SABSA Foundation: Learning Outcomes

F1 –  Security Strategy and Planning

This module provides participants with a comprehensive understanding of how the SABSA framework delivers successful security strategy and architecture. Through a series of innovative presentations, case studies and workshops, you will develop the skills to use the most proven security architecture design and management processes and find out how to develop a comprehensive strategy for the creation of a security architecture that genuinely meets the needs of your organisation.

The top ten competencies developed on this course are:

  1. Define enterprise security architecture, its role, objectives  and benefits
  2. Describe the SABSA model,  architecture matrix, service management matrix and terminology
  3. Describe SABSA principles, framework, approach and lifecycle
  4. Use business goals and objectives to engineer information security requirements
  5. Create a business attributes taxonomy
  6. Apply key architectural defence-in-depth concepts
  7. Explain security engineering principles, methods and techniques
  8. Use an architected approach to design an integrated compliance framework
  9. Describe and design appropriate policy architecture
  10. Define security architecture value proposition, measures and metrics


F2 – Security Service Management and Design

This module leverages the strategy defined in Foundation Module One to create the roadmap to design, deliver and support a set of consistent and high-quality security services.

Covering the good practice lifecycle, participants will find out how to design, deliver and support a comprehensive security services architecture that integrates fully and seamlessly with their existing IT management and business infrastructure and practices.

 The top ten competencies developed on this course are:

  1. Use SABSA to create an holistic framework to align and integrate standards
  2. Describe roles, responsibilities,  decision-making and organisational structure
  3. Explain the integration of SABSA into a service management environment
  4. Define Security Services
  5. Describe the placement of security services within ICT Infrastructure
  6. Create a SABSA Trust Model
  7. Describe and model security associations intra-domain and inter-domain
  8. Explain temporal factors in security and sequence  security services
  9. Determine an appropriate start-up approach for SABSA Architecture
  10. Apply SABSA Foundation level competencies to your  own environment