SABSA stands for Sherwood Applied Business Security Architecture . It is a proven framework and methodology for enterprise security architecture and service management. SABSA is designed to ensure that security models are fully integrated with business needs and goals, rather than being treated as a separate IT issue. Key Aspects of SABSA Business-Driven

Unlike prescriptive standards such as ISO 27001 or technical control libraries like NIST, SABSA is a and a lifecycle methodology . It does not tell you what specific product to buy; instead, it provides a structured approach (a "how-to") for designing a security architecture from the ground up, starting with the business vision.

then

The SABSA framework is built on a six-layer model, often represented as a matrix. Each layer looks at security from a different stakeholder's perspective and answers six critical questions: .

We have detected that you are using ad blocker software and this may cause dysfunction. To have a better user experience, please turn it off and refresh this page.