iCode Security Architecture Framework

Dec 4, 2012Download as PPTX, PDF2 likes2,876 views

The document presents iCode's security architecture framework. The framework has three viewpoints: business, information, and technical. It uses a top-down approach with a global security vision and framework that defines security services, design principles, and requirement templates. These are then applied to each of the three viewpoints to develop models addressing things like processes, policies, information flows, and technical security components. The framework is designed to develop comprehensive and aligned security architectures.

Security Verified

Security Architecture Framework

Mohamed Ridha Chebbi, CISSP
iCode InfoSec – CEO & Head of PS
ridha.chebbi@icodesecurity.com

© 2012 iCode information security All rights reserved

Agenda Security Verified

Introduction
Approach to Develop Security Architecture
Information Security Concepts
Security Architecture Levels & Viewpoints
Technical Viewpoint
Information Viewpoint
Business Viewpoint
Security Architecture Framework
iCode Professional Services

© 2012 iCode information security All rights reserved

Introduction Security Verified

There are a Number of Approaches to Develop a Security Architecture Like :
1. As a DOMAIN in the TECHNICAL ARCHITECTURE
2. As TOTALLY SEPARATE Security Architecture ViewPoint

Security is Pervasive across all of Architecture impacting :
- Business
- Information
- and Technology

© 2012 iCode information security All rights reserved

Approach to Develop Security Architecture Security Verified

Architecture
Information
Security :
. Data Security Architecture
Requirements Solutions &
Business
. Data Classification Security
. Application Security Architecture
Standard Architecture
Security : Technology
. Business Security
Requirements
. Security Organization Security :
. Security Policy . Technology
Framework Security
. Process Security Requirements
. Security Principles
. Security Patterns
. Security Services
. Security Bricks

© 2012 iCode information security All rights reserved

Information Security Concepts Security Verified

Digital Signatures
Encryption
Authentication
Verifies
identities
Confidentiality Integrity
only authorized Data has not been
disclosure changed
Isolation Information Data Validation
System
Data Hashing

Core Concept Resilient Designs
Availability
Data has not been
Related Concept changed
Utility Service Level
Technique Usefulness Agreements
of data

© 2012 iCode information security All rights reserved

iCode Security Architecture Framework
Security Verified

Vision
Security Services
Framework

Design Principles

Requirement Templates

Business Information Technical
Viewpoint Viewpoint Viewpoint
© 2012 iCode information security All rights reserved

Technical Viewpoint
Security Verified

Vision
Security Services
Framework

.Trust Levels
.Conceptual
Technology
Models
Design Principles
.Logical Technology
Models
.Trust Models

Requirement Templates
. Technical Reference Models
.Security Infrastructure
Architecture
.Security Services Architecture
.Application Security Architecture

Technical
Viewpoint
© 2012 iCode information security All rights reserved

Information Viewpoint
Security Verified

Vision
Security Services
Framework

. Policy
Framework
. Information
Classification
Framework
Design Principles
. Security Information
Flow Models
. SLA Model
Requirement Templates

. Security Information Architecture
. Information Classification Register
. SLA’s

Information
Viewpoint
© 2012 iCode information security All rights reserved

Business Viewpoint
Security Verified

Vision
Security Services
Framework

.Process
Models
.Roles &
Responsibi-
lities Models
Design Principles

.Organization
Models

Requirement Templates

.Organizational
Architecture

Business
Viewpoint
© 2012 iCode information security All rights reserved

Global Security Architecture Framework Security Verified

Vision
Security Services
Framework

.Process . Policy .Trust Levels
Models Framework
.Roles & . Information .Conceptual
Responsibi- Classification Technology
lities Models Framework Models
Design Principles
. Security Information .Logical Technology
.Organization Flow Models Models
Models
. SLA Model .Trust Models

Requirement Templates

.Organizational . Security Information Architecture . Technical Reference Models
.Security Infrastructure
Architecture . Information Classification Register Architecture
. SLA’s .Security Services Architecture
.Application Security Architecture

Business Information Technical
Viewpoint Viewpoint Viewpoint
© 2012 iCode information security All rights reserved

iCode Professional Services for Tunisiana Security Verified

© 2012 iCode information security All rights reserved

Security Verified

Thanks

Mohamed Ridha Chebbi, CISSP
iCode InfoSec – CEO & Head of PS
ridha.chebbi@icodesecurity.com

© 2012 iCode information security All rights reserved

This document provides an overview of the key topics within the Security Architecture & Design domain for the CISSP certification. It covers computing platforms such as early electro-mechanical machines, the von Neumann model, and transistor-based computers. It also discusses security models, evaluation and certification, security architecture concepts and implementation models. Specific topics include operating systems, CPU and memory components, software elements, process scheduling, and operating modes. The document serves as a high-level study aid for understanding the domain's important foundational concepts.

