F1 – Security Strategy and Planning
This module provides participants with a comprehensive understanding of how the SABSA framework delivers successful security strategy and architecture. Through a series of innovative presentations, case studies and workshops, you will develop the skills to use the most proven security architecture design and management processes and find out how to develop a comprehensive strategy for the creation of a security architecture that genuinely meets the needs of your organisation.
The top ten competencies developed on this course are:
- Define enterprise security architecture, its role, objectives and benefits
- Describe the SABSA model, architecture matrix, service management matrix and terminology
- Describe SABSA principles, framework, approach and lifecycle
- Use business goals and objectives to engineer information security requirements
- Create a business attributes taxonomy
- Apply key architectural defence-in-depth concepts
- Explain security engineering principles, methods and techniques
- Use an architected approach to design an integrated compliance framework
- Describe and design appropriate policy architecture
- Define security architecture value proposition, measures and metrics
F2 – Security Service Management and Design
This module leverages the strategy defined in Foundation Module One to create the roadmap to design, deliver and support a set of consistent and high-quality security services.
Covering the good practice lifecycle, participants will find out how to design, deliver and support a comprehensive security services architecture that integrates fully and seamlessly with their existing IT management and business infrastructure and practices.
The top ten competencies developed on this course are:
- Use SABSA to create an holistic framework to align and integrate standards
- Describe roles, responsibilities, decision-making and organisational structure
- Explain the integration of SABSA into a service management environment
- Define Security Services
- Describe the placement of security services within ICT Infrastructure
- Create a SABSA Trust Model
- Describe and model security associations intra-domain and inter-domain
- Explain temporal factors in security and sequence security services
- Determine an appropriate start-up approach for SABSA Architecture
- Apply SABSA Foundation level competencies to your own environment