Enterprise security design or architecture is challenging which requires focusing on information security throughout the enterprise. Enterprise Security Architecture provides the following goals:
- Provide structure, coherence and cohesiveness
- Must enable business-to-security alignment
- Defined top-down beginning with business strategy
- Ensure that all models and implementations can be traced back to the business strategy, specific business requirements and key principles
- Provide abstraction so that complicating factors such as geography and technology religion can be removed and reinstated at different levels of detail only when required
- Establish a common "language" for information security within the organization
Cyber Experts utilizes various frameworks or methodologies or best practices
Examples: SABSA, TOGAF, Zachman, CIS, CISA, NIST, ISO 27001