Modelling Security Architecturenarenvivek

The intent of the paper is to propose a simple yet comprehensive technique to model enterprise security architecture and design aligned to SABSA that enables – Standardisation of SABSA Enterprise Security Architecture framework by formalizing common language used in the form of ESA modelling notation Reusability of model artefacts (not documents) to enable enterprise and department level collaboration and knowledge management Generic or organisation specific Library of assets for various ESA artefacts such as – Business attribute profile(s), security services, mechanisms and components and associated views Tool-assisted development using a separate toolbox for ESA that augments Enterprise Architecture (ToGAF) modelling using Archimate.

Security Operation Center - Design & BuildSameer Paradia

Enterprise Security Architecture DesignPriyanka Aash

Cyber Threat Intelligence.pptxAbimbolaFisher1

Cyber threat intelligence aims to help companies understand and address cybersecurity threats. It involves collecting and analyzing information on current and potential cyber attacks from sources like malware analysis and human intelligence. There are three main types of threat intelligence: strategic intelligence for executives, tactical intelligence for IT professionals, and operational intelligence from active attacks. Uncovering threats through cyber threat intelligence can help identify security issues like malware infections and prevent costly data breaches and ransomware attacks. The intelligence gathering process typically involves four phases: planning, data collection, threat analysis, and responding to threats.

Cybersecurity Framework - IntroductionMuhammad Akbar Yasin

The document discusses the NIST Cybersecurity Framework. It defines key terms like information security, CIA triad, and cybersecurity. It explains that the NIST CSF provides guidance on cybersecurity risk management principles and best practices. It outlines the Framework Core, Implementation Tiers, and Profiles to help organizations manage cybersecurity risks in a cost-effective manner. The CSF can be used by organizations of any size or sector to understand and apply cybersecurity risk management.

Cybersecurity in the Era of IoTAmy Daly

Watch this previously recorded webinar event with special guest Karthik Sundaram of Frost & Sullivan as he expands on his recently published research, “Cybersecurity in the Era of Industrial IoT". Leveraging insights from actual use cases, new policy initiatives, and available solutions, the research explores cybersecurity approaches, including a deep dive into the concept of “defense-in-depth” and its implications for a converged IT-OT environment in the future.

SABSA Implementation(Part III)_ver1-0Maganathin Veeraragaloo

This document discusses strategies for implementing the SABSA framework for security architecture. It outlines aligning various frameworks and methods such as risk management, controls, performance reporting, and defense in depth layering with SABSA. A multi-tiered controls strategy is described that provides proportional capabilities to deter, prevent, contain, detect, track, and recover from risks. This strategy models controls against risk assessments to determine the appropriate control response based on risk proportionality.

Introduction to Cyber SecurityStephen Lahanas

This document discusses the evolution of cyber security and its growing importance. It covers how cyber security now impacts individuals, businesses, and geopolitics. The document also defines key cyber security terms and concepts, examines perspectives like threat management and information assurance, and argues that cyber security must take an integrated, holistic approach going forward. It concludes by noting that with modern society's growing digital interconnectedness, not taking a comprehensive view of cyber security may be the biggest risk.

Next-Gen security operation centerMuhammad Sahputra

Talking about Next-Gen Security Operation Center for IDNIC+APJII as representative from IDSECCONF. People-Centric SOC requires lot of investment on human in terms of quantity and quality, unfortunately, (good) IT security people are getting rare these days. Organisation need to put their investments more on technology, as in Industry 4.0, machines are getting more advanced to support Human on doing continuous and repetitive task. Moving from “traditional” to next-gen SOC require proper plan, thats what this talk was about.

New Paradigms for the Next Era of SecuritySounil Yu

SABSA Implementation(Part I)_ver1-0Maganathin Veeraragaloo

This document provides an overview of implementing a SABSA framework for information security architecture. It begins by discussing how the business context and requirements are analyzed, including attributes profiling to map business drivers to security-related attributes. A sample attribute profile is shown. It then discusses establishing a risk and opportunity framework, including how to assess risks and opportunities related to business attributes. Finally, it provides a sample implementation showing how risks would be addressed through controls and opportunities enabled through enablers as part of the SABSA approach.

SABSA - Business Attributes ProfilingSABSAcourses

Cloud Security StrategyCapgemini

Using the Threat Agent Library to improve threat modelingEric Jernigan MSIA, CISSP, CISM, CRISC

To improve your (threat) modeling career, you need a better (threat) agent (library)! Threat modeling is a process for capturing, organizing, and analyzing the security of a system based on the perspective of a threat agent. Threat modeling enables informed decision-making about application security risk. In addition to producing a model, typical threat modeling efforts also produce a prioritized list of security improvements to the concept, requirements, design, or implementation. In 2009, OWASP posted wiki pages on threat modeling. Although there was the start of a section on threat agents, it has yet to be completed. Intel developed a unique standardized threat agent library (TAL) that provides a consistent, up-to-date reference describing the human agents (AKA; threat actors) that pose threats to IT systems and other information assets. Instead of picking threat agents based on vendor recommendations and space requirements in Powerpoint, the TAL produces a repeatable, yet flexible enough for a range of risk assessment uses. We will cover both the TAL, the Threat Agent Risk Assessment (TARA), how they can be used to improve threat modeling. Speaker Eric Jernigan Information Security Architect, Umpqua Bank

