I recently read that, according to (ISC)², most people do not pass the CISSP exam on the first try. Does this alter how people should prepare? Does it make sense to take the exam a first time with minimal preparation, learn what it's like, and then undergo a more rigorous process before taking the exam a second time? I don't want to waste money on boot camps or training courses and still not pass.