• Home

  • Documents

  • Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling...
15
Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 [email protected]

Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 [email protected] “TOA Security uide”

  • Upload
    lecong

  • View
    219

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

Risk Management in TOGAF&

Risk Modeling in Archimate

Pascal de Koning

March 2017

[email protected]

mailto:[email protected]
Page 2: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

“TOGAF Security Guide” (G152)

Page 3: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

A brief history of attempts to integrate security in TOGAF

Some future

2016

TOGAF Security Guide

Page 4: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

Core concepts for Risk Management

In line with ISO31000 (Risk Management), Risk management should be embedded deeply and firmly in all business activities

Core concepts:• Key Risk Areas• Business Impact Analysis• Risk Assessment• Business Risk Model / Risk Register• Risk Appetite• Risk Mitigation Plan / Risk Treatment Plan

Page 5: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

Balanced view of Risk

Page 6: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

Mapping core concepts to the ADM

Page 7: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

White paper

2016

Page 8: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

Archimate

• Open Group standard

• open and independent modeling language for EA that is supported by different tool vendors and consulting firms.

• It provides uniform representations for diagrams that describe EAs

Page 9: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

Archimate example

2016

Page 10: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

White paper objective

• The ArchiMate 3.0 specification makes very brief mentions of risk and security. It identifies risk and security as an important EA aspect that the language does not explicitly address.

• This White Paper provides specific guidance for risk and security modeling by extending the TOGAF standard and using the ArchiMate language. It extends the existing risk and security content of the TOGAF standard using relevant industry standards and leveraging the ArchiMate visual modeling language to:– Cover risk assessment and protection of assets beyond information security– Provide guidance and detailed tools and techniques for constructing specific

models, viewpoints, and patterns that help practitioners to develop security architecture models

– Identify modeling patterns for functions such as authentication and authorization, security auditing, and monitoring

– Provide elements and mapping to the TOGAF ACF and Metamodel

Page 11: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

FAIR

• The Open Group Risk Taxonomy (O-RT) standard

• provides a definition and taxonomy for information security risk

• describes the main factors that drive risk, their definitions, and relationships

Page 12: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

FAIR Risk Taxonomy

Page 13: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

New: Archimate object model for risk

Page 14: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

Example Archimate diagram for risk

Page 15: Risk Management in TOGAF Risk Modeling in Archimate · Risk Management in TOGAF & Risk Modeling in Archimate Pascal de Koning March 2017 p.de.koning@i-to-i.nl “TOA Security uide”

En verder?

• Lees de white papers

• Gebruik Archimate in architectuurplaten


TOGAF® and ArchiMate 3.0 – Part 1, An Overview® and ArchiMate 3.0 – Part 1, An Overview by Roger Evernden In the summer of 2016, The Open Group announced the latest version of

TOGAF® and ArchiMate 3.0 – Part 1, An Overview® and ArchiMate 3.0 – Part 1, An Overview by Roger Evernden In the summer of 2016, The Open Group announced the latest version of

Documents
TOGAF business architecture w ArchiMate - …grahamberrisford.com/00EAframeworks/03TOGAF/TOGAF Business...Business Architecture with ArchiMate symbols and TOGAF Artefacts This is a

TOGAF business architecture w ArchiMate - …grahamberrisford.com/00EAframeworks/03TOGAF/TOGAF Business...Business Architecture with ArchiMate symbols and TOGAF Artefacts This is a

Documents
Moving from Checkmate to ArchiMate An introduction to the ArchiMate Forum & Language Louw Labuschagne Certified TOGAF Practitioner

Moving from Checkmate to ArchiMate An introduction to the ArchiMate Forum & Language Louw Labuschagne Certified TOGAF Practitioner

Documents
ArchiMate : Adding value to TOGAF™ - Open Grouparchive.opengroup.org/public/member/proceedings/q110/...Transition Architecture B: Multiple CRM systems, single backoffice system Baseline

ArchiMate : Adding value to TOGAF™ - Open Grouparchive.opengroup.org/public/member/proceedings/q110/...Transition Architecture B: Multiple CRM systems, single backoffice system Baseline

