Average Rating: 0.00/10
(# Rating Votes: 0 | Rate This Course | Contribute a Review )
Short Description:
This three-day workshop is designed to help individuals and analysis teams lead and perform information security risk evaluations such as the Operationally Critical Threat, Asset, and Vulnerability EvaluationSM (OCTAVEŽ) Approach.
Full Description:
Course Description
This three-day workshop is designed to help individuals and analysis teams lead and perform information security risk evaluations such as the Operationally Critical Threat, Asset, and Vulnerability EvaluationSM (OCTAVEŽ) Approach.
OCTAVE is a self-directed risk evaluation that provides organizations with control over security risks; balances critical information assets, business needs, threats, and vulnerabilities; and benchmarks organizations against known or accepted best practices for security.
Through lectures, class exercises, demonstrations, and discussions, the workshop covers OCTAVE, preparation for implementing OCTAVE, and guidelines for tailoring OCTAVE. After completing the course, attendees will be able to manage and control enterprise-wide information security risk evaluations; perform information security assessments and act as a focal point for security improvement efforts; and develop appropriate protection strategies by considering policy, management, administrative, technological, and other organizational issues.
The course focuses on the OCTAVE Method, which is targeted to large organization, and includes a module on OCTAVE-S, which is for smaller organizations.
This course is a prerequisite for the OCTAVE Instructor Training course.
Audience ˇ Prerequisites ˇ Objectives ˇ Logistics
AUDIENCE
Individuals who would like an in-depth understanding of OCTAVE
Interdisciplinary analysis teams (typically 3-5 individuals) that will lead and perform security risk evaluations for an organization using OCTAVE
If you have not selected an analysis team, Volume 2 of the OCTAVE Method Implementation Guide can give you guidance, available on the CERT Web site as a PDF file.
PREREQUISITES
There are no prerequisites for this course.
TOPICS
introduction to the OCTAVE Approach
review of OCTAVE Method
identify critical assets and the threats to those assets
identify the vulnerabilities that expose those threats
develop an appropriate protection strategy for the organization's mission and priorities
tailor the OCTAVE Method to meet your organization's needs
preparation for OCTAVE
OCTAVE-S processes and activities
after the evaluation
OBJECTIVES
This course will help participants to
understand the purpose of the OCTAVE Method and the key characteristics of the process
be ready to use the OCTAVE Method or OCTAVE-S Implementation Guides and conduct an evaluation
understand how to get started and when to tailor the process and artifacts to meet their unique organizational needs
Course Materials
Participants will receive a course notebook and the OCTAVE Method Implementation Guide.
LOGISTICS
Class Schedule
This three-day course meets at the following times:
Day 1, 9:00 a.m.-5:00 p.m.
Day 2, 9:00 a.m.-5:00 p.m.
Day 3, 9:00 a.m.-3:00 p.m.
Hotel and Travel Information
Information about traveling to SEI offices in Pittsburgh, Pennsylvania and Arlington, Virginia is available on our Travel and Lodging Web pages.
Questions about this course?
Please see our Frequently Asked Questions Web page for answers to some of the more common inquiries about SEI Education and Training. If you need more information, contact us via e-mail at training-info@cert.org or telephone at +1 412-268-9564.
Duration:
3 Days
Price:
$1500
Submitted by: admin
Hits: 0
SEI's OCTAVE Training Workshop Course Web Page
|
