Security Architecture Design

security-architecture-design

Overview

The purpose of the security architecture blueprint is to bring focus to the key areas of concern for the enterprise, highlighting decision criteria and context for each security domain. Since security is a system property it can be difficult for Enterprise Security groups to separate the disparate concerns that exist at different system layers and to understand their role in the system as a whole.

STG Security Architecture Design blueprint provides a framework for understanding disparate design and process considerations; to organize architecture and actions toward improving enterprise security.

Security services provide confidentiality, integrity, and availability services for the platform. Security services are implemented as protection services – such as authentication and authorization, detection services – such as monitoring and auditing, and response services – such as incident response and forensics. These services have served as the goals and objectives for information security programs for many years, but they do not provide an actionable blueprint as such. STG Security Architecture Design enables your organization to map these security services into an overall enterprise security architecture blueprint.

The Enterprise Security Architecture Design Blueprint service is modeled on the following;

  • Risk Management
  • Security Policy and Standards
  • Security Processes
  • Threat Management
  • Vulnerability Management
  • Defense in Depth