nerdexam
(ISC)2

CAP · Question #213

What does OCTAVE stand for?

The correct answer is B. Operationally Critical Threat, Asset, and Vulnerability Evaluation. OCTAVE stands for Operationally Critical Threat, Asset, and Vulnerability Evaluation. It is a risk-based strategic assessment and planning technique developed by Carnegie Mellon University's CERT. The key distinction in the acronym is 'Critical' (not 'Computer') and 'Evaluation'

Security and Privacy Governance, Risk Management, and Compliance Program

Question

What does OCTAVE stand for?

Options

  • AOperationally Computer Threat, Asset, and Vulnerability Evaluation
  • BOperationally Critical Threat, Asset, and Vulnerability Evaluation
  • COperationally Computer Threat, Asset, and Vulnerability Elimination
  • DOperationally Critical Threat, Asset, and Vulnerability Elimination

How the community answered

(57 responses)
  • A
    4% (2)
  • B
    95% (54)
  • C
    2% (1)

Explanation

OCTAVE stands for Operationally Critical Threat, Asset, and Vulnerability Evaluation. It is a risk-based strategic assessment and planning technique developed by Carnegie Mellon University's CERT. The key distinction in the acronym is 'Critical' (not 'Computer') and 'Evaluation' (not 'Elimination') - it is a methodology for evaluating and assessing risk, not eliminating it.

Topics

#OCTAVE#Risk Management Frameworks#Vulnerability Evaluation#Acronyms

Community Discussion

No community discussion yet for this question.

Full CAP Practice