Managing Information Security Risks: The OCTAVE (SM) Approach

 
9780321118868: Managing Information Security Risks: The OCTAVE (SM) Approach

Provides information on the principles and implementations of OCTAVE. This book also provides a systematic way to evaluate and manage information security risks. It illustrates the implementation of self-directed evaluations and shows how to tailor evaluation methods to different types of organizations.

"synopsis" may belong to another edition of this title.

From the Back Cover:

Information security requires far more than the latest tool or technology. Organizations must understand exactly what they are trying to protect--and why--before selecting specific solutions. Security issues are complex and often are rooted in organizational and business concerns. A careful evaluation of security needs and risks in this broader context must precede any security implementation to insure that all the relevant, underlying problems are first uncovered.

The OCTAVE approach for self-directed security evaluations was developed at the influential CERT(R) Coordination Center. This approach is designed to help you:

  • Identify and rank key information assets
  • Weigh threats to those assets
  • Analyze vulnerabilities involving both technology and practices

OCTAVE(SM) enables any organization to develop security priorities based on the organization's particular business concerns. The approach provides a coherent framework for aligning security actions with overall objectives.

Managing Information Security Risks, written by the developers of OCTAVE, is the complete and authoritative guide to its principles and implementations. The book:

  • Provides a systematic way to evaluate and manage information security risks
  • Illustrates the implementation of self-directed evaluations
  • Shows how to tailor evaluation methods to different types of organizations

Special features of the book include:

  • A running example to illustrate important concepts and techniques
  • A convenient set of evaluation worksheets
  • A catalog of best practices to which organizations can compare their own



0321118863B05172002

About the Author:

Christopher Alberts is a senior member of the technical staff in the Networked Systems Survivability Program at the Software Engineering Institute (SEI). He and Audrey Dorofee are the principal developers of OCTAVE. Before joining the SEI, Christopher was a scientist at Carnegie Mellon Research Institute, where he developed mobile robots for hazardous environments. He also worked at AT&T Bell Laboratories, where he designed information systems to support AT&T's advanced manufacturing processes.

Audrey Dorofee is a senior member of the technical staff in the Networked Systems Survivability Program at the Software Engineering Institute (SEI). She and Christopher Alberts are the principal developers of OCTAVE. Audrey previously was project lead for risk management in the Risk Program at the SEI. Prior to joining the SEI, she worked for the MITRE Corporation, supporting various projects for NASA, including Space Station software environments, user interfaces, and expert systems.



0321118863AB04152002

"About this title" may belong to another edition of this title.

Top Search Results from the AbeBooks Marketplace

1.

Alberts, Christopher, Dorofee, Audrey
Published by Addison-Wesley Professional (2002)
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover Quantity Available: 2
Seller:
Murray Media
(North Miami Beach, FL, U.S.A.)
Rating
[?]

Book Description Addison-Wesley Professional, 2002. Hardcover. Book Condition: New. Never used!. Bookseller Inventory # P110321118863

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 39.37
Convert Currency

Add to Basket

Shipping: US$ 1.99
Within U.S.A.
Destination, Rates & Speeds

2.

Christopher Alberts; Audrey Dorofee
Published by Addison-Wesley Professional (2002)
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover First Edition Quantity Available: 1
Seller:
Irish Booksellers
(Rumford, ME, U.S.A.)
Rating
[?]

Book Description Addison-Wesley Professional, 2002. Hardcover. Book Condition: New. book. Bookseller Inventory # M0321118863

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 60.71
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

3.

Alberts, ChristopherDorofee, Audrey
Published by Prentice Hall
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Quantity Available: > 20
Seller:
INDOO
(Avenel, NJ, U.S.A.)
Rating
[?]

Book Description Prentice Hall. Book Condition: New. Brand New. Bookseller Inventory # 0321118863

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 68.85
Convert Currency

Add to Basket

Shipping: US$ 3.50
Within U.S.A.
Destination, Rates & Speeds

4.

