The ESA Framework will align with your EA function to enhance the alignment between IT and security, identifying and prioritized touchpoints between ESA and EA to align and enhance each function’s outputs, enable repeatability and re-use of artifacts, and covering all areas of the business.
A brief overview of the existing Enterprise Security Architecture frameworks we use to build your ESA:
It addresses business opportunities, business risks, threats and compliance as security drivers, and provided an architectural view of security program management which included a strategy, planning, risk management, education and assessment life cycle covering security governance, technical architecture, and operations.
The FEA Security Reference Model is a simple approach of purpose > risk > control and provides little depth in its application for ensuring business outcome alignment.
The Open Security Architecture is an early Creative Commons approach to security architecture, which has a Landscape, Actors, Lifecycle and Design Principles.
SABSA provides a comprehensive approach to enterprise security architecture, which has evolved over the last ten years to become the world’s leading ESA.