Effective integration of security and risk into our Enterprise Architecture practice eludes too many of us. Over the past couple of years, we have been working with colleagues in the Open Group and the SABSA Institute to address this space. Today we published “Integrating Risk and Security within a TOGAF® Enterprise Architecture“.
This work guides security practitioners and Enterprise Architects to develop a best-practice Enterprise Architecture. The guide shows how Enterprise Architecture and Enterprise Security Architecture relate to each other, highlighting the core security and risk concepts used in Information Security Management and Enterprise Risk Management.
We have identified the established best practices you should adopt. How security practitioners and enterprise architects need to work together to develop a best-practice Enterprise Architecture. The guide shows how Enterprise Architecture and Enterprise Security Architecture relate to each other, highlighting the core security and risk concepts used in Information Security Management and Enterprise Risk Management.
The guide is available from The SABSA Institute and The Open Group. Hope you enjoy the guide.
The practice of enterprise architecture risk and security are one of the most interesting and complex problems to address. Our next publication in this space will be the result of a research project into architecting for Anti-Fragility.
Conexiam’s experience & expertise is available in focused Security Architecture training for individuals or as custom courses for your organization.