Information systems are made up of many interconnected components that communicate in order to provide services. To ensure that the interaction between these components is optimized and reliable, organizations must develop and implement a global enterprise architecture serving as a reference for the design and implementation of their information systems. This architecture must take into account aspects of information security and information systems.
Enterprise Security Architecture (ASE) is a high-level document that describes a structured interrelation between the components at the business, process and technology levels. ESA avoids the development in silo of security solutions that could cause compatibility and security problems. In other words, ASE makes it possible to reduce the vulnerabilities by stating the orientations and the principles of security to respect when designing and implementing information systems. Our architects use TOGAF and SABSA as the standard.