The following are additional materials that may be of interest. The first set of materials documents the results of the MSCE project. The next set of materials provides the primary references for the more traditional risk management approaches. The final set provides additional links to other risk-related work at the SEI.
Learn more about the three Operationally Critical threat, Asset, and Vulnerability Evaluation (OCTAVE) methods.
Supply chain risk management: Software Supply Chain Risk Management: From Products to Systems of Systems
For more information
Please tell us what you
think with this short
(< 5 minute) survey.