Architecture & Design

This stage involves ensuring security is considered as part of the overall system architecture design. It includes the following:

a) Security architecture design and review [Mandatory] - This activity focuses on the security review of system architecture to ensure it meets the security requirement. It also includes design vulnerability assessments and recommendations to address any vulnerabilities identified.

b) Review security controls [Mandatory] - This activity focuses on the review of security controls put in place as part of the systems design. The activity includes a series of documentation reviews of security controls proposed in the system design, assessment of its effectiveness and recommendations.

Output

Approved security architecture and design
Updated threat and risk assessment

Software Life Cycle

Initiation

Acquisition

Architecture & Design

Development

Testing

Deployment Phase

Operations and Maintenance

Upgrade /Decommission

Architecture & Design

No Comments