WBISCT Pty Ltd – Enterprise Architecture Consulting and Training

Course Title: an Introduction to securing Enterprise Architecture Projects

Course Description: This course will provide an overview of enterprise architecture and cybersecurity principles and practices. Participants will learn about the importance of enterprise architecture in supporting business goals and strategies, as well as the key components of a comprehensive cybersecurity program. The course will also cover best practices for aligning secure by design enterprise architecture thinking with cybersecurity initiatives to enhance the security posture of an organisation.

Duration: 3-Day course face to face or online, private or public

Course Delivery: The course will be delivered through a combination of short lectures, case studies, and hands-on exercises. Participants will have access to course materials and resources online, as well as the opportunity to engage in group discussions and Q&A sessions with the instructor. The use of an online collaborative whiteboard like MIRO will be offered.

Assessment: Participants will be self-assessed through quizzes, exercises, short presentations, and a final 3-part project. The final project will require participants to develop a comprehensive enterprise architecture and cybersecurity plan for a hypothetical organisation.

Prerequisites: There are no prerequisites for this course, although a basic understanding of information technology, project management and cybersecurity main concepts would be helpful.

Audience: typically, this course is aimed at anyone with little to no practical knowledge of cybersecurity and enterprise architecture, but it would prove very useful for architects, solutions designers, project managers and even cybersecurity deciders to attend and refresh their understanding on those fields like applied architecture cybersecurity proofing their project outcomes.

Learning Objectives:

  • Understand the fundamentals of enterprise architecture and its role in supporting business goals and strategies
  • Understand the principles and practices of cybersecurity, including risk management, threat modelling, and incident response
  • Identify the key components of a comprehensive cybersecurity program, including governance, risk management, compliance, and technical controls
  • Learn how to align enterprise architecture with cybersecurity initiatives to enhance the security posture of an organisation
  • Understand the impact of emerging technologies on enterprise architecture and cybersecurity
  • Learn to prepare and be more proactive with regard to securing EA projects

Course Outline:

DAY 1

Course Introduction and structure explanation

Module 1: Introduction to Enterprise Architecture

  • Overview of enterprise architecture
  • Benefits of enterprise architecture
  • Frameworks for enterprise architecture
  • Enterprise architecture development process

Module 2: Cybersecurity Fundamentals

  • Overview of cybersecurity
  • Key concepts and terminology
  • Types of cyber threats and attacks
  • Risk management and assessment
  • Threat modelling
  • Incident response and recovery

Module 3: Components of a Comprehensive Cybersecurity Program

  • Governance and compliance
  • Risk management
  • Technical controls
  • Security awareness and training
  • Third-party risk management

COURSE RECAP, Q&A

DAY 2

Module 4: Aligning Enterprise Architecture with Cybersecurity

  • Importance of aligning enterprise architecture with cybersecurity
  • Best practices for aligning enterprise architecture with cybersecurity
  • Integration of cybersecurity into enterprise architecture development process
  • Role of enterprise architecture in supporting cybersecurity initiatives

Module 5: Emerging Technologies and their impact on Enterprise Architecture and Cybersecurity

  • Overview of emerging technologies
  • Impact of emerging technologies on enterprise architecture
  • Impact of emerging technologies on cybersecurity
  • Best practices for incorporating emerging technologies into enterprise architecture and cybersecurity initiatives

Module 6: An Example of Security Architecture Framework in a nutshell – SABSA*

  • What is SABSA?
  • SABSA history and evolution
  • The SABSA Framework
  • The SABSA Methodology
  • Applying SABSA to Enterprise Security Architectures

Module 7: Applying Security to the four EA project contexts

  • Explaining Cyber security and the four EA domains
  • Explaining Cyber security and the four EA contexts

COURSE RECAP, Q&A


DAY 3

Module 8: Using the WBISCT ASCM© (assets security classification model and method)

  • Introducing the WBISCT ASCM methodology, models and processes
  • Working out how to prepare and apply WBISCT ASCM in the EA project development and delivery

Module 9: Case study

  • Introducing the Case study
  • Working out how to prepare and apply Cybersecurity throughout the EA project development and delivery

Module 10: Group application workshop

  • Choosing a workshop situation theme
  • Introducing the theme background
  • Applying the course knowledge to the chosen workshop theme as a group

This course is available as online and F2F, Private and Public. If you are interested, please let us know, so we can schedule it at a suitable place and time.

*This course does not cover SABSA, it only gives a very brief overview of it as an example to contextualise how to use such framework alongside EA.