Security Architecture

77 readers

1 users here now

Welcome to Security Architecture

We are dedicated to exploring the world of cybersecurity architecture. This community is a hub for professionals, enthusiasts, and learners who are passionate about designing robust and resilient security solutions to protect digital assets.

Here, you can expect to find a wide range of content including:

Discussions and Advice
Share Useful Resources
Case Studies and Success Stories
News and Updates
Tools and Technologies
Learning Resources
Career and Professional Development

Whether you're a seasoned cybersecurity architect, an aspiring professional, or someone who simply wants to understand the intricacies of cybersecurity architecture, this community provides a platform to share knowledge, exchange ideas, and engage in discussions related to this evolving field.

We emphasize a supportive and inclusive environment where everyone can contribute their unique perspectives and experiences. We encourage respectful discussions, collaboration, and the sharing of valuable resources to foster a vibrant and knowledgeable community.

Rules:

No bigotry: Including racism, sexism, homophobia, transphobia, or xenophobia.
Be respectful. Everyone should feel welcome here.
No NSFW content.
No Ads / Spamming.
No Sales posts or solicitation
All other instance rules apply

founded 2 years ago

MODERATORS

lal309

Welcome! (self.securityarchitecture)

submitted 2 years ago by lal309 to c/securityarchitecture

0 comments fedilink

Welcome Architects!

We are thrilled to have you join this new community of like-minded individuals.

As we embark on this exciting journey together, we kindly ask you to review our community guidelines in the sidebar. These guidelines ensure that everyone's voice is respected and that discussions remain constructive and inclusive.

We also encourage you to contribute and become an active participant by sharing your own unique insights, interesting articles, useful resources, or anything else relevant to information security.

We sincerely hope you enjoy your time here and find value in the interactions you have with fellow members. Let's build something incredible together!

Welcome aboard, and let the discussions begin!

Best regards,

lal309

Does anyone use Axio for their NIST CSF assessments? (self.securityarchitecture)

submitted 2 years ago by lal309 to c/securityarchitecture

0 comments fedilink

I’m wondering about your experience with it. Good, bad and ugly.

Is anyone else excited for NIST CSF v2? (self.securityarchitecture)

submitted 2 years ago by lal309 to c/securityarchitecture

0 comments fedilink

Basically the title. I’m excited and grateful to everyone that contributed to this new iteration. Can’t wait to see the results. What do you think?

Are we stuck in the stoneage? (self.securityarchitecture)

submitted 2 years ago by lal309 to c/securityarchitecture

0 comments fedilink

As I work to get templates created (documents, models, visuals, etc) through Word, Excel, Visio and Sharepoint, I’m thinking to myself “Why can’t we have something a bit more modern to do our daily work?”

Technology has advanced so much but it seems like architecture is ages behind with no clear path to modernize from word documents, spreadsheets, Visio and manual data analysis. I understand that it could be worse (physical paper) but I’m wondering why are we continuing to work this way? Is there something better out there? Some web application to do form like data capture, models, reports, data mining, etc.?

Threat Modeling (self.securityarchitecture)

submitted 2 years ago by lal309 to c/securityarchitecture

4 comments fedilink

Is anyone using threat modeling as a means of continuous architecture? Meaning, you have a threat mode for the entire organization and you periodically review it to ensure your current architecture is capable of handling emerging and changing threats.

Happy 4th of July! (self.securityarchitecture)

submitted 2 years ago by lal309 to c/securityarchitecture

0 comments fedilink

I hope everyone has an amazing 4th of July celebration and that everyone keeps their 10 fingers intact!

How are you visualizing your company’s security maturity? (self.securityarchitecture)

submitted 2 years ago by lal309 to c/securityarchitecture

2 comments fedilink

At the moment, my team and I are assessing our current security posture by doing a HITRUST self-assessment. At the end of it, we are producing a written “enhancement roadmap”, but I would also like to build some type of comprehensive visual of our current state based on the data that we captured during the self-assessment. I’m curious to hear if any of you have ever done something similar and if you have, what format did you use?

Looking to document architecture decisions? (self.securityarchitecture)

submitted 2 years ago by lal309 to c/securityarchitecture

2 comments fedilink

I've been trying to push myself and my team members to document the outcome of decisions we make and the analysis/research performed to reach said decision. We are often asked questions like "Did you think about doing ... instead of ....?" or "Did you account for ....?". Most of the time, they are valid questions, and more often than not the concern was evaluated but we have no way to prove it or to ensure that we indeed account for what we are being asked for.

I spent a lot of time trying to come out with a comprehensive template to codify architectural decision and had to scrap a lot of ideas, then I found a fantastic resource publicly available! So I thought this would be a fantastic resource for other architects that may be looking/struggling to do this.

Architecture Decision Record by joelparkerhenderson

I hope it is as useful to you as it was for me!