Introduction to the OCTAVE method (1 Day)

Developing the necessary skills to participate in a risk assessment based on the OCTAVE method

This training allows learning the stages of conducting a risk assessment with the OCTAVE method. The OCTAVE method (Operationally Critical Threat, Asset, and Vulnerability Evaluation) was developed by CERT (Computer Emergency Response Team). This training fits perfectly in the framework of an ISO/IEC 27001:2005 standard implementation process.

Who should attend?

  • Risk managers
    Persons responsible for information security or conformity within an organization
    Members of the information security team
    IT consultants
    Staff participating in the activities of risk assessment with the OCTAVE method

Learning objectives

  • To learn the stages of conducting a risk assessment with the OCTAVE method
    To develop the necessary skills to participate in a risk assessment with the OCTAVE method
    To understand the concepts, approaches, methods and techniques allowing an effective management of risk according to OCTAVE (including OCTAVE-S and OCTAVE Allegro)
    To interpret the requirements of ISO 27001 on information security risk management

Course Agenda

Conduct a risk assessment with OCTAVE

  • Presentation of OCTAVE
    Phase 1 - Process 1 to 3 (Understanding the Organization)
    Phase 1 - Process 4 (Create threat profiles)
    Phase 2 - Process 5 (Identification of key components)
    Phase 2 - Process 6 (Evaluation of selected components)
    Phase 3 - Process 7 (Conduct the risk assessment)
    Phase 3 - Process 8 (Development of a Protection Strategy)
    Introduction to OCTAVE-S and OCTAVE Allegro

Prerequisites

  • None

Exam and certification

  • Not applicable

General information

  • The training material on OCTAVE is only available in English
    A copy of the official documentation on OCTAVE (including OCTAVE-S and OCTAVE Allegro) published by CERT is given to the participants together with a student manual containing over 100 pages of information and practical examples
    A participation certificate of 7 CPD (Continuing Professional Development) credits is awarded to the participants

Request a Course

Interested in a particular course or would like addition information

Training request

Currently Scheduled Courses

See listing of currently planned courses.

View


Copyright © NISKAA Group 2017. All rights reserved