OCTAVE Approach Instructor Training

This two-day course teaches candidate OCTAVE instructors how to deliver the Assessing Information Security Risks Using the OCTAVE Approach course. Through lectures, discussions, and class exercises, attendees will learn foundational concepts of the OCTAVE approach and methods, become familiar with course materials and learning objectives, and learn how to tailor the OCTAVE approach to suit a particular customer or domain.

In addition, learning objectives address

• advanced principles of risk assessment
• obtaining sponsorship for adopting OCTAVE in an organization
• extensibility of OCTAVE to other domains such as physical security and insider threat

The course includes a review of training materials from the "Assessing Information Security Risk Using the OCTAVE Approach" course, an overview of delivering the course content, and OCTAVE evaluation planning and scoping tips. The course also covers alternative OCTAVE delivery options and provides guidelines to help instructors learn how to mentor an OCTAVE assessment.

This course builds on information covered in the Assessing Information Security Risk Using the OCTAVE Approach course. To attend this course, participants must be sponsored by an organization that has an OCTAVE course license agreement in place. For more information about licensing the OCTAVE course, please visit the SEI Partner Web site (http://www.sei.cmu.edu/partners/).

Who should attend?

• professionals desiring an understanding of the concepts underlying the OCTAVE Approach
• risk professionals who want to conduct OCTAVE Risk Assessment Training

What will you learn?

This course will help participants to

• conduct OCTAVE training
• facilitate an OCTAVE evaluation
• tailor OCTAVE to suit a particular customer or domain