A group developed the Sherwood Applied Business Security Architecture (SABSA), as shown in Table 1-3, which is similar to the Zachman Framework. It is a layered framework, with its first layer defining business requirements from a security perspective. Each layer of the framework decreases in abstraction and increases in detail so it builds upon the others and moves from policy to practical implementation of technology and solutions. The idea is to provide a chain of traceability through the contextual, conceptual, logical, physical, component, and operational levels.
- Chapter 1 Security and Risk Management
- from CISSP All-in-One Exam Guide, Seventh Edition, 7th Edition
- Publisher: McGraw-Hill
- Released: June 2016
This is a "Top Down" approach to IT Security
Share this highlighthttp://www.safaribooksonline.com/a/cissp-all-in-one-exam/5092286/