The Security Architecture Cycle
Now that you understand where a security architecture starts, it is time to look at the full cycle of Security Architecture.
When you have a risk register with risk for different assets you need to start working on how to mitigate those. The first task is to define the security mechanisms that are needed to solve your problems. A security mechanism is a description of a security solution to a defined security problem.
For example, Encrypted communication solves eavesdropping on network traffic and is solved by using an encryption technology to change a payload to an unreadable format except for the intended reader. [...]
To read the whole post and interact, please visit the SogetiLabs blog: The Security Architecture Cycle