Security Architecture: Ensuring Security by Design
Often people talk about “security-by-design” or “privacy-by-design”. Indeed, security cannot be “bolted on” at a later stage effectively. The better security is embedded “by design” in all layers of your organization’s business, enterprise, and solution architecture and the better it is embedded in your design/delivery as well as run and operations, the better you will be able to understand your security posture and outstanding gaps and risks.
To establish this understanding and the benefits, this module will demystify security architecture and previously listed domains and how it can and should be used not only by IT but can help to support governance, risk and compliance processes.
Various models will be studied by participants and how these can effectively be used to identify attacks vectors, threats and how these can be used to determine mitigating controls. Initial readings include the TOGAF, SABSA, and OSA frameworks. However, these will be completed with experienced speakers and concrete and practical cases.
Related Roles from the European Cybersecurity Framework
Topic Leader for Module 3
Erik R. VAN ZUUREN
Founder TrustCore.EU // Trusted Advisor TrustServices-eIDentity-CyberSecurity-GovernanceRiskCompliance-EnterpriseArchitecture
Site Content
PRESS RELEASE
Erik R VAN ZUUREN will be the Topic Leader in charge of “Security Architectures” at Solvay’s Executive Master in Cybersecurity Management.
Brussels, TBD, 2023. Professor Georges Ataya, academic Director, confirms the designation of Erik R VAN ZUUREN as the Topic Leader for the domain “Information Security Architecture”, part of Solvay’s Executive Master in Cybersecurity management.
Erik has years of experience/expertize in amongst others: Governance/Risk/Compliance, eGovernment/eBusiness/eBanking, Trust Services and Trusted/Trustworthy (eco-)systems, Enterprise (Security) Architectures, Service Oriented Architectures and Cloud Platforms, Data Privacy & Data Protection, Information & CyberSecurity (Management), etc. Erik's experiences include activities in public sector as well as activities in a diverse spectrum of private sector organizations. Key content-topics Erik focusses on at current are: Enterprise (Security) Architecture, the vast topic of Openbanking (incl Payment Services Directive 2), Implementation of the eIDAS-Trust Regulation and the European Digital Identity. In addition, Erik is also teaching at Solvay.edu, is chair of the Advisory Board of the Belgian Cyber Resilience Conference and is member of the Vlaamse Toezichtcommissie.
On the “Security Architecture” domain/module, Erik stated “The better security is embedded “by design” the better you will be able to understand your security posture and outstanding gaps and risks and the better you will be able to master your governance, risk and compliance processes. Hence security architecture is much more than just an IT-topic”.
The “Security Architecture” domain/module is part of the executive Master in Cybersecurity Management (which in turn is part of the Digital Governance and Trust education series) at the Brussels-based Business school. Running since 2001, this postgraduate education evolved to the needs of digital professionals. After a two-year interruption, a renewed Hybrid education method shall be launched on March 1, 2023.
“Combining monitored self-study, with in-person classes featuring senior European experts, and a case study in teams will give a blended experience and an extensive knowledge base to our participants.” Commented Professor Ataya. Karin Doguet, CEO of Solvay Lifelong learning, reports that “this new education programme shall be leading the way for more hybrid education in the Lifelong Learning portfolio”.
For release 9.AM, February 25, 2023.