Security Architecture and Design

               Enterprise Security Architecture
                   •  Goals can be strategic (long term), tactical
                       (midterm), or operational (short term)
                          •  Note that the labels (strategic,
                              tactical, and operational) can vary
                              from different sources.  The important
                              point is that at the lowest level are
                              the people who do the job, at the
                              mid-level are the people who manage
                              the job, and at the top level are the
                              people who decide what job to do.
                              CISSPs are typically at the mid or top
                              levels.
                   •  Your solutions approach can be enterprise
                       solutions (with management support) or
                       point solutions (no management support).
                   •  Deming was the “father” of total quality
                       management (TQM)
                   •  Zachman framework: two-dimensional
                       classification scheme (levels of architecture
                       & levels of interest).
                   •  Other frameworks include COBIT, COSO,
                       ITIL, CMMI, SEI IDEAL, TOGAF, and ISO
                       42010:2007.

               Common Computer Architecture
                   •  CPU States