SlideShare a Scribd company logo

What is a secure enterprise architecture roadmap?

Download as PPTX, PDF
Ulf Mattsson, profile picture
Ulf Mattsson

The document discusses secure enterprise architecture and its integration with cybersecurity, emphasizing the need for strong protection mechanisms and compliance with regulations such as GDPR. It explores various security frameworks and technologies, including mutual TLS, hardware fingerprinting, and application whitelisting, alongside the challenges posed by blockchain in relation to current compliance laws. For further inquiries, contact David Morris at his provided email.

Technology
Related topics:
Insights on Software Development Web Design and DevelopmentQuantum Computing
1 of 8
Downloaded 122 times
1
2
3
Most read
4
5
Most read
6
Most read
7
8
Juanita Koilpillai Chief Technology Advisor Digital Risk Management Institute Mark Rasch Chief Legal Council Digital Risk Management Institute David Morris Early Pioneer in Cybersecurity Managing Partner Morris Cybersecurity What is a Secure Enterprise Architecture Roadmap? Cybersecurity: The No Spin Zone Ulf Mattsson Head of Innovation at TokenEx
Enterprise Architecture - Based on Operations - Cyber Security permeates every layer Source – Cloud Security Alliance & United Health
Security Enterprise Architecture Source – NIST - Technology & Policy Focused
Security Enterprise Architecture Source – ISO 27001 - Audit Focused
Security Reference Architecture - Dev/Ops Focused Source – AWS
Example - Security Design - Zero visibility for Critical Applications & infrastructures Clients Don’t allow anything to connect to them Authen cate to the servers(eg. using Mutual TLS) Servers Mutual TLS Use Authoriza on to Elevate Trust (eg. single packet authen ca on Single Packet Mi gate the the of keys (eg. hardware fin g erprin ng) 1 2 3 4 Hardware Fingerprin ng Require authoriza on to ini ate communica on Deny all connec ons 5 6 Use independent communica on port for admins (MFA, Specific IPs) Admins 7 Applica on Whitelis ng Secure Hardware Eg. Hardware Root of Trust Pin comms to the Root Secure Boot Hardened OS File Integrity Monitoring 8 Elements of a protec on mechanism - So ware Defined Perimeter Op onal Users MFA
Does Blockchain, GDPR, Cloud, and IoT conflict with compliance regulations complicating your SEA? GDPR is not blockchain-compatible the way it is written today. Blockchain data can't be deleted. So will its applications be illegal? • There are ways for Blockchain applications to be compliant - data could be stored off-chain in distributed or cloud-based servers. Cloud considerations • From a storage and compliance perspective, they accumulate information about humans and our interaction with IoT devices. • One of the key questions asked how we make sure this is done in a correct and secure way; as well as how we make sure it is done in compliance with the new EU GDPR, because it’s going to be very hard to track everything.
For more information about this presentation, contact: David Morris at: David.Morris@Morriscybersecurity.com Cybersecurity: The No Spin Zone

More Related Content

PDF
Solution Architecture And Solution Security
Alan McSweeney
 
PPT
Cyber Security-Foundation.ppt
ErAdityaSingh1
 
PPTX
Introduction to Enterprise Architecture
Leo Shuster
 
PDF
Boot process: BIOS vs UEFI
Alea Soluciones, S.L.
 
PPTX
Operating Systems Chapter 6 silberschatz
GiulianoRanauro
 
PPTX
Security architecture frameworks
John Arnold
 
PDF
cobit 2019 presentation.pdf
mohammed539963
 
PDF
Cyber Security Governance
Priyanka Aash
 
Solution Architecture And Solution Security
Alan McSweeney
 
Cyber Security-Foundation.ppt
ErAdityaSingh1
 
Introduction to Enterprise Architecture
Leo Shuster
 
Boot process: BIOS vs UEFI
Alea Soluciones, S.L.
 