Practical Enterprise Security Architecture Priyanka Aash

This document summarizes two innovative approaches to enterprise security architecture: Google's BeyondCorp architecture and the Cloud Security Alliance's Software Defined Perimeters (SDP). BeyondCorp aims to remove network-based attacks by implementing zero-trust network access based on continuous device/user authentication and authorization. SDP uses cryptographic protocols and dynamic firewalls to create on-demand, air-gapped networks between initiating and accepting hosts. The document then discusses how organizations can implement these approaches using existing security tools and outlines steps to develop an enterprise security architecture.

Network defensesG Prachi

Network defenses include tools like firewalls, VPNs, and intrusion detection systems that help secure networks and protect them from cyber attacks. Firewalls act as barriers that control incoming and outgoing network traffic according to security policies. VPNs extend private networks over public networks through secure tunnels. Intrusion detection systems monitor network traffic and detect suspicious activity. Denial of service attacks aim to make network services unavailable by overwhelming them with malicious traffic. Distributed denial of service attacks use multiple compromised systems to launch large-scale attacks.

Industrial_Cyber_SecurityWillianMachadoFonsec

What is zero trust model (ztm)Ahmed Banafa

The new era of Cyber Security IEC62443WoMaster

The document discusses cyber security standards and threats in industrial networks. It describes the IEC 62443 standard for securing industrial networks and discusses levels of security it provides. The document also summarizes WoMaster's cyber security solutions, including secure remote access, multi-level authentication, ACLs, DHCP snooping, and DDoS prevention in line with IEC 62443 requirements to secure industrial IoT networks. WoMaster's solutions integrate software and hardware for comprehensive protection against cyber threats.

Risk Assessment and Threat Modelingsedukull

Security operations center-SOC Presentation-مرکز عملیات امنیتReZa AdineH

Cyber Security Trends Business Concerns Cyber Threats The Solutions Security Operation Center requirement SOC Architecture model SOC Implementation SOC & NOC SOC & CSIRT SIEM & Correlation ----------------------------------------------------------- Definition Gartner defines a SOC as both a team, often operating in shifts around the clock, and a facility dedicated to and organized to prevent, detect, assess and respond to cybersecurity threats and incidents, and to fulfill and assess regulatory compliance. The term "cybersecurity operation center "is often used synonymously for SOC. A network operations center (NOC) is not a SOC, which focuses on network device management rather than detecting and responding to cybersecurity incidents. Coordination between the two is common, however. A managed security service is not the same as having a SOC — although a service provider may offer services from a SOC. A managed service is a shared resource and not solely dedicated to a single organization or entity. Similarly, there is no such thing as a managed SOC. Most of the technologies, processes and best practices that are used in a SOC are not specific to a SOC. Incident response or vulnerability management remain the same, whether delivered from a SOC or not. It is a meta-topic, involving many security domains and disciplines, and depending on the services and functions that are delivered by the SOC. Services that often reside in a SOC are: • Cyber security incident response • Malware analysis • Forensic analysis • Threat intelligence analysis • Risk analytics and attack path modeling • Countermeasure implementation • Vulnerability assessment • Vulnerability analysis • Penetration testing • Remediation prioritization and coordination • Security intelligence collection and fusion • Security architecture design • Security consulting • Security awareness training • Security audit data collection and distribution Alternative names for SOC : Security defense center (SDC) Security intelligence center Cyber security center Threat defense center security intelligence and operations center (SIOC) Infrastructure Protection Centre (IPC) مرکز عملیات امنیت

Security architecture frameworksJohn Arnold

This document discusses security architecture frameworks and concepts. It outlines different frameworks for security architecture like TOGAF, SABSA, and FAIR. It then discusses key concepts in security architecture like assets, threats, domains, risks, and security measures. Risks can come from assets, threats, or domains and security architecture aims to reduce business risks from IT through frameworks, standards, and applying the right security measures.

Cloud SecurityAWS User Group Bengaluru

The document discusses cloud security and compliance. It defines cloud computing and outlines the essential characteristics and service models. It then discusses key considerations for cloud security including identity and access management, security threats and countermeasures, application security, operations and maintenance, and compliance. Chief information officer concerns around security, availability, performance and cost are also addressed.

Governance of security operation centersBrencil Kaimba

This document provides an overview of governance of security operations centers. It discusses the impact of disruptive technologies on organizations and the need for security operations centers to manage security risks. It covers designing an effective SOC including defining threats, processes, technology and acquiring a SOC. Operating a SOC includes defining expectations, baselining normal activity, using threat intelligence and handling incidents. Qualities of analysts and measuring SOC success are also discussed. Sustainable SOC governance principles like investing in people and emphasizing teamwork are presented.

