search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Managing Information Security Risks: The OCTAVE Approach

Book
By
In this book, the authors provide a systematic way to evaluate and manage information security risks through the use of the OCTAVE approach.
Publisher

Addison-Wesley Professional

ISBN
978-0-321-11886-8
Subjects

Abstract

OCTAVE enables any organization to develop security priorities based on the organization's particular business concerns. This approach provides a coherent framework for aligning security actions with overall objectives. Managing Information Security Risks, written by the developers of OCTAVE, is the complete and authoritative guide to its principles and implementations. The book provides a systematic way to evaluate and manage information security risks, illustrates the implementation of self-directed evaluations, and shows how to tailor evaluation methods to different types of organizations.

Format: Hardback

SHARE
Get it here
Part of a Collection

OCTAVE-Related Assets

Cybersecurity Engineering Research: Security Engineering Risk Analysis (SERA) Collection
Cite This Book

@book{alberts_2002,
author={Alberts, Christopher and Dorofee, Audrey},
title={Managing Information Security Risks: The OCTAVE Approach},
month={Jul},
year={2002},
howpublished={Carnegie Mellon University, Software Engineering Institute's Digital Library},
url={https://insights.sei.cmu.edu/library/managing-information-security-risks-the-octave-approach/},
note={Accessed: 2024-Apr-16}
}

Ask a question about this Book