Zachman and Security Policy

  • September 12, 2022
  • Expert Editor - IT Management


"A system security policy is often perceived as a set of mandatory requirements levied upon the system by an organizational directive or Information System Security Officer (ISSO). To the user, these security requirements may bear little resemblance to his actual working system security policy, which controls data modification and user privileges. In the course of reengineering business processes and information systems, the system modeling activities provide a unique opportunity: This paper presents a methodology for security policy definition using the Zachman information systems architecture as a tool. The system security policy can be extracted from the Zachman framework, providing a technique for reconciling the security policy as defined by directive with the user’s working system security
requirements."




This Zachman and Security Policy has been accessed 14 times.
Must Login To Download


Signup for Thought Leader

Get the latest IT management thought leadership delivered to your mailbox.

Mailchimp Signup (Short)
Related:
  1. Introduction to Zachman and TOGAF Enterprise Architecture Frameworks
  2. Zachman Framework Overview
  3. Zachman: A Framework for Information Systems Architecture
  4. The Use of Zachman Framework Primitives for Enterprise Modeling
  5. A Tutorial on the Zachman Enterprise Architecture (EA) Framework [Presentation]

Join The Largest Global Network of CIOs!

Over 75,000 of your peers have begun their journey to CIO 3.0 Are you ready to start yours?
Mailchimp Signup (Short)