IT security Architecture

The ISO/ IEC 42010/2007 standard defines architecture as « fundamental concepts or properties of a system in its environment embodied in its elements, relationships, and in the principles of its design and evolution “

 

The Open Group Architecture Framework (TOGAF) takes up and broadens this definition by specifying that, depending on the context, architecture has a double meaning:

  • The architecture is a formal description of a system or a detailed plan of the components of the system to guide its implementation;
  • Architecture is the structure of the components, their interrelations and the principles and guides governing their design and evolution over time.

In terms of security, TOGAF states that « to be effective, security must be strong, never taken for granted and it must be designated into an architecture and not bolted on afterwards ». In addition, « in establishing a security architecture, the best approach is to consider what is being defended, what value it has, and what the threats to it are”.

At SM Protection, the security architecture service offered provides the foundation for a safe system, ensures its design, ensures its evolution, and ensures that it meets our customers’ business requirements for a reasonable cost. We assist companies in the following areas:

  • Production of safety policies, standards and guides;
  • Project support for the definition and design of required safety;
  • Conduct a security program to comply with legal requirement.