Christopher Alberts, Audrey Dorofee
Published by Pearson Education (US), United States (2002)
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover Quantity Available: 10
Seller:
The Book Depository US
(London, United Kingdom)
Rating
[?]

Book Description Pearson Education (US), United States, 2002. Hardback. Book Condition: New. Language: English . Brand New Book. From the CERT Coordination Center at the SEI, this book describes OCTAVE, a new method of evaluating information security = This book is from the CERT Coordination Center and Networked Systems Survivability (NSS) group at the SEI, the Software Engineering Institute at Carnegie Mellon University. = There is growing interest in OCTAVE. The DOD Medical Health System is one early adopter and there is also keen interest from the financial sector. = The authors are the lead developers of the OCTAVE method and are experts in helping organizations manage their own security = This is a descriptive and process-oriented book on a new security risk evaluation method, OCTAVE. OCTAVE stands for Operationally Critical Threat, Asset, and Vulnerability Evaluation (SM). An information security risk evaluation helps organizations evaluate organizational practice as well as the installed technology base and to make decisions based on potential = Christopher Alberts is a senior member of the technical staff in the Networked Systems Survivability Program (NSS) at the SEI, CERT Coordination Center. He is team leader for security evaluations and OCTAVE. Christopher is responsible for developing information security risk management methods, tools, and techniques. Audrey Dorofee is a senior member of the technical staff in the Survivable Network Management Project in the NSS Program at SEI, CERT Coordination Center. CERT is the original computer security incident response center and is internationally recognized as a leading authoritative organization in this area. Bookseller Inventory # BZV9780321118868

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 96.29
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

5.

Christopher Alberts, Audrey Dorofee
Published by Pearson Education (US), United States (2002)
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover Quantity Available: 10
Seller:
Book Depository hard to find
(London, United Kingdom)
Rating
[?]

Book Description Pearson Education (US), United States, 2002. Hardback. Book Condition: New. Language: English . This book usually ship within 10-15 business days and we will endeavor to dispatch orders quicker than this where possible. Brand New Book. From the CERT Coordination Center at the SEI, this book describes OCTAVE, a new method of evaluating information security = This book is from the CERT Coordination Center and Networked Systems Survivability (NSS) group at the SEI, the Software Engineering Institute at Carnegie Mellon University. = There is growing interest in OCTAVE. The DOD Medical Health System is one early adopter and there is also keen interest from the financial sector. = The authors are the lead developers of the OCTAVE method and are experts in helping organizations manage their own security = This is a descriptive and process-oriented book on a new security risk evaluation method, OCTAVE. OCTAVE stands for Operationally Critical Threat, Asset, and Vulnerability Evaluation (SM). An information security risk evaluation helps organizations evaluate organizational practice as well as the installed technology base and to make decisions based on potential = Christopher Alberts is a senior member of the technical staff in the Networked Systems Survivability Program (NSS) at the SEI, CERT Coordination Center. He is team leader for security evaluations and OCTAVE. Christopher is responsible for developing information security risk management methods, tools, and techniques. Audrey Dorofee is a senior member of the technical staff in the Survivable Network Management Project in the NSS Program at SEI, CERT Coordination Center. CERT is the original computer security incident response center and is internationally recognized as a leading authoritative organization in this area. Bookseller Inventory # BZV9780321118868

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 99.40
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

6.

Alberts, Christopher; Dorofee, Audrey
Published by Addison-Wesley Professional
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover Quantity Available: 3
Seller:
BarristerBooks
(Lawrence, KS, U.S.A.)
Rating
[?]