Security operation center (SOC)Ahmed Ayman

The document discusses security operation centers (SOCs) and their functions. It describes what a SOC is and its main purpose of monitoring, preventing, detecting, investigating and responding to cyber threats. It outlines the typical roles in a SOC including tier 1, 2 and 3 analysts and security engineers. It also discusses the common tools, skills needed for each role, and types of SOCs such as dedicated, distributed, multifunctional and virtual SOCs.

Cyber security career development pathsChelsea Jarvie

Information Security Fundamentals - New Horizons BulgariaNew Horizons Bulgaria

Power point ratih 9e eeratihiragardaniia

More Related Content

What's hot (20)

SABSA Implementation(Part III)_ver1-0Maganathin Veeraragaloo

Introduction to Cyber SecurityStephen Lahanas

Next-Gen security operation centerMuhammad Sahputra

New Paradigms for the Next Era of SecuritySounil Yu

SABSA Implementation(Part I)_ver1-0Maganathin Veeraragaloo

SABSA - Business Attributes ProfilingSABSAcourses

Cloud Security StrategyCapgemini

Using the Threat Agent Library to improve threat modelingEric Jernigan MSIA, CISSP, CISM, CRISC

Practical Enterprise Security Architecture Priyanka Aash

Network defensesG Prachi

Industrial_Cyber_SecurityWillianMachadoFonsec

What is zero trust model (ztm)Ahmed Banafa

The new era of Cyber Security IEC62443WoMaster

Risk Assessment and Threat Modelingsedukull

Security operations center-SOC Presentation-مرکز عملیات امنیتReZa AdineH

Security architecture frameworksJohn Arnold

Cloud SecurityAWS User Group Bengaluru

Governance of security operation centersBrencil Kaimba

Security operation center (SOC)Ahmed Ayman

Cyber security career development pathsChelsea Jarvie

SABSA Implementation(Part III)_ver1-0Maganathin Veeraragaloo

Introduction to Cyber SecurityStephen Lahanas

Next-Gen security operation centerMuhammad Sahputra

New Paradigms for the Next Era of SecuritySounil Yu

SABSA Implementation(Part I)_ver1-0Maganathin Veeraragaloo

SABSA - Business Attributes ProfilingSABSAcourses

Cloud Security StrategyCapgemini

Using the Threat Agent Library to improve threat modelingEric Jernigan MSIA, CISSP, CISM, CRISC

Practical Enterprise Security Architecture Priyanka Aash

Network defensesG Prachi

Industrial_Cyber_SecurityWillianMachadoFonsec

What is zero trust model (ztm)Ahmed Banafa

The new era of Cyber Security IEC62443WoMaster

Risk Assessment and Threat Modelingsedukull

Security operations center-SOC Presentation-مرکز عملیات امنیتReZa AdineH

Security architecture frameworksJohn Arnold

Cloud SecurityAWS User Group Bengaluru

Governance of security operation centersBrencil Kaimba

Security operation center (SOC)Ahmed Ayman

Cyber security career development pathsChelsea Jarvie

Viewers also liked (19)

Information Security Fundamentals - New Horizons BulgariaNew Horizons Bulgaria

Power point ratih 9e eeratihiragardaniia

Dasar keselamatan ict_ukasSyaliza Razak

SmartUnity Building Automation SystemVitaly Fedorov

SmartUnity Building Automation is automation middleware for Beckhoff PLC-based building automation systems. It allows visual programming of Beckhoff PLCs for HVAC, lighting, energy management, security, and other automation using a configuration software. The configuration software lets you program actions, triggers, conditions, and scenarios visually without traditional IEC 61131 languages. SmartUnityBAS supports many common building automation protocols and can integrate with SCADA systems. It provides benefits like less programming effort, easier debugging and maintenance compared to traditional PLC programming.

Building Automation: The scope for energy and CO2 savingsLeonardo ENERGY

This Leonardo ENERGY study shows a vast energy saving potential for the European building stock, by increasing the adoption and installation of Building Automation Technologies (BAT) and Building/Home Energy Management Systems (HEMS/BEMS). Compared with a reference scenario which assumes a continuation of current trends in the adoption and installation of BAT and BEMS/HEMS, the optimal scenario estimates the savings to reach 22% of all building energy consumption by 2028 and maintain that level thereafter. Impressive as the saving potentials are, they will not be realized without measures to stimulate both good practice and higher rates of deployment. The report has identified a range of complementary measures and recommended actions.

Isu dan cabaran duniaAidil Syazwan

Internet of Things in Scandinavia - society and ecosystem for early adaptationJosef Noll

Scandinavia (including Finland) is an early adopter of technology. The Arpanet was first connected to Scandinavia (Kjeller, June 1973), and only later to England. Scandinavian researchers contributed to the TCP/IP protocol, and software developers have contributes with Linux, php, Qt. The people of Scandinavia are demanding, and require the newest services being available. This presentation shows why Scandinavia is on a good way to let IoT-based services become a success.

