This document provides an overview of enterprise security architecture and the SABSA framework. It discusses how enterprise security architecture aims to address system complexity and business alignment issues. It then provides a brief history of enterprise architecture and introduces the Zachman Framework. It defines enterprise information security architecture and lists some well-known frameworks like NIST CSF and SABSA. It describes SABSA as a methodology comprising six layers based on the Zachman Framework. Finally, it shows how SABSA maps to other security standards and provides a snapshot of the SABSA layers.

1. SACON
SACON International 2017
Arnab Chattopadhyay
Capgemini
Senior Director
India | Bangalore | November 10 – 11 | Hotel Lalit Ashok
Enterprise Security Architecture

2. SACON 2017
• A field born about 30 years ago
• Initially targeted to address two problems
• System complexity
• Inadequate business alignment
Enterprise Architecture

3. SACON 2017
A Brief History of Enterprise Architecture
Zachman’s first article
1987
TAFIM released
1994
Clinger-Cohen bill passed
1996 1998
TAFIM retired
FEAF 1.2 released
1999 2002
FEA replaces FEAF
TOGAF EE 8.0 released
2003 2003
FEA mostly complete
2011
TOGAF 9.1

4. SACON 2017
Zachman Framework

5. SACON 2017
• Is the practice of applying comprehensive and rigorous methods for
describing security of current and future systems
• Ref: Wikipedia
• Applied to people, process and technologies
• Goals
• Provide structure
• Enable business-to-security alignment
• Enforce Top down approach
• Strong traceability
• Abstract complex concepts
• Establish common lingua of information security
Enterprise Information Security Architecture

6. SACON 2017
• NIST CSF
• Sherwood Applied Business Security Architecture (SABSA)
Well Known Enterprise Security Architecture Framework

7. SACON 2017
• Methodology for Building Security Architecture:
• Business-driven
• Risk and opportunity focused
• Includes security service management
• Comprised of a number of integrated frameworks, models, methods
and processes
What is SABSA

8. SACON 2017
• Comprises of six layers
• Based on Zachman framework/taxonomy
• The Security Service Management Architecture has been placed vertically across
the other five layers
• Each horizontal layer is made of a series of vertical communication interrogatives
• What (Assets)
• Why (Motivation)
• How (Process and Technology)
• Who (People)
• Where (Location)
• When (Time)
What is SABSA Contd.

9. SACON 2017
What is SABSA Contd.

10. SACON 2017
Mapping with other Security Standards
ISO 7498-1 ISO 7498-2
Logical
Security
Services
Physical
Security
Mechanisms
Contextual Architecture
Conceptual Architecture
Business
Driven
Requirements
& Strategy
SABSA Views
Logical Architecture
Physical Architecture
Component Architecture
Operational Architecture Service
Management
Detailed
Custom
Specification

11. SACON 2017
SABSA Snapshot
Business Strategy
Goals
Relationsh
ip
Market
Regulation
People
Materials
Finance
Productio
n
Logistics
BAP
Risk
Model
Trust
Model
Security Strategy
Process Design
Policy & Legal
Framework
Technical Design
Logical Security Services
Confidentiality
Identification
Registration
Certification
Directories
Authentication
Authorization
Access Control
Audit Trail
Physical Security Mechanism
Encryption
Naming
Procedures
Signatures
Databases
Passwords
ACLs
Firewalls
Event Logs
Components
Trusted Business Operations
ProductsTools

12. SACON 2017
Thank You