Managing Information Security Risks: The OCTAVE Approach

OCTAVE enables any organization to develop security priorities based on the organization's particular business concerns. This approach provides a coherent framework for aligning security actions with overall objectives. Managing Information Security Risks, written by the developers of OCTAVE, is the complete and authoritative guide to its principles and implementations. The book provides a systematic way to evaluate and manage information security risks, illustrates the implementation of self-directed evaluations, and shows how to tailor evaluation methods to different types of organizations.

BOOK

Authors

Christopher J. Alberts

Audrey J. Dorofee

This book is related to the following area(s) of work:

Security and Survivability

Published: July 2002

ISBN: 0321118863

Hardback, 512 pages

More information about this book is available at InformIT, the online presence of the publisher, Addison-Wesley Professional.

Related Links

Preventing Security-Related Defects
University Hubs Help SEI Spread Information Assurance Curricula and Methods
See more library items

CERT Tactical Response and Analysis Challenge Tests Cybersecurity Skills
Testimony to the U.S. Senate Homeland Security and Governmental Affairs Committee
See more related news

Introduction to CERT Resiliency Management Model
OCTAVE Approach Instructor Training
See more related courses

Jan 11 - 14	FloCon 2010
Dec 3	SEI Webinar Series: How Unstated Customer Needs May Drive Innovation
See more related events.

For more information

info@sei.cmu.edu

412-268-5800

Library

Managing Information Security Risks: The OCTAVE Approach

Related Links

For more information