Documents
Author: Łukasz Wrześniewski - Architecture Center Framework Overview.pdf · Author: Łukasz Wrześniewski. TRADEMARK INFORMATION ... • We offer TOGAF® 9 , ArchiMate® 2, IT4ITTM

Author: Łukasz Wrześniewski - Architecture Center Framework Overview.pdf · Author: Łukasz Wrześniewski. TRADEMARK INFORMATION ... • We offer TOGAF® 9 , ArchiMate® 2, IT4ITTM

Documents
ArchiMate Extension for Modeling and Managing … Extension for Modeling and Managing Motivation, Principles and Requirements in TOGAF TM A White Paper by: Dick …

ArchiMate Extension for Modeling and Managing … Extension for Modeling and Managing Motivation, Principles and Requirements in TOGAF TM A White Paper by: Dick …

Documents
TOGAF and Archimate

TOGAF and Archimate

Documents
ArchiMate : Adding value to TOGAF™ - The Open Groupopengroup.org/public/member/proceedings/q110/archimate.pdf · Mission BiZZdesign To help organizations govern and change (themselves)

ArchiMate : Adding value to TOGAF™ - The Open Groupopengroup.org/public/member/proceedings/q110/archimate.pdf · Mission BiZZdesign To help organizations govern and change (themselves)

Documents
The Labnaf Architecture Framework at Enterprise Architect User... · TOGAF, SAFe, ArchiMate, BPMN, UML … Tailoring a framework inspired by market standards 10 Reference Systems

The Labnaf Architecture Framework at Enterprise Architect User... · TOGAF, SAFe, ArchiMate, BPMN, UML … Tailoring a framework inspired by market standards 10 Reference Systems

Documents
Technical Standardisis2403/dokuwiki/lib/... · ArchiMate® 1.0 Specification vii Trademarks Boundaryless Information Flow™ and TOGAF™ are trademarks and Making Standards Work®,

Technical Standardisis2403/dokuwiki/lib/... · ArchiMate® 1.0 Specification vii Trademarks Boundaryless Information Flow™ and TOGAF™ are trademarks and Making Standards Work®,

Documents
Being successful with TOGAF 0.3 - van-gils.orgbas/pubs/2012-Gils-STA.pdf · 1 Being successful with TOGAF & ArchiMate Dr. Bas van Gils BiZZdesign, the Netherlands b.vangils@bizzdesign.com

Being successful with TOGAF 0.3 - van-gils.orgbas/pubs/2012-Gils-STA.pdf · 1 Being successful with TOGAF & ArchiMate Dr. Bas van Gils BiZZdesign, the Netherlands [email protected]

Documents
Using the TOGAF® 9.1 Architecture Content Framework with the ArchiMate® 2.0 Modeling Language

Using the TOGAF® 9.1 Architecture Content Framework with the ArchiMate® 2.0 Modeling Language

Technology
Modeling and Evolving a Web Portal with the TOGAF Framework and the ArchiMate Language

Modeling and Evolving a Web Portal with the TOGAF Framework and the ArchiMate Language

Technology
TOGAF ADM - goodelearning.com · Goo eeri esores gdeearningcdnad Free esore irr gdeearningc Gd eearning ArchiMate The Oen Gr and TOGAF are regitered tradear the Oen Gr in the nited

TOGAF ADM - goodelearning.com · Goo eeri esores gdeearningcdnad Free esore irr gdeearningc Gd eearning ArchiMate The Oen Gr and TOGAF are regitered tradear the Oen Gr in the nited

Documents
Capability-based planning with TOGAF and ArchiMate · TOGAF is the Open Group Framework for developing an enterprise architecture and BiZZdesign is involved in the work group working

Capability-based planning with TOGAF and ArchiMate · TOGAF is the Open Group Framework for developing an enterprise architecture and BiZZdesign is involved in the work group working

Documents
ARCHIMATE, TOGAF AND OGC’S MSP

ARCHIMATE, TOGAF AND OGC’S MSP

Documents
Quality e-Learning for Professional Training and Certification · TOGAF® 9 Certified TOGAF® 9 Certification ArchiMate® 2 Certification Business Process BPMN 2.0 IT Governance COBIT®

