What is Enterprise Information Security Architecture (EISA)?
Information systems in most organizations suffer with inherent lack of security architecture standardizations and integrations. Most develop their own security frameworks and others adopt existing frameworks. Even so, the existing security frameworks do not span cross industries. Most of them are closed and difficult to customize and adopt.
An EISA in association with enterprise architecture (EA) is developed with the expectation of handling security architecture requirements. There are a number of prevalent architectural frameworks that can be adopted to establish security architecture strategies.
- TOGAF Framework
- Zachman framework
- SABSA Framework
- E2AF Framework
- COBIT 5 Framework
The main objective of information security frameworks is to manage complexity and establish successful security strategies.