From the course: Using SABSA to Architect Cloud Security
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Establishing a conceptual architecture - SABSA Tutorial
From the course: Using SABSA to Architect Cloud Security
Establishing a conceptual architecture
- [Instructor] The purpose of an enterprise security architecture, and the SABSA approach in particular, is to understand how the security program can contribute to business success. That means making sure that each business outcome is successfully achieved. To do this, the SABSA architect needs to be able to model the business outcomes. In this context, the business outcomes are generally called business requirements and the architect uses a common or normalized set of outcome terms, such as confidentiality, integrity and availability to express them. These terms can be understood by the business but also by the security engineers who need to design the system to deliver them. In addition to understanding what needs to be delivered, it's important to also understand what success looks like for each one of them. Let's take a business requirement that might be expressed as I want my service to be available online to…
Contents
-
-
-
-
(Locked)
Establishing a conceptual architecture4m 50s
-
(Locked)
Threat modeling for cloud4m 41s
-
(Locked)
Risk management with SABSA4m 31s
-
(Locked)
Using attributes to collect lower layer risks2m 18s
-
(Locked)
Thinking clouds with SABSA6m 3s
-
(Locked)
Tiers of the CAT6m 22s
-
(Locked)
A cloud-enhanced conceptual architecture2m 48s
-
(Locked)
-
-