20170201 RILHEVA RENEWABLES IoT PLATFORMMassimiliano Cravedi

Xeo4 created the Rilheva IoT platform to provide remote monitoring and control for renewable energy plants. The platform allows users to reduce plant downtime, increase efficiency, and limit unnecessary on-site interventions. It provides real-time data collection and analysis to enable proactive issue identification and diagnosis. Case studies showed the platform helped customers save on costs and improve operations.

iot building automationOur Point

PointGrab joined Cisco's Digital Ceiling initiative to develop building automation solutions over a single IP network using its edge analytics smart sensor, CogniPoint. As part of this partnership, PointGrab will collaborate with other companies like Philips, Cree, and Johnson Controls to drive smarter, more connected and secure buildings. PointGrab's sensor uses deep learning to provide precise occupancy analytics which enables effective office management and enhances building efficiency.

Strategic Management Unit I&IICarmel EM High School Chebrole

The document provides an overview of strategic management including definitions, comparison of strategic, tactical and operational levels, types of policies, and the strategic management process. It defines strategic management as the art and science of formulating, implementing, and evaluating cross-functional decisions to enable an organization to achieve its objectives. The strategic management process involves vision and mission formulation, objective setting, strategy development, implementation, and performance evaluation. It aims to create value through exploiting core competencies and achieving synergy.

Business Values for IoT SolutionsIBM Analytics

The document discusses the business value drivers for Internet of Things (IoT) solutions. It notes that the number of connected devices is expected to grow dramatically in the next decade, with estimates ranging from 50 billion to 1 trillion devices by 2025. This growth of IoT has the potential to create $2.7-$6.2 trillion in annual economic impact by 2025. The document outlines examples of how various industries like retail, utilities, insurance and oil/gas are pursuing IoT initiatives to lower costs, improve customer service and gain operational efficiencies.

Iot data analyticsUnmesh Ballal

This document discusses Internet of Things (IoT) data analytics and compares several popular IoT platforms. It begins with an overview of IoT concepts like sensors, connectivity technologies, and components. It then examines Google's architecture for real-time streaming before comparing features of Bosch, Cisco, AWS, and Azure IoT platforms, including device management, analytics, security, and pricing. Finally, it outlines factors to consider when selecting an IoT platform, such as device capabilities, data needs, industry, and infrastructure requirements.

Why and-how-to-choose-an-iot-platforms-201701Omar Nawaz

The document discusses selecting an IoT platform. It notes that 2017 will see a shift towards IoT deployments and monetization. There were many IoT platform announcements in 2016 and acquisitions totaling over $100 billion. However, there are still too many platforms and the market is ready for consolidation. When selecting a platform, considerations include features, managing devices, connectivity, security, analytics and other capabilities. Using an IoT platform can accelerate innovation by focusing on differentiating aspects of solutions.

Does Anyone Remember Enterprise Security Architecture?rbrockway

The concept of Enterprise Security Architecture (ESA) is not new (Gartner 2006), yet the numbers from the past several years’ worth of breach data indicates that most organizations continue to approach security on a project by project basis or from a compliance perspective. This talk will refresh the ESA concept and communicate tangible and realistic steps any organization can take to align their security processes, architecture and management to their business strategies, reduce business risks and significantly improve their overarching security posture.

Building Automation and Control Systems - Atlanta, Georgia, North Carolina, F...McKenney's Inc

InduSoft Building Automation and Energy Management WebinarAVEVA

Bpp 602 security and safety addministrationKamizatul Liyana

20170101 RILHEVA HVAC IOT PLATFORMMassimiliano Cravedi

Xeo4 created the Rilheva IoT platform in 2004 and has since focused exclusively on designing, operating, and evolving the platform. The Rilheva platform allows users to securely transmit real-time data from devices to the cloud, access the data on web/mobile apps, monitor and control devices remotely, and analyze historical device data. It provides features like alarms, reports, and integrations with third-party analytics tools. Xeo4 offers various hardware devices that can feed data to the Rilheva platform via protocols like Modbus, as well as cloud-based services for VPN access and distributing automations. The platform is customizable and aims to help users transform device data into actionable information.