Quality e-Learning for Professional Training and Certification · TOGAF® 9 Certified TOGAF® 9 Certification ArchiMate® 2 Certification Business Process BPMN 2.0 IT Governance COBIT®

Documents
TOGAF 9 and ArchiMate 1

TOGAF 9 and ArchiMate 1

Documents
Business Capabilities Reference Model...Management Repositories (TOGAF® 9.1 Manual, Chapter 41). This version of the repository was built with Archi, the open-source ArchiMate 2.1

Business Capabilities Reference Model...Management Repositories (TOGAF® 9.1 Manual, Chapter 41). This version of the repository was built with Archi, the open-source ArchiMate 2.1

Documents
Sparx Systems · frameworks such as TOGAF, ArchiMate and UPDM. “I am strongly committed to the development and implementation of common, well understood modeling languages that

Sparx Systems · frameworks such as TOGAF, ArchiMate and UPDM. “I am strongly committed to the development and implementation of common, well understood modeling languages that

Documents
Modeling Enterprise Risk Management and Secutity With the ArchiMate Language

Modeling Enterprise Risk Management and Secutity With the ArchiMate Language

Documents
Enterprise Architecture Modelling with ArchiMateknut.hinkelmann.ch/lectures/ABIT2017-18/ABIT 06-1...TOGAF Architecture Views ArchiMate 3 - Overview 3 Business Architecture Technology

Enterprise Architecture Modelling with ArchiMateknut.hinkelmann.ch/lectures/ABIT2017-18/ABIT 06-1...TOGAF Architecture Views ArchiMate 3 - Overview 3 Business Architecture Technology

Documents
1a TOGAF artefacts with ArchiMate illustrations and the ...grahamberrisford.com/00EAframeworks/01Fundamentals... · 1. To support TOGAF‘s artefacts and principles (more comprehensive,

1a TOGAF artefacts with ArchiMate illustrations and the ...grahamberrisford.com/00EAframeworks/01Fundamentals... · 1. To support TOGAF‘s artefacts and principles (more comprehensive,

Documents
This slide show has been archived For the latest version ...grahamberrisford.com/00EAframeworks/03TOGAF/Service-Orientation in... · ArchiMate TOGAF In the . Service . event ! “Services"

This slide show has been archived For the latest version ...grahamberrisford.com/00EAframeworks/03TOGAF/Service-Orientation in... · ArchiMate TOGAF In the . Service . event ! “Services"

Documents
TOGAF Framework and ArchiMate Modeling …evasaas.com/evaeurope/Application/resources/wp_harmonization...A Practitioner’s Guide to Using the TOGAF® Framework and the ArchiMate®

TOGAF Framework and ArchiMate Modeling …evasaas.com/evaeurope/Application/resources/wp_harmonization...A Practitioner’s Guide to Using the TOGAF® Framework and the ArchiMate®

Documents
TOGAF 9 and Archimate 2.0 for Aligning SOA With Business Strategies and Capabilities

TOGAF 9 and Archimate 2.0 for Aligning SOA With Business Strategies and Capabilities

Documents
Modeling Risk and Opportunity Notions in Archimate ... · Keywords— archimate, risk, opportunity, modeling language, metamodel, ontology I. INTRODUCTION Today, the development of

Modeling Risk and Opportunity Notions in Archimate ... · Keywords— archimate, risk, opportunity, modeling language, metamodel, ontology I. INTRODUCTION Today, the development of

Documents
TOGAF and ArchiMate A Future Together

TOGAF and ArchiMate A Future Together

Documents
1 N° : 552 - hachette-diffusion.fr · togaf archimate uml bpmn 3ed 9 782100 769902 35,00

1 N° : 552 - hachette-diffusion.fr · togaf archimate uml bpmn 3ed 9 782100 769902 35,00

Documents
Modelling Risk Management using ArchiMate

Modelling Risk Management using ArchiMate

Documents