for value-oriented organisational protection. Packed with new concepts, insights and models, this has been described as 'the most important security book to be written in the last 30 years.'
It separates protective practice from the burdens of failed risk management thinking and provides a new model for measuring protective value.
Not for the faint of heart. This ebook represents 44 weeks of hostility, snark and contempt for the 'security experts' on LinkedIn that got basic poll questions about security, risk and governance wrong - every single week. The complete collection of the polls and the newsletters that followed them. Not safe for...well, just about anywhere, actually. You've been warned.