Operating Systems Chapter 6 silberschatz
GiulianoRanauro
 
Security architecture frameworks
John Arnold
 
cobit 2019 presentation.pdf
mohammed539963
 
Cyber Security Governance
Priyanka Aash
 

What's hot (20)

PDF
Enterprise Security Architecture
Kris Kimmerle
 
PDF
Microsoft Defender and Azure Sentinel
David J Rosenthal
 
PPTX
SABSA Implementation(Part III)_ver1-0
Maganathin Veeraragaloo
 
PPTX
Security models for security architecture
Vladimir Jirasek
 
PPTX
Enterprise Security Architecture Design
Priyanka Aash
 
PPTX
Modelling Security Architecture
narenvivek
 
PDF
Security-by-Design in Enterprise Architecture
The Open Group SA
 
PDF
Microsoft-CISO-Workshop-Security-Strategy-and-Program (1).pdf
ParishSummer
 
PPSX
2 Security Architecture+Design
Alfred Ouyang
 
PDF
Enterprise Security Architecture
Priyanka Aash
 
PPTX
Azure Sentinel.pptx
Mohit Chhabra
 
PDF
Cybersecurity Roadmap Development for Executives
Krist Davood - Principal - CIO
 
PPTX
SABSA overview
SABSAcourses
 
PDF
Cybersecurity roadmap : Global healthcare security architecture
Priyanka Aash
 
PPTX
SOC Architecture Workshop - Part 1
Priyanka Aash
 
PDF
Enterprise Security Architecture for Cyber Security
The Open Group SA
 
PPTX
Cloud Security Architecture.pptx
Moshe Ferber
 
PPTX
SEIM-Microsoft Sentinel.pptx
AmrMousa51
 
PPTX
Microsoft Defender for Endpoint Overview.pptx
BenAissaTaher1
 
PDF
Next Generation Defense in Depth Model - Tari Schreider, CCISO, Chief Cybers...
EC-Council
 
Enterprise Security Architecture
Kris Kimmerle
 
Microsoft Defender and Azure Sentinel
David J Rosenthal
 
SABSA Implementation(Part III)_ver1-0
Maganathin Veeraragaloo
 
Security models for security architecture
Vladimir Jirasek
 
Enterprise Security Architecture Design
Priyanka Aash
 
Modelling Security Architecture
narenvivek
 
Security-by-Design in Enterprise Architecture
The Open Group SA
 
Microsoft-CISO-Workshop-Security-Strategy-and-Program (1).pdf
ParishSummer
 
2 Security Architecture+Design
Alfred Ouyang
 
Enterprise Security Architecture
Priyanka Aash
 
Azure Sentinel.pptx
Mohit Chhabra
 
Cybersecurity Roadmap Development for Executives
Krist Davood - Principal - CIO
 
SABSA overview
SABSAcourses
 
Cybersecurity roadmap : Global healthcare security architecture
Priyanka Aash
 
SOC Architecture Workshop - Part 1
Priyanka Aash
 
Enterprise Security Architecture for Cyber Security
The Open Group SA
 
Cloud Security Architecture.pptx
Moshe Ferber
 
SEIM-Microsoft Sentinel.pptx
AmrMousa51
 
Microsoft Defender for Endpoint Overview.pptx
BenAissaTaher1
 
Next Generation Defense in Depth Model - Tari Schreider, CCISO, Chief Cybers...
EC-Council
 
Ad

Similar to What is a secure enterprise architecture roadmap? (20)

PPTX
Zero Trust 20211105
Thomas Treml
 
PDF
What I learned from RSAC 2019
Ulf Mattsson
 
PDF
Cloud computing security issues and challenges
Kresimir Popovic
 
PDF
Block Armour Zero Trust Cybersecurity Mesh for Oil and Gas
BlockArmour1
 
PPTX
Cyber security event
Tryzens
 
PDF
Where Data Security and Value of Data Meet in the Cloud
Ulf Mattsson
 
PDF
Exploring the Defender's Advantage
Raffael Marty
 
PDF
DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)
Gerardo Pardo-Castellote
 
PDF
Industrial IOT Data Connectivity Standard
Gerardo Pardo-Castellote
 
PPTX
A_Review_on_Security_Challenges_in_Internet_of.pptx
abeeralmarboa134
 
PPTX
Jun 15 privacy in the cloud at financial institutions at the object managemen...
Ulf Mattsson
 
