Enterprise Security Architecture
Security is not a checklist. Security is not necessary because auditors say you need security. Security is here to help you and need to be well-balanced between operations, tactics and strategy.
XWL uses the internationally recognised SABSA (Sherwood Applied Business Security Architecture) methodology for developing risk-driven enterprise security and information assurance architecture and for delivering solutions that trace-ably support critical business initiatives.
SABSA takes a top-down approach that provides many business level advantages:
- managing complexity,
- maintaining integrity of design in large complex developments,
- lowering the total cost of ownership,
- resolving conflicting objectives and priorities,
- rational framework for making design decisions and solving new problems.
Security architecture is an important part of your business and must meet YOUR unique set of business requirements. SABSA is a flexible methodology which can incorporate choice and change of policy, standards, practices, or legislation (ISO 27001, SOX, PCI, NIST, ITIL etc).
We have successfully developed a SABSA framework for our customers.