- Chapter 1 : Information Security Auditing and Strategy
- Chapter 2 : Security Auditing, Governance, Policies and Compliance
- Chapter 3 : Security Assessments Classification
- Chapter 4 : Advanced Pre-Assessment Planning
- Chapter 5 : Security Audit Strategies and Tactics
- Chapter 6 : Synthetic Evaluation of Risks
- Chapter 7 : Presenting the Outcome and Follow-Up Acts
- Chapter 8 : Reviewing Security Assessment Failures and Auditor Management Strategies