PDF
Exploring Cybersecurity Services: Types, Relevance, and Becoming a Pro
Mobile Security
 
PDF
Iot Security and Privacy at Scale
Winston Morton
 
PDF
A STUDY ON ADOPTION OF BLOCKCHAIN TECHNOLOGY IN CYBERSECURITY
IRJET Journal
 
PDF
Cybersecurity Interview Questions and Answers
Julie Bowie
 
DOC
Network security
Ravikumar Natarajan
 
PDF
Io t security defense in depth charles li v1 20180425c
Charles Li
 
PDF
IRJET- Multifactor Authentication in IoT Devices for Ensuring Secure Cloud St...
IRJET Journal
 
PDF
Crypto Mechanism to Provide Secure to the IOT Data
IRJET Journal
 
PDF
Top reasons why Endpoint Security should move to Cloud | Sysfore
Sysfore Technologies
 
Zero Trust 20211105
Thomas Treml
 
What I learned from RSAC 2019
Ulf Mattsson
 
Cloud computing security issues and challenges
Kresimir Popovic
 
Block Armour Zero Trust Cybersecurity Mesh for Oil and Gas
BlockArmour1
 
Cyber security event
Tryzens
 
Where Data Security and Value of Data Meet in the Cloud
Ulf Mattsson
 
Exploring the Defender's Advantage
Raffael Marty
 
DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)
Gerardo Pardo-Castellote
 
Industrial IOT Data Connectivity Standard
Gerardo Pardo-Castellote
 
A_Review_on_Security_Challenges_in_Internet_of.pptx
abeeralmarboa134
 
Jun 15 privacy in the cloud at financial institutions at the object managemen...
Ulf Mattsson
 
Exploring Cybersecurity Services: Types, Relevance, and Becoming a Pro
Mobile Security
 
Iot Security and Privacy at Scale
Winston Morton
 
A STUDY ON ADOPTION OF BLOCKCHAIN TECHNOLOGY IN CYBERSECURITY
IRJET Journal
 
Cybersecurity Interview Questions and Answers
Julie Bowie
 
Network security
Ravikumar Natarajan
 
Io t security defense in depth charles li v1 20180425c
Charles Li
 
IRJET- Multifactor Authentication in IoT Devices for Ensuring Secure Cloud St...
IRJET Journal
 
Crypto Mechanism to Provide Secure to the IOT Data
IRJET Journal
 
Top reasons why Endpoint Security should move to Cloud | Sysfore
Sysfore Technologies
 
Ad

More from Ulf Mattsson (20)

PPTX
Jun 29 new privacy technologies for unicode and international data standards ...
Ulf Mattsson
 
PPTX
Book
Ulf Mattsson
 
PPTX
May 6 evolving international privacy regulations and cross border data tran...
Ulf Mattsson
 
PPTX
Qubit conference-new-york-2021
Ulf Mattsson
 
PDF
Secure analytics and machine learning in cloud use cases
Ulf Mattsson
 
PPTX
Evolving international privacy regulations and cross border data transfer - g...
Ulf Mattsson
 
PDF
Data encryption and tokenization for international unicode
Ulf Mattsson
 
PPTX
The future of data security and blockchain
Ulf Mattsson
 
PPTX
New technologies for data protection
Ulf Mattsson
 
PPTX
GDPR and evolving international privacy regulations
Ulf Mattsson
 
PPTX
Privacy preserving computing and secure multi-party computation ISACA Atlanta
Ulf Mattsson
 
PPTX
Safeguarding customer and financial data in analytics and machine learning
Ulf Mattsson
 
PPTX
Protecting data privacy in analytics and machine learning ISACA London UK
Ulf Mattsson
 
PPTX
New opportunities and business risks with evolving privacy regulations
Ulf Mattsson
 
PPTX
What is tokenization in blockchain - BCS London
Ulf Mattsson
 
PPTX
Protecting data privacy in analytics and machine learning - ISACA
Ulf Mattsson
 
PPTX
What is tokenization in blockchain?
Ulf Mattsson
 
PPTX
Nov 2 security for blockchain and analytics ulf mattsson 2020 nov 2b
Ulf Mattsson
 
