Security Architecture

With some of the most creative, forward thinking, business driven Security Architects in the industry Zimbani’s trusted advisors consider the strategic paradigms while structuring the relationships between process and technical solutions. Utilising the notion of applying rational frameworks, development of patterns and adhering to security controls provides our Security Architects with the tool set to achieve both holistic enterprise security requirements and granular integration with legacy and enterprise based systems.

Our security architecture frameworks encompasses clear methods for defining secure architecture, identifying and mitigating risk within delivery, and ensuring relevant control objectives are met. We encompass clear methods for defining, identifying and mitigating risk within delivery, and meet every relevant control objective.

At a project level there is often a tendency to address security issues through design and deployment of “point solutions” that cater for a point in time requirement. In addition, technology drivers tend to overlook the need to consider broader organisational control objectives and ongoing operational aspects of the solution. 

Security architecture can reduce development costs, achieve consistency, enable reuse, leverage of common enterprise processes and technology and develop synergy between systems.

Our principles include: 

  • Consistency for defining and describing security controls
  • A common methodology of applying a risk driven approach to applying security controls to solutions
  • Business and technology objective are not impeded but complimented
  • Controls must be achievable and realistic to an organisations appetite and capabilities;
  • Reuse where possible: Incumbent technologies, existing processes, common controls and sound process
  • Alignment to existing corporate blueprints, policy, standards, patterns and processes;
  • One size does not fit all

Security Architecture is driven by Information Security, which protects a range of internal and external threats to ensure business continuity, minimise business risk, and protects company technology and information assets.

Solution Design

Possessing the toolkit, skills, knowledge and vision to represent the business requirements as a solution, Zimbani’s expert solution architects facilitate the mechanism to realise conceptual notions to achieve business case objectives. In depth understanding of security, operating systems,  networks, infrastructure and application architecture empower our experts to collaborate at all levels across business, project and technical stakeholders.

Our design methodologies include widely adopted concepts of solution delivery such as functional and non-functional requirements analysis, conceptual architecture, information architecture, conceptual views, infrastructure architecture, logical security architecture, physical and logical topology and service transition considerations. 

Principles Include:

  • Deliver to business requirements and objectives
  • Ensure architecture governance of solutions through both waterfall and agile quality gates
  • Expertise across architecture development methodologies and principles such as TOGAF, ZACKMAN and SABSA
  • Alignment to organisational policy standards, methodologies, frameworks and architecture governance

The Zimbani approach:

Our architecture delivery methods will align to organisational delivery lifecycle processes, policy and standards and broader architecture governance.