I just wrapped up reading "The Art of Deception" by Kevin Mitnick discussing the security issues that surround Social Engineering. It was a very good book detailing all the human sides of Information Technology Security. A lot of good procedures and policies in the book that are outlined for companies to follow. It's a good read if you're a Security Administration at your company or where multiple hats and are both the IT Admin and in charge of security as well. I am going to read the other book that was written by him which is "The Art of Intrusion" seems like another intresting book to read. If you don't know who Kevin Mitnick is just type his name into google you know right after that.