Book Description Addison-Wesley Professional. Hardcover. Book Condition: New. 0321118863 BRAND NEW W/FAST SHIPPING! This item is: Managing Information Security Risks: The OCTAVE (SM) Approach, 1st Ed., 2003, by Alberts, Christopher^Dorofee, Audrey; FORMAT: Hardcover; ISBN: 9780321118868. Choose Expedited for fastest shipping! Our 98%+ rating proves our commitment! We cannot ship to PO Boxes/APO address. To avoid ordering the wrong item, please check your item's ISBN number!. Bookseller Inventory # P9780321118868

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 103.89
Convert Currency

Add to Basket

Shipping: FREE
Within U.S.A.
Destination, Rates & Speeds

7.

Christopher Alberts; Audrey Dorofee
Published by Addison-Wesley Professional (2002)
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover First Edition Quantity Available: > 20
Seller:
Palexbooks
(Sanford, NC, U.S.A.)
Rating
[?]

Book Description Addison-Wesley Professional, 2002. Book Condition: New. Brand new! Please provide a physical shipping address. Bookseller Inventory # 9780321118868

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 108.54
Convert Currency

Add to Basket

Shipping: US$ 3.00
Within U.S.A.
Destination, Rates & Speeds

8.

Christopher Alberts/ Audrey Dorofee
Published by Addison-Wesley (2002)
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover Quantity Available: 1
Seller:
Revaluation Books
(Exeter, United Kingdom)
Rating
[?]

Book Description Addison-Wesley, 2002. Hardcover. Book Condition: Brand New. 1st edition. 512 pages. 9.25x7.50x1.25 inches. In Stock. Bookseller Inventory # z-0321118863

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 104.01
Convert Currency

Add to Basket

Shipping: US$ 7.95
From United Kingdom to U.S.A.
Destination, Rates & Speeds

9.

Christopher Alberts, Audrey Dorofee
Published by Pearson Education (US), United States (2002)
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover Quantity Available: 1
Seller:
The Book Depository
(London, United Kingdom)
Rating
[?]

Book Description Pearson Education (US), United States, 2002. Hardback. Book Condition: New. Language: English . Brand New Book. From the CERT Coordination Center at the SEI, this book describes OCTAVE, a new method of evaluating information security = This book is from the CERT Coordination Center and Networked Systems Survivability (NSS) group at the SEI, the Software Engineering Institute at Carnegie Mellon University. = There is growing interest in OCTAVE. The DOD Medical Health System is one early adopter and there is also keen interest from the financial sector. = The authors are the lead developers of the OCTAVE method and are experts in helping organizations manage their own security = This is a descriptive and process-oriented book on a new security risk evaluation method, OCTAVE. OCTAVE stands for Operationally Critical Threat, Asset, and Vulnerability Evaluation (SM). An information security risk evaluation helps organizations evaluate organizational practice as well as the installed technology base and to make decisions based on potential = Christopher Alberts is a senior member of the technical staff in the Networked Systems Survivability Program (NSS) at the SEI, CERT Coordination Center. He is team leader for security evaluations and OCTAVE. Christopher is responsible for developing information security risk management methods, tools, and techniques. Audrey Dorofee is a senior member of the technical staff in the Survivable Network Management Project in the NSS Program at SEI, CERT Coordination Center. CERT is the original computer security incident response center and is internationally recognized as a leading authoritative organization in this area. Bookseller Inventory # AAW9780321118868

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 115.00
Convert Currency

Add to Basket

Shipping: FREE
From United Kingdom to U.S.A.
Destination, Rates & Speeds

10.

ChristopherAlberts; Dorofee Audrey
Published by Addison Wesley (2002)
ISBN 10: 0321118863 ISBN 13: 9780321118868
New Hardcover Quantity Available: 3
Seller:
Rating
[?]

Book Description Addison Wesley, 2002. Book Condition: New. Bookseller Inventory # TV9780321118868

More Information About This Seller | Ask Bookseller a Question

Buy New
US$ 138.20
Convert Currency

Add to Basket

Shipping: US$ 3.51
From Germany to U.S.A.
Destination, Rates & Speeds

There are more copies of this book

View all search results for this book