Synopsis
From the CERT Coordination Center at the SEI, this book describes OCTAVE, a new method of evaluating information security risk.@BULLET = This book is from the CERT Coordination Center and Networked Systems Survivability (NSS) group at the SEI, the Software Engineering Institute at Carnegie Mellon University. @BULLET = There is growing interest in OCTAVE. The DOD Medical Health System is one early adopter and there is also keen interest from the financial sector. @BULLET = The authors are the lead developers of the OCTAVE method and are experts in helping organizations manage their own security risks.@SUMMARY = This is a descriptive and process-oriented book on a new security risk evaluation method, OCTAVE. OCTAVE stands for Operationally Critical Threat, Asset, and Vulnerability Evaluation (SM). An information security risk evaluation helps organizations evaluate organizational practice as well as the installed technology base and to make decisions based on potential impact.@AUTHBIO = Christopher Alberts is a senior member of the technical staff in the Networked Systems Survivability Program (NSS) at the SEI, CERT Coordination Center. He is team leader for security evaluations and OCTAVE. Christopher is responsible for developing information security risk management methods, tools, and techniques. Audrey Dorofee is a senior member of the technical staff in the Survivable Network Management Project in the NSS Program at SEI, CERT Coordination Center. CERT is the original computer security incident response center and is internationally recognized as a leading authoritative organization in this area.
"synopsis" may belong to another edition of this title.
About the Author
Christopher Alberts is a senior member of the technical staff in the Networked Systems Survivability Program at the Software Engineering Institute (SEI). He and Audrey Dorofee are the principal developers of OCTAVE. Before joining the SEI, Christopher was a scientist at Carnegie Mellon Research Institute, where he developed mobile robots for hazardous environments. He also worked at AT&T Bell Laboratories, where he designed information systems to support AT&T's advanced manufacturing processes.
Audrey Dorofee is a senior member of the technical staff in the Networked Systems Survivability Program at the Software Engineering Institute (SEI). She and Christopher Alberts are the principal developers of OCTAVE. Audrey previously was project lead for risk management in the Risk Program at the SEI. Prior to joining the SEI, she worked for the MITRE Corporation, supporting various projects for NASA, including Space Station software environments, user interfaces, and expert systems.
0321118863AB04152002
From the Back Cover
Information security requires far more than the latest tool or technology. Organizations must understand exactly what they are trying to protect--and why--before selecting specific solutions. Security issues are complex and often are rooted in organizational and business concerns. A careful evaluation of security needs and risks in this broader context must precede any security implementation to insure that all the relevant, underlying problems are first uncovered.
The OCTAVE approach for self-directed security evaluations was developed at the influential CERT(R) Coordination Center. This approach is designed to help you:
- Identify and rank key information assets
- Weigh threats to those assets
- Analyze vulnerabilities involving both technology and practices
OCTAVE(SM) enables any organization to develop security priorities based on the organization's particular business concerns. The approach provides a coherent framework for aligning security actions with overall objectives.
Managing Information Security Risks, written by the developers of OCTAVE, is the complete and authoritative guide to its principles and implementations. The book:
- Provides a systematic way to evaluate and manage information security risks
- Illustrates the implementation of self-directed evaluations
- Shows how to tailor evaluation methods to different types of organizations
Special features of the book include:
- A running example to illustrate important concepts and techniques
- A convenient set of evaluation worksheets
- A catalog of best practices to which organizations can compare their own
0321118863B05172002
"About this title" may belong to another edition of this title.
Search results for Managing Information Security Risks: The OCTAVE (SM)...
Stock Image
Managing Information Security Risks: The OCTAVE (SM) Approach
Published by
Addison-Wesley Professional (edition 1), 2002
ISBN 10: 0321118863
ISBN 13: 9780321118868
Used
Hardcover
Seller: BooksRun, Philadelphia, PA, U.S.A.
Seller rating 5 out of 5 stars
Hardcover. Condition: Good. 1. It's a preowned item in good condition and includes all the pages. It may have some general signs of wear and tear, such as markings, highlighting, slight damage to the cover, minimal wear to the binding, etc., but they will not affect the overall reading experience. Seller Inventory # 0321118863-11-1
Stock Image
Managing Information Security Risks: The OCTAVE (SM) Approach
Published by
Addison-Wesley Professional, 2002
ISBN 10: 0321118863
ISBN 13: 9780321118868
Used
Hardcover
Seller: Wonder Book, Frederick, MD, U.S.A.
Seller rating 5 out of 5 stars
Condition: Very Good. Very Good condition. A copy that may have a few cosmetic defects. May also contain light spine creasing or a few markings such as an owner's name, short gifter's inscription or light stamp. Seller Inventory # K01A-02504
Stock Image
Managing Information Security Risks: The Octave (Sm) Approach
Published by
Addison-Wesley Professional, 2002
ISBN 10: 0321118863
ISBN 13: 9780321118868
Used
Hardcover
Seller: ThriftBooks-Atlanta, AUSTELL, GA, U.S.A.