2014 pt3 21_sejarahSarvess Peace

Information Security Fundamentals - New Horizons BulgariaNew Horizons Bulgaria

Power point ratih 9e eeratihiragardaniia

Dasar keselamatan ict_ukasSyaliza Razak

SmartUnity Building Automation SystemVitaly Fedorov

Building Automation: The scope for energy and CO2 savingsLeonardo ENERGY

Isu dan cabaran duniaAidil Syazwan

Internet of Things in Scandinavia - society and ecosystem for early adaptationJosef Noll

20170201 RILHEVA RENEWABLES IoT PLATFORMMassimiliano Cravedi

iot building automationOur Point

Strategic Management Unit I&IICarmel EM High School Chebrole

Business Values for IoT SolutionsIBM Analytics

Iot data analyticsUnmesh Ballal

Why and-how-to-choose-an-iot-platforms-201701Omar Nawaz

Does Anyone Remember Enterprise Security Architecture?rbrockway

Building Automation and Control Systems - Atlanta, Georgia, North Carolina, F...McKenney's Inc

InduSoft Building Automation and Energy Management WebinarAVEVA

Bpp 602 security and safety addministrationKamizatul Liyana

20170101 RILHEVA HVAC IOT PLATFORMMassimiliano Cravedi

2014 pt3 21_sejarahSarvess Peace

Similar to iCode Security Architecture Framework (20)

Security models for security architectureVladimir Jirasek

Risk-driven and Business-outcome-focused Enterprise Security Architecture Fra...Craig Martin

Ana Kukec, Lead Enterprise Security Consultant, Enterprise Architects, Australia The Open Group Architecture Forum and Security Forum agree that the coverage of security in TOGAF should be updated and improved. The understanding and focus of security architecture has moved from a threat-driven approach of addressing non-normative flaws through systems and applications to a risk-driven and business outcome-focused methodology of enabling a business strategy. Following this trend, we defined fundamental characteristics of effective security architecture. 1) Capabilities are primary assets at risk, while information systems and technology components are secondary assets at risk supporting the primary assets. 2) Security requirements include the business aspects and not only the technology aspects of confidentiality, integrity and availability. 3) IT risk management is business-opportunity-driven. It requires understanding of risk appetite across business, information systems and technology architecture to manage security risks of vulnerabilities and compliance issues, which may arise at any layer of enterprise architecture in a business-outcome-focused way. 4) Security services are aligned to business drivers, goals and objectives, and managed in a risk-driven way. Yet, there is no single security architecture development methodology to deliver these characteristics. We believe that existing information security standards and frameworks in a combination with the TOGAF are sufficient to meet the aforementioned fundamental characteristics of effective security architecture. However the challenge is in their integration. Our Enterprise Security Architecture Framework integrates key industry standards and best practices for information security and risk management, such as COBIT 5 for Information Security, ITILv3 Security Service Management, ISO/IEC 27000 and ISO/IEC 31000 families of standards, using the TOGAF Architecture Development Method and Content Meta-model as the key integrators. It is a pragmatic security architecture framework which establishes a common language between IT, security, risk and business organisations within an enterprise and ensures effective and efficient support of long-term security needs of both business and IT, with a risk-driven enterprise as a final outcome. We will present a case study of the implementation of the aforementioned business-outcome-focused and risk-driven Enterprise Security Architecture Framework at the University of New South Wales. Key takeaways: -- Overview of a risk-driven and business-outcome-focused security architecture methodology seamlessly integrated with the TOGAF -> Security strategic planning -> Enterprise-wide compliance, internal (policies and standards) and external (laws and regulations -> Business-opportunity driven management of security risk of threats, vulnerabilities and compliance issues across business, information systems and technology architecture

Enterprise Security Architecture: From access to auditBob Rhubart

2012 10 cloud security architectureVladimir Jirasek

Security architecture and cloud computing are not mutually exclusive according to Vladimir Jirasek, Director of Research at CSA UK. There is a direct map between cloud models (IaaS, PaaS, SaaS) and areas of security models (identity and access management, encryption, firewalls etc.). Responsibilities for security areas depend on the cloud model, with providers taking more responsibility in IaaS and customers taking more in SaaS. The document provides guidance on developing cloud security standards and managing security risks when using cloud computing.

Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...Microsoft Private Cloud

The document discusses identity and security challenges in difficult economic times. New threats and sophisticated cybercrime are on the rise while IT budgets are shrinking. This increases risks from internal attacks, costly data breaches, and non-compliance with regulations. Microsoft's strategy focuses on simplified management, deployment, reporting and compliance through an integrated suite of identity and security products. The strategy and products are aimed at mitigating risks, growing sales, reducing costs, retaining customers, and adapting to change.

[Chaco] Soluciones de Seguridad – Nicolás Pérez, GiuxIBMSSA

The document provides an overview of IBM's security solutions including definitions, frameworks, and specific product offerings. It discusses key challenges in securing virtualized environments such as new vulnerabilities, increased attack surface, and loss of visibility. It also summarizes IBM's Virtual Server Protection solution for VMware which aims to maintain security during VM migrations, control VM sprawl, and protect the hypervisor. Overall, the summary highlights IBM's comprehensive security portfolio and how their virtualization security solutions help customers address risks, ensure compliance, and improve operational efficiency.

IDBI Intech - Information security consultingIDBI Intech

The document provides information about IDBI Intech Limited's information security consulting services. It discusses their corporate office location and credentials. It then describes services like managed security services, information systems audits, implementation reviews, and information security awareness training. It also provides examples of security audits and reviews conducted for clients such as Central Bank of India, Union Bank of India, and Stock Holding Corporation of India Ltd.

