The SABSA Whitepaper summarizes SABSA. SABSA is a method for developing risk-driven enterprise information security and information assurance architectures. It is an open standard, comprising several frameworks, models, methods and processes, free for use by all, with no licensing required for end-user organisations who make use of the standard in developing and implementing architectures and solutions.

SABSA Whitepaper

At the heart of the SABSA method is the SABSA Model, a top-down approach that drives the SABSA Development Process. This process analyses the business requirements at the outset, and creates a chain of traceability through the SABSA Lifecycle phases of ‘Strategy & Planning’, ‘Design’, ‘Implement’ and ongoing ‘Manage and Measure’ to ensure preservation of the business mandate. Framework tools created from practical experience, including the SABSA Matrix and the SABSA Business Attributes Profile, further support the whole method.

Working with the SABSA Institute, we developed a straightforward integration of best-practice security architecture and information assurance within an enterprise architecture. Integrating Risk & Security within Enterprise Architecture provides the core guidance of tying a SABSA-based approach for Security Architecture with best-practice Enterprise Architecture.

SABSA Institute

The SABSA Institute develops and publishes SABSA, and the SABSA whitepaper. The SABSA Institute envisions a global business world of the future, leveraging the power of digital technologies, enabled in the management of information risk, information assurance and information security through the adoption of SABSA as the framework and methodology of first choice for commercial, industrial, educational, government, military and charitable enterprises, regardless of industry sector, nationality, size or socio-economic status, and leading to enhancements in social well-being and economic success.

Navigate & SABSA

Start with the SABSA whitepaper. It will provide a solid introduction. Then follow the Conexiam consulting recommendation and gain SABSA certification. SABSA provides industry leading best-practice to TOGAF's essential scaffolding. SABSA provides a detailed method for developing security architecture. In fact, we integrated SABSA's risk model and the Business Attributes Profile techniques into Conexiam Navigate. Security architecture is a cross-cutting domain.

What happens next

You can access the SABSA whitepaper from the SABSA Institute.

1. You will get an email with a download link. The link is valid for 15 minutes. If it expires, please re-request.
2. We will add you to an email list that focuses on Security Architecture. The list gets new free content assisting building Security Architecture within your Enterprise Architecture.
   You are free to skip joining the list.
3. You will get an invitation to join our free EA Community.
   • Regular free EA professional development webinars
   • Free downloads, including Conexiam Navigate
   • Free recorded Enterprise Architecture development training
   • Limited time access to Practical EA & Predictable EA material