Security Forum : Our Strategy
Our members recognize that enterprise business IT is evolving from perimeter-based security practices towards a new framework that delivers information-centric security. We also recognize that today's enterprises require security solutions which enable collaborative working with business partners, suppliers, customers and employees, globally over the Internet. This significantly broadens the scope of what "information security" must cover.
In a major 2008 White Paper, we established our security strategy as a Multi-Disciplinary Framework for Information-Centric Security, setting the role of the security architect in architecting the enterprise so as to deliver enterprise-level information security in ways that reflect current realities of business networking and information sharing.
The business requirement has moved on from perimeter-based enterprise-level security practices to a new framework that wants to support global Secure Business Collaboration, endorsing the Jericho Forum™ approach:
- corporate perimeter boundaries are crumbling as business drivers demand greater connectivity with their business partners, and with their suppliers, customers and employees, globally over the Internet. This trend is inevitable.
- Their Collaboration Oriented Architecture (COA) provides a practical blueprint geared to showing organisations how to create the right architecture for secure business collaboration.
- Cloud Computing offers huge computing power, storage and applications resources, all at immediate availability and low cost. Business is now demanding ways to reap the great benefits this represents, so we see the future is to extend secure business collaboration into cloud computing.
We are updating our security strategy paper to merge our multi-disciplinary information-centric security and secure business collaboration approaches.
