Expertbrief Security architecture

Door Henk Bel e.a. 18 dec 2016

Many organizations are struggling to translate their information security policy into concrete measures. Often the policy is defined in abstract terms. That makes it difficult for application or infrastructure designers to determine which policy statements have consequences for their areas of responsibility and how they should interpret them. There is no insight into the coherence of security measures. A security architecture can provide this insight and reduce the complex number of possible directions for solutions on the basis of manageable models and principles. The expert group has endeavoured to clearly map out what a security architecture is precisely, and when it is meaningful to develop a security architecture. Is it really a useful means of communication, or just another hype?