8S From Concept to Implementation presented at COSAC 2015

by Chris Blunt, Michael Price,

Summary : You’ve successfully delivered the Strategy and Planning phase of the Enterprise Security Architecture (ESA) lifecycle and have an approved Contextual and Conceptual architecture, so what do you do now?
This session will provide an overview of how the SABSA methodologies and techniques were applied to complete the Design phase of an ESA for an organisation adopting cloud computing and mobile devices to deliver front line services. It will follow-up on Chris’ presentation from last year to discuss how SABSA was used to help architect and design security services. Specifically it will look at how it was used to:
Ensure that the business’s requirements established during the Strategy and Planning phase were met;
Develop a security service addressing the logical, physical, component and service management layers; and
Establish trusted reference architectures to support and enable reuse of security services across the organisation.
It will also discuss some of the challenges encountered during the project, together with the strategies that were used to overcome them.