- Download 6
- File Size 868.24 KB
- File Count 1
- Create Date 25 January 2015
- Last Updated 13 February 2021
Integrating Risk and Security with TOGAF is achieved by aligning TOGAF's essential scaffolding with security architecture best practices.
This work guides security architects and enterprise architects to develop a best-practice Enterprise Architecture. The guide shows how enterprise architecture and enterprise security architecture relate. It highlights core security and risk concepts used in Information Security Management and Enterprise Risk Management.
You should adopt these best practices.
Integrating Risk and Security with TOGAF addresses Security & Risk Management
Enterprise Architecture requires you to understand the real-world. The purpose is deliberate change. In a modern digital world, Information Security Management is mandatory. Risk is the effect of uncertainty on meeting objectives. Risk management is managing uncertainty of meeting objectives.
Nothing is more important in developing an architecture for deliberate change than removing uncertainty
Integrating Risk and Security with TOGAF brings risk and security practice to enterprise architecture
The SABSA Institute and the Open Group jointly developed Integrating Risk and Security with TOGAF. The Open Group's Architecture Forum brought best-practices and TOGAF's essential scaffolding. The SABSA Institute brough best-practice Security Architecture and Enterprise Risk Management focus on benefit realization.
The SABSA Institute develops and publishes SABSA. The SABSA Institute envisions a global business world of the future, leveraging the power of digital technologies, enabled in the management of information risk, information assurance and information security through the adoption of SABSA as the framework and method of first choice for commercial, industrial, educational, government, military and charitable enterprises, regardless of industry sector, nationality, size or socio-economic status, and leading to enhancements in social well-being and economic success.
Navigate, Integrating Risk and Security, & SABSA
Integrating Risk and Security with TOGAF follows Conexiam's best practice of integrating method, tool, and technique. Instead of a simplistic merging, we align the concepts. SABSA provides a detailed method for developing security architecture. Following the model outlined in Using Reference Architectures for Digital Transformation, we align concepts. We leave best practice method unchanged. Conexiam consulting recommends for formal SABSA certification. SABSA provides industry leading best-practice to TOGAF's essential scaffolding.
We integrated SABSA's risk model and the Business Attributes Profile techniques into Conexiam Navigate.
What happens next
- You will get an email with a download link. The link is valid for 15 minutes. If it expires, please re-request.
- We will add you to an email list that focuses on Security Architecture. The list gets new free content assisting building Security Architecture within your Enterprise Architecture.
You are free to skip joining the list.
- You will get an invitation to join our free EA Community.
|Open Group Guide - Integrating Risk and Security within a TOGAF® Enterprise Architecture (Open Group G152).pdf|