PPTX
Unlock the potential of data security 2020
Ulf Mattsson
 
PPTX
What is tokenization in blockchain?
Ulf Mattsson
 
Jun 29 new privacy technologies for unicode and international data standards ...
Ulf Mattsson
 
Book
Ulf Mattsson
 
May 6 evolving international privacy regulations and cross border data tran...
Ulf Mattsson
 
Qubit conference-new-york-2021
Ulf Mattsson
 
Secure analytics and machine learning in cloud use cases
Ulf Mattsson
 
Evolving international privacy regulations and cross border data transfer - g...
Ulf Mattsson
 
Data encryption and tokenization for international unicode
Ulf Mattsson
 
The future of data security and blockchain
Ulf Mattsson
 
New technologies for data protection
Ulf Mattsson
 
GDPR and evolving international privacy regulations
Ulf Mattsson
 
Privacy preserving computing and secure multi-party computation ISACA Atlanta
Ulf Mattsson
 
Safeguarding customer and financial data in analytics and machine learning
Ulf Mattsson
 
Protecting data privacy in analytics and machine learning ISACA London UK
Ulf Mattsson
 
New opportunities and business risks with evolving privacy regulations
Ulf Mattsson
 
What is tokenization in blockchain - BCS London
Ulf Mattsson
 
Protecting data privacy in analytics and machine learning - ISACA
Ulf Mattsson
 
What is tokenization in blockchain?
Ulf Mattsson
 
Nov 2 security for blockchain and analytics ulf mattsson 2020 nov 2b
Ulf Mattsson
 
Unlock the potential of data security 2020
Ulf Mattsson
 
What is tokenization in blockchain?
Ulf Mattsson
 

Recently uploaded (20)

PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Advanced Soft Computing BINUS July 2025.pdf
University of Hertfordshire
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Advanced Soft Computing BINUS July 2025.pdf
University of Hertfordshire
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 

What is a secure enterprise architecture roadmap?

  • 1. Juanita Koilpillai Chief Technology Advisor Digital Risk Management Institute Mark Rasch Chief Legal Council Digital Risk Management Institute David Morris Early Pioneer in Cybersecurity Managing Partner Morris Cybersecurity What is a Secure Enterprise Architecture Roadmap? Cybersecurity: The No Spin Zone Ulf Mattsson Head of Innovation at TokenEx
  • 2. Enterprise Architecture - Based on Operations - Cyber Security permeates every layer Source – Cloud Security Alliance & United Health
  • 3. Security Enterprise Architecture Source – NIST - Technology & Policy Focused
  • 5. Security Reference Architecture - Dev/Ops Focused Source – AWS
  • 6. Example - Security Design - Zero visibility for Critical Applications & infrastructures Clients Don’t allow anything to connect to them Authen cate to the servers(eg. using Mutual TLS) Servers Mutual TLS Use Authoriza on to Elevate Trust (eg. single packet authen ca on Single Packet Mi gate the the of keys (eg. hardware fin g erprin ng) 1 2 3 4 Hardware Fingerprin ng Require authoriza on to ini ate communica on Deny all connec ons 5 6 Use independent communica on port for admins (MFA, Specific IPs) Admins 7 Applica on Whitelis ng Secure Hardware Eg. Hardware Root of Trust Pin comms to the Root Secure Boot Hardened OS File Integrity Monitoring 8 Elements of a protec on mechanism - So ware Defined Perimeter Op onal Users MFA
  • 7. Does Blockchain, GDPR, Cloud, and IoT conflict with compliance regulations complicating your SEA? GDPR is not blockchain-compatible the way it is written today. Blockchain data can't be deleted. So will its applications be illegal? • There are ways for Blockchain applications to be compliant - data could be stored off-chain in distributed or cloud-based servers. Cloud considerations • From a storage and compliance perspective, they accumulate information about humans and our interaction with IoT devices. • One of the key questions asked how we make sure this is done in a correct and secure way; as well as how we make sure it is done in compliance with the new EU GDPR, because it’s going to be very hard to track everything.
  • 8. For more information about this presentation, contact: David Morris at: David.Morris@Morriscybersecurity.com Cybersecurity: The No Spin Zone