Download TOGAF and SABSA Integration

Bring SABSA, the world's best security architecture framework, and TOGAF, the industry standard enterprise architecture framework together.

Enable best practice risk management in TOGAF

Enhance TOGAF's architecture requirements with SABSA's Business Attributes Profile

Find where to develop security architecture information in the TOGAF ADM

TOGAF and SABSA Integration

Using Reference Architectures for Digital Transformation Includes

Best Practice Risk Management

SABSA uses a richer understanding of risk. In SABSA, “risk” is simply the “uncertainty of outcomes” and “risk management” balancing positive and negative outcomes.

Improve Architecture Requirements

SABSA's Business Attributes Profile uses a standard taxonomy. A standard taxonomy, and the business attributes technique, improves identification of stakeholder expectations and concerns.

Developing Knowledge in the TOGAF ADM

The TOGAF ADM is all about creating knowledge. Identify the knowledge documented in security architecture artifacts.

Consumable Best Practices

Instead of the TOGAF vs. SABSA false choice, follow TOGAF and SABSA and applying best practice tools and techniques

Using Reference Architectures for Digital Transformation

TOGAF and SABSA integration provides direction for applying specialized techniques like business risk and opportunity-driven security architecture into the TOGAF business strategy-driven approach.

Develop a richer, more complete enterprise architecture. Enterprise Architecture requires you to understand the real-world. The purpose is deliberate change. In a modern digital world, Information Security Management is mandatory. Risk is the effect of uncertainty on meeting objectives. Risk management is managing uncertainty of meeting objectives.

Nothing is more important in developing an architecture for deliberate change than removing uncertainty Integrating Risk and Security with TOGAF brings risk and security practice to enterprise architecture

SABSA Metamodel
Too often architects have bolted security into other architecture development. This is clearly not the best practice. This work supports enterprise architects who need to take operational risk management into account. This guide describes how to use SABSA while developing an enterprise architecture. Unlike regarding security as a separate product, this paper gives a practical approach that makes the SABSA security requirements and services available as common TOGAF artifacts.

You should adopt these best practices.

TOGAF and SABSA Integration Cover

What Happens Next

Download TOGAF and SABSA Integration
TOGAF® and SABSA® Integration

We will add you to an email list that focuses on being a better security architect. The list gets new free content on supporting change.
You are free to leave at any time.

Scroll to Top