Intel Cloud Summit: Greg Brown McAfeeIntelAPAC

This document discusses building confidence in cloud security. It outlines challenges in cloud computing like loss of physical controls and new attack surfaces. It proposes making cloud security equal to or better than traditional enterprise security by securing connections, applications/data/traffic, and devices. The document also discusses extending security policies to virtualized and private clouds and providing visibility and control across cloud infrastructures. Finally, it discusses McAfee's datacenter security solutions for servers, virtual machines, and databases.

Dataplex Company Overviewdataplex systems limited

VSD InfotechVSD infotech

VSD Infotech is an IT services company specializing in information security, network management, and data center solutions. They offer a range of services including: (1) implementing Information Security Management Systems to help organizations securely manage sensitive data according to ISO/IEC 27001 standards, (2) network security assessments and testing, and (3) consulting services to help businesses design and implement secure systems and best practices. They also provide networking solutions and products from technology partners to optimize customer networks.

En arkitektonisk vy av en ledande och dynamisk IT-säkerhetsportfölj - PCTY 2011IBM Sverige

IBM Security solution provides a comprehensive portfolio of security products and services including identity and access management, data security, application security, infrastructure security, security intelligence and analytics. The IBM Security Framework describes security issues from a business perspective and provides a product-agnostic view of security based on standards and principles. The IBM Security Blueprint maps the framework to IBM's security capabilities, offerings, platforms and components to provide integrated security solutions.

Hacktive Security - Ethical Hacking ServicesCarlo Pelliccioni, CISSP

Hacktive Security is an independent security consulting firm that provides assessment, detection, forensic, protection, research, and training services to ensure secure information systems across various industries. It has expertise in security assessments and works with partners to offer a wide range of security services. The company aims to achieve excellence in preserving and protecting information through high security standards and innovative approaches.

Hacktive Security - IT Security ServicesFrancesco Mormile

null Bangalore meet - Cloud Computing and Securityn|u - The Open Security Community

Cloud computing provides on-demand delivery of IT resources and applications via the Internet with benefits of scalability, cost-savings and flexibility. However, security is a major concern as customers lose direct control over data and infrastructure. The document discusses key cloud security domains including data security, reliability, compliance and security management. Customers are most concerned about security, reliability and economics when considering cloud adoption. Providers must offer transparency, strong availability guarantees and easy security controls to help customers address these risks.

Software Plus Services Customer Deck[1]ISS

This document discusses Microsoft's platform and strategy for delivering services. It focuses on three areas: SaaS for delivering applications and services, SOA for composing multiple applications and services, and enhancing the user experience. The platform provides consistent experiences across devices, choice in delivery (on-premise, partner-hosted, or Microsoft-hosted), and federation between enterprises and cloud services. It aims to externalize infrastructure, consumerize productivity tools, and enable composition of IT and business services.

Kostnadseffektiv implementation av IT-säkerhetsstrategi – Accenture - IBM Sma...IBM Sverige

Presentation från IBM Smarter Business 2011. Spår: Hantera risk och säkerhet. Accenture ger sin vision och sina råd på hur du skapar en IT-säkerhetsstrategi som leverarar värde snabbt men samtidgt håller ner kostnaderna och behåller fokuset på affärsmålen. Dessa råd kommer från år av Accentures global erfarenhet av IT-säkerhetsstrategier. Talare: Peder Nordvaller & Alexandre Messo, Accenture. Mer information på www.smarterbusiness.se

E-Mail Compliance Frameworks in the Real WorldChris Byrne

The document discusses why corporate governance and compliance are important. It notes that there are over 200 international regulatory and legal compliance requirements that must be met. Compliance is required in many areas like Sarbanes-Oxley, HIPAA, privacy laws, and more. Strong IT governance is needed to support corporate governance objectives and compliance requirements as technology is so embedded in business operations. IT should support business goals and requirements, not drive them. Various frameworks for compliance and governance are discussed like COBIT, which provides principles and guidelines.

Isc2conferancepremay15finalMahmoud Moustafa

This document discusses new trends in cyber threats seen in recent years, including hacking becoming a profitable business model practiced by underground criminal networks. Specific incidents mentioned include the Sony PlayStation Network hack in 2011 that impacted over 70 million user accounts, and hacks by Anonymous and LulzSec targeting Sony websites in 2011 in retaliation for legal actions. The document notes cybercrime has become organized using payment systems like eBay, with malware-as-a-service offerings and stolen account resales on the black market.

Making Executives Accountable for IT SecuritySeccuris Inc.

Future Focus InfotechLyf Ffi

Future Focus Infotech provides IT-HR consulting services, software development, and end-to-end consulting through their TechSearch, TechSource, and TechServ/TechSoft offerings. They have a presence in India, UAE, and the US. The company focuses on strategic technologies like ERP, CRM, .NET, Java, and BI for industries like BFSI, food and beverages, telecom, and manufacturing. Future Focus Infotech is ISO 9001:2008 certified and focuses on sustained growth through innovation, passion for their people, collaborative relationships, financial stability, and improving human resource development.

