Security Architecture

Security Architecture

Security architecture is a design which identifies the potential risks involved in a certain scenario that the threat actors are likely to exploit. It describes how the security controls are positioned and how they relate to the overall systems architecture. It also specifies when and where to apply security controls. Key attributes of security architecture are:

  • Relationships and dependencies
  • It generally includes a catalog of conventional controls in addition to relationship diagrams, principles and so on.
  • Drivers: Security controls are determined based on four factors:

  • Risk Management
  • Benchmarking and good practise
  • Financial
  • Legal and regulatory
  • Key phases that our organization includes in the security architecture process are as follows:

  • Architecture Risk Assessment
  • Security architecture and design
  • Implementation
  • Operations and monitoring