F1 –  Security Strategy and Planning

This module provides participants with a comprehensive understanding of how the SABSA framework delivers successful security strategy and architecture. Through a series of innovative presentations, case studies and workshops, you will develop the skills to use the most proven security architecture design and management processes and find out how to develop a comprehensive strategy for the creation of a security architecture that genuinely meets the needs of your organisation.

The top ten competencies developed on this course are:

• Define enterprise security architecture, its role, objectives  and benefits
• Describe the SABSA model,  architecture matrix, service management matrix and terminology
• Describe SABSA principles, framework, approach and lifecycle
• Use business goals and objectives to engineer information security requirements
• Create a business attributes taxonomy
• Apply key architectural defence-in-depth concepts
• Explain security engineering principles, methods and techniques
• Use an architected approach to design an integrated compliance framework
• Describe and design appropriate policy architecture
• Define security architecture value proposition, measures and metrics

F2 – Security Service Management and Design

This module leverages the strategy defined in Foundation Module One to create the roadmap to design, deliver and support a set of consistent and high-quality security services.

Covering the good practice lifecycle, participants will find out how to design, deliver and support a comprehensive security services architecture that integrates fully and seamlessly with their existing IT management and business infrastructure and practices.

The top ten competencies developed on this course are:

1. • Use SABSA to create an holistic framework to align and integrate standards
   • Describe roles, responsibilities,  decision-making and organisational structure
   • Explain the integration of SABSA into a service management environment
   • Define Security Services
   • Describe the placement of security services within ICT Infrastructure
   • Create a SABSA Trust Model
   • Describe and model security associations intra-domain and inter-domain
   • Explain temporal factors in security and sequence  security services
   • Determine an appropriate start-up approach for SABSA Architecture
   • Apply SABSA Foundation level competencies to your  own environment