A White Paper by The Open Group on SABSA-TOGAF Integration Working Group comprising a joint effort by The SABSA Institute and The Open Group Architecture and Security Forums.
James Lynas
W102 – SABSA Risk Management: The Meaning of Risk
An introduction to the SABSA view of ‘risk’ from a philosophical and existential point of view.
W101 – Architecting a Secure Digital World
An introduction to SABSA for people who are new to the topic, providing a high-level overview and describing the benefits of adopting the methodology for architecting a secure digital business.
Competence is Value – Why Knowledge-based Training Falls Short
The roles of information security, risk management and assurance are vital to providing confidence and trust over our use of technology and information, and thus business ability to leverage them for opportunity and gain.
Leveraging Security Standards-based Knowledge
Security standards, in all their various shapes and forms, are often viewed as a deep well of compliance nit-noid details associated with ever-rising demands on resources and periodic compliance and audit agonies. But let’s step beyond the agony to recognize and make effective use of security standards as the rich source of security knowledge they represent.
The SABSA Modeller
Was it the SABSA Foundation Course that first drummed into me, a then transitioning security professional, the importance of “Context, context, context”?
The Business of Risk
How can we make The Business of Risk meaningful, credible, and clearly understood? How do we provide accurate Risk Context for decision-making that balances the likelihood of loss with the possibility of gain?
SABSA’s Integrated Controls Library
Explorie how the Integrated Controls Library (ICL), a centralized repository for information about an organization’s approved security controls and associated meta-data, plays a critical role in fully realizing an enterprise security architecture’s full range of benefits.