This is a paper about the nature of cyberspace architecture and the principles, capabilities and methods required to develop optimal designs and implementations. It is a subject that does not appear to be defined, taught or applied to the extent that it justifies, given its growing business and technological significance and the increasing business demand for cyberspace architects.
For the purposes of this paper, the term “cyberspace architecture” encompasses frameworks that model systems and processes that operate across cyberspace, whether designed to guide business processes, IT systems or infrastructures, data models, or cybersecurity technologies and controls.
The paper explores and explains a range of principles, techniques and “tricks of the trade” needed to develop high-quality cyberspace architectures, especially at the enterprise level.
Much of the content is original or esoteric, so will be new to many cyberspace architects. I will introduce techniques that are rarely seen in practice, such as methods to enable alternative choices and to create possible past and future worlds, as well as principles for managing complexity, achieving better categorization and joining up architectural components in a seamless and useful way.
Why Download?
David Lacey is a highly experienced CISO and Cybersecurity thought leader. He founded and led functions for the UK Foreign & Commonwealth Office, Shell International and the British Royal Mail Group. During this time, he developed the set of controls that became the basis of the International Standard ISO/IEC 27001/2 and achieved the world's first and largest accredited certification. He also founded the Jericho Forum (part of the Open Group) to develop the principles and architecture for a De-Perimiterised network environment, the concept for which was subsequently adapted by Forrester Research as Zero Trust. David has written five books and numerous papers on Cybersecurity and is a keen futurist, having been the first CISO to recognise and articulate the impact of the Information Age on Cybersecurity. He is also a long-standing member of the Infosecurity Europe Hall of Fame.