This session will explain a process for designing a security architecture that guides an organisation on what safeguards must be implemented in order to address real-world risks and threats. Organisations have a limited budget; the question is, how does the security architect determine what to spend their limited time and budget on in order to obtain the best outcome and return on investment?
Learning Objectives: 1: Understand the tools and techniques available to design a pragmatic and practical security architecture. 2: Understand the controls that make up basic cybersecurity hygiene. 3: Understand the security investment portfolio approach to cybersecurity.
Pre-Requisites: Basic understanding of security architecture, NIST Cyber Security Framework, controls and risk management.