14.1 Security Risk Assessment Methods14.1.1 14.1.2 OCTAVE14.1.2.1 OCTAVE (Original)14.1.2.2 OCTAVE-S14.1.2.3 OCTAVE-Allegro14.1.3 Information Security Assessment Methodology 2 (IRAM2)14.1.4 Factor Analysis of Information Risk (FAIR): Basic Risk Assessment Guide (BRAG)14.1.5 Factor Analysis of Information Risk (FAIR): Quantitative14.1.6 Review, Interview, Inspect, Observe, Test (RIIOT) Framework Risk Assessment Method: Example (FRAME)—Qualitative14.1.7 Review, Interview, Inspect, Observe, Test (RIIOT) Framework Risk Assessment Method: Example (FRAME)—Quantitative14.2 Security Risk Assessment FrameworksExercisesBibliography