Information Security Governance & Architecture is the process of defining an organisational-wide information security framework that is driven from the business needs and objectives. The aim is to allow security to be a business-enabler through not only addressing risks but enabling opportunities.
Our approach is based on industry leading frameworks such as SABSA®, ISO 27001, NIST, COBIT®, and ITIL® together with other specific standards and regulations as required by the organisation.
One of the key frameworks we reference is SABSA®, which is a proven methodology for developing business-driven, risk and opportunity focused Security Architectures at both enterprise and solutions level that are traceable to business objectives. SABSA® is the leading methodology for delivering cohesive information security solutions to enterprises. The SABSA® Framework ensures that the security needs of an organisation are met completely and are designed, delivered and supported as an integral part of the IT management infrastructure.
Benefits to client:
Information Security aligned with the organisational objectives
Availability of a robust information security strategy and Governance Model
Through-life focus on information security, enabling the organization to embed security at a project level
Information Security Governance Working Documents used to ensure security of systems
Practical and relevant Information Security Policies aligned with ISO 27001 and other applicable frameworks