Information systems encompass several components interconnected together to support and help achieve business goals and objectives. In order to ensure that interaction between those components is secured, organizations should develop and implement architecture of information system including security aspects.
Information security architecture (ISA) is a high level document that describes a structured inter-relationship between business components, process and technology. ISA allows customers to avoid the development of security solutions in-silo within the enterprise, which may lead to some compatibility problems. In other term, ISA helps achieve certain outcomes by describing how different security components should be linked and how they should communicate securely.