Seller rating 5 out of 5 stars
Hardcover. Condition: As New. No Jacket. Pages are clean and are not marred by notes or folds of any kind. ~ ThriftBooks: Read More, Spend Less. Seller Inventory # G0321118863I2N00
Stock Image
Managing Information Security Risks: The Octave (Sm) Approach
Published by
Addison-Wesley Professional, 2002
ISBN 10: 0321118863
ISBN 13: 9780321118868
Used
Hardcover
Seller: ThriftBooks-Dallas, Dallas, TX, U.S.A.
Seller rating 5 out of 5 stars
Hardcover. Condition: Very Good. No Jacket. May have limited writing in cover pages. Pages are unmarked. ~ ThriftBooks: Read More, Spend Less. Seller Inventory # G0321118863I4N00
Stock Image
Managing Information Security Risks: The Octave (Sm) Approach
Published by
Addison-Wesley Professional, 2002
ISBN 10: 0321118863
ISBN 13: 9780321118868
Used
Hardcover
Seller: ThriftBooks-Atlanta, AUSTELL, GA, U.S.A.
Seller rating 5 out of 5 stars
Hardcover. Condition: Very Good. No Jacket. May have limited writing in cover pages. Pages are unmarked. ~ ThriftBooks: Read More, Spend Less. Seller Inventory # G0321118863I4N00
Stock Image
Managing Information Security Risks: The OCTAVE (SM) Approach
Published by
Addison-Wesley Professional, 2002
ISBN 10: 0321118863
ISBN 13: 9780321118868
Used
Hardcover
Seller: HPB-Red, Dallas, TX, U.S.A.
Seller rating 5 out of 5 stars
hardcover. Condition: Good. Connecting readers with great books since 1972! Used textbooks may not include companion materials such as access codes, etc. May have some wear or writing/highlighting. We ship orders daily and Customer Service is our top priority! Seller Inventory # S_446086322
Stock Image
Managing Information Security Risks: The OCTAVE Approach (SEI Series in Software Engineering)
Seller: AwesomeBooks, Wallingford, United Kingdom
Seller rating 5 out of 5 stars
Hardcover. Condition: Very Good. Managing Information Security Risks: The OCTAVE Approach (SEI Series in Software Engineering) This book is in very good condition and will be shipped within 24 hours of ordering. The cover may have some limited signs of wear but the pages are clean, intact and the spine remains undamaged. This book has clearly been well maintained and looked after thus far. Money back guarantee if you are not satisfied. See all our books here, order more than 1 book and get discounted shipping. Seller Inventory # 7719-9780321118868
Buy Used
US$ 5.83
Shipping:
US$ 6.56
From United Kingdom to U.S.A.
Quantity: 2 available
Seller Image
Managing Information Security Risks: The OCTAVE (SM) Approach (SEI Series in Software Engineering)
Seller: WeBuyBooks, Rossendale, LANCS, United Kingdom
Seller rating 5 out of 5 stars
Condition: Good. Most items will be dispatched the same or the next working day. A copy that has been read but remains in clean condition. All of the pages are intact and the cover is intact and the spine may show signs of wear. The book may have minor markings which are not specifically mentioned. Seller Inventory # wbs5968832727
Buy Used
US$ 2.29
Shipping:
US$ 11.69
From United Kingdom to U.S.A.
Quantity: 1 available
Stock Image
Managing Information Security Risks: The OCTAVE Approach (SEI Series in Software Engineering)
Seller: Bahamut Media, Reading, United Kingdom
Seller rating 5 out of 5 stars
Hardcover. Condition: Very Good. This book is in very good condition and will be shipped within 24 hours of ordering. The cover may have some limited signs of wear but the pages are clean, intact and the spine remains undamaged. This book has clearly been well maintained and looked after thus far. Money back guarantee if you are not satisfied. See all our books here, order more than 1 book and get discounted shipping. Seller Inventory # 6545-9780321118868
Buy Used
US$ 5.83
Shipping:
US$ 9.17
From United Kingdom to U.S.A.
Quantity: 2 available
Stock Image
Managing Information Security Risks : The OCTAVE (SM) Approach
Published by
Addison Wesley Professional, 2002
ISBN 10: 0321118863
ISBN 13: 9780321118868
Used
Hardcover
Seller: Better World Books Ltd, Dunfermline, United Kingdom
Seller rating 5 out of 5 stars
Condition: Good. Ships from the UK. Former library book; may include library markings. Used book that is in clean, average condition without any missing pages. Seller Inventory # 8175837-6
Buy Used
US$ 7.08
Shipping:
US$ 10.51
From United Kingdom to U.S.A.
Quantity: 1 available