Security & Compliance
This cluster provides a comprehensive perspective on security and compliance topics that are crucial for organizations.
- Knowledge domains
- /Thematic areas
- /Segments
- /Building blocks
Security Architecture & Controls
This segment covers architectural principles and technical controls used to secure systems against threats. It includes mechanisms at network, platform, and application levels, security boundaries, hardening, secrets management, and secure configurations. The focus is on designing and consistently applying controls, independent of identity topics or operational delivery and incident processes.
Defense in Depth
Layered security principle that reduces risk through overlapping controls.
Security Architecture
A concept for the structural design of security capabilities in IT landscapes that defines principles, patterns and interfaces for protection measures.
Security Controls
Security controls are defined technical and organizational measures to reduce security risks and ensure confidentiality, integrity and availability. They form the foundation for compliance, operational security and incident response.