6 hours 30 minutes
so looking at the frameworks, we're now gonna build our architecture. So in this section,
here's where the hardware, the software, the firmware and that's what those acronyms hardware software for where stand for Smeaton the business objectives
and with that architecture because it describes the inner operation
of all of those elements of our environment. We have to make sure that they work well together. So it's not enough just to signify that a device or mechanism works doesn't work in my environment.
Consistent. We have to think about scale, ability. Can we grow in the future? Do we have the environment in place so that if we, um,
take on another organization if we hire two under people, we have a huge boost in sales. Can we handle it?
Can we? If we're not immediately there, can we upgrade the equipment that we have? Can we bring in additional elements? Can we meet our needs? Right? Can the architecture Vern buyer environment not hold us back from implementing our goals is really kind of what we're saying here.
So when we talk about architecture, we could talk about business architecture, right? The elements of strategy and governance and organization processes with. We've really kind of addressed those starting with governance
data architecture er, making sure that how we store process manage our data
is following and accomplishing our objectives. Application architecture er, Are we designing APS within our framework? Are we are we testing and implementing
and then the technology offer architecture? You see that common theme with our architectures, how it comes together to support the strategy,
the goals, how to meet the objectives.
So we talk about an information security framework,
organizational components, management components, administrative components and educational, not organizational operational. So when we say operational, there's Day today controls that we implement, fitting in with management, fitting in with those administrative controls, policies and so on.
And then we train our people.
So when we look ATT, operational components,
something that's very big that's gonna be on this exam's gonna be in a lot of other exams. Identity and access managed
Are you a Linux systems administrator seeking to learn the best practices for securing your ...
12 CEU/CPE Hours Available
Certificate of Completion Offered
ISACA Certified in Risk and Information Systems Control (CRISC)
Demonstrate your expertise in identifying and managing IT risk within an enterprise and in implementing ...