Security Architecture

Designing secure systems and infrastructure

Security Architecture involves designing, building, and maintaining the security structures and frameworks that protect an organization’s information systems and data.

Core Principles

Defense in Depth - Multiple layers of security controls
Least Privilege - Minimum necessary access
Separation of Duties - Dividing critical functions
Zero Trust - Never trust, always verify
Secure by Design - Building security into systems from the start

Architecture Components

Network security architecture
Identity and access management
Data protection and encryption
Application security
Cloud security architecture
Endpoint security

Frameworks

SABSA (Sherwood Applied Business Security Architecture)
TOGAF Security Architecture
NIST Cybersecurity Framework
Zero Trust Architecture (ZTA)

Deliverables

Security architecture documents
Reference architectures
Security standards and patterns
Technology roadmaps
Architecture review processes

Related Certifications

Certified Information Systems Security Professional (CISSP)

CompTIA SecurityX (formerly CASP+)

CompTIA Secure Infrastructure Specialist (CSIS)

← All Skills View Resume