To be effective, Information Security must become a fundamental part of the Enterprise Architecture landscape, deeply embedded into platforms, services, networks and operations at all levels. Information Security must be an integral component within an organization’s business, operation and technology strategies and solution delivery practices.
In this two-part series, Guy Sereff helps architects, information security analysts, technology providers, business analysts and strategic risk managers better understand how to incorporate Information Security into their organization’s Enterprise Reference Architecture model.
In Part 1: Foundation, Guy covers a few key concepts that will provide the underpinning from which we’ll be able to build our discussion on. These concepts include:
- Fundamental Definitions and Relationships
- Enterprise Architecture
- Enterprise Architecture Frameworks
- Reference Models
- Information Security Architecture Considerations
- Baseline Definitions
- Industry Certifications and Standards
- Information Security Architecture Framework Example
Please login to continue reading this paper from Guy Sereff.