Security models for security architectureVladimir Jirasek

Risk-driven and Business-outcome-focused Enterprise Security Architecture Fra...Craig Martin

Enterprise Security Architecture: From access to auditBob Rhubart

2012 10 cloud security architectureVladimir Jirasek

Microsoft India - Forefront Value Of Identity And Security Offerings Presenta...Microsoft Private Cloud

[Chaco] Soluciones de Seguridad – Nicolás Pérez, GiuxIBMSSA

IDBI Intech - Information security consultingIDBI Intech

Intel Cloud Summit: Greg Brown McAfeeIntelAPAC

Dataplex Company Overviewdataplex systems limited

VSD InfotechVSD infotech

En arkitektonisk vy av en ledande och dynamisk IT-säkerhetsportfölj - PCTY 2011IBM Sverige

Hacktive Security - Ethical Hacking ServicesCarlo Pelliccioni, CISSP

Hacktive Security - IT Security ServicesFrancesco Mormile

null Bangalore meet - Cloud Computing and Securityn|u - The Open Security Community

Software Plus Services Customer Deck[1]ISS

Kostnadseffektiv implementation av IT-säkerhetsstrategi – Accenture - IBM Sma...IBM Sverige

E-Mail Compliance Frameworks in the Real WorldChris Byrne

Isc2conferancepremay15finalMahmoud Moustafa

Making Executives Accountable for IT SecuritySeccuris Inc.

Future Focus InfotechLyf Ffi

iCode Security Architecture Framework

2. Agenda Security Verified Introduction Approach to Develop Security Architecture Information Security Concepts Security Architecture Levels & Viewpoints Technical Viewpoint Information Viewpoint Business Viewpoint Security Architecture Framework iCode Professional Services © 2012 iCode information security All rights reserved

3. Introduction Security Verified There are a Number of Approaches to Develop a Security Architecture Like : 1. As a DOMAIN in the TECHNICAL ARCHITECTURE 2. As TOTALLY SEPARATE Security Architecture ViewPoint Security is Pervasive across all of Architecture impacting : - Business - Information - and Technology © 2012 iCode information security All rights reserved

4. Approach to Develop Security Architecture Security Verified Architecture Information Security : . Data Security Architecture Requirements Solutions & Business . Data Classification Security . Application Security Architecture Standard Architecture Security : Technology . Business Security Requirements . Security Organization Security : . Security Policy . Technology Framework Security . Process Security Requirements . Security Principles . Security Patterns . Security Services . Security Bricks © 2012 iCode information security All rights reserved

5. Information Security Concepts Security Verified Digital Signatures Encryption Authentication Verifies identities Confidentiality Integrity only authorized Data has not been disclosure changed Isolation Information Data Validation System Data Hashing Core Concept Resilient Designs Availability Data has not been Related Concept changed Utility Service Level Technique Usefulness Agreements of data © 2012 iCode information security All rights reserved

6. iCode Security Architecture Framework Security Verified Vision Security Services Framework Design Principles Requirement Templates Business Information Technical Viewpoint Viewpoint Viewpoint © 2012 iCode information security All rights reserved

7. Technical Viewpoint Security Verified Vision Security Services Framework .Trust Levels .Conceptual Technology Models Design Principles .Logical Technology Models .Trust Models Requirement Templates . Technical Reference Models .Security Infrastructure Architecture .Security Services Architecture .Application Security Architecture Technical Viewpoint © 2012 iCode information security All rights reserved

8. Information Viewpoint Security Verified Vision Security Services Framework . Policy Framework . Information Classification Framework Design Principles . Security Information Flow Models . SLA Model Requirement Templates . Security Information Architecture . Information Classification Register . SLA’s Information Viewpoint © 2012 iCode information security All rights reserved

9. Business Viewpoint Security Verified Vision Security Services Framework .Process Models .Roles & Responsibi- lities Models Design Principles .Organization Models Requirement Templates .Organizational Architecture Business Viewpoint © 2012 iCode information security All rights reserved

10. Global Security Architecture Framework Security Verified Vision Security Services Framework .Process . Policy .Trust Levels Models Framework .Roles & . Information .Conceptual Responsibi- Classification Technology lities Models Framework Models Design Principles . Security Information .Logical Technology .Organization Flow Models Models Models . SLA Model .Trust Models Requirement Templates .Organizational . Security Information Architecture . Technical Reference Models .Security Infrastructure Architecture . Information Classification Register Architecture . SLA’s .Security Services Architecture .Application Security Architecture Business Information Technical Viewpoint Viewpoint Viewpoint © 2012 iCode information security All rights reserved

iCode Security Architecture Framework

Recommended

More Related Content

What's hot (20)

Viewers also liked (19)

Similar to iCode Security Architecture Framework (20)

iCode Security Architecture Framework