Book Image

Practical Cybersecurity Architecture

By : Ed Moyle, Diana Kelley
Book Image

Practical Cybersecurity Architecture

By: Ed Moyle, Diana Kelley

Overview of this book

Cybersecurity architects work with others to develop a comprehensive understanding of the business' requirements. They work with stakeholders to plan designs that are implementable, goal-based, and in keeping with the governance strategy of the organization. With this book, you'll explore the fundamentals of cybersecurity architecture: addressing and mitigating risks, designing secure solutions, and communicating with others about security designs. The book outlines strategies that will help you work with execution teams to make your vision a concrete reality, along with covering ways to keep designs relevant over time through ongoing monitoring, maintenance, and continuous improvement. As you progress, you'll also learn about recognized frameworks for building robust designs as well as strategies that you can adopt to create your own designs. By the end of this book, you will have the skills you need to be able to architect solutions with robust security components for your organization, whether they are infrastructure solutions, application solutions, or others.
Table of Contents (14 chapters)
1
Section 1:Security Architecture
4
Section 2: Building an Architecture
9
Section 3:Execution

Summary

Throughout this chapter, we've tried to outline the key elements that you will need to account for in any subsequent design work that you perform. Our philosophy is that once you understand why something is important, the specific steps to accomplishing it become intuitive and self-evident. Additionally, since there are any number of permutations in how an organization might be organized and structured, laying it out in this way allows you to adopt methods that will work best in your environment. However, we have attempted to provide a "recipe" that will work in most situations assuming you understand why each step matters and why it is important.

In this chapter, we've looked at the key dimensions that will inform your planning context: goals, existing organizational structures, and risk management/compliance. These are items that, though not all that you will need data-wise to begin planning, nevertheless inform and direct how your design will proceed...