Cisco Training Courses

Cisco Training Courses

Insoft has been serving IT industry with authorized Cisco courses training, since 2010. Find all the relevant information on Cisco training on this page.

View More

Cisco Certifications

Experience a blended learning approach that combines the best of instructor-led training and self-paced e-learning to help you prepare for your certification exam.

View More

Cisco Learning Credits

Cisco Learning Credits (CLCs) are prepaid training vouchers redeemed directly with Cisco that make planning for your success easier when purchasing Cisco products and services.

Have CLCs and want to redeem them?

Cisco Continuing Education

The Cisco Continuing Education Program offers all active certification holders flexible options to recertify by completing a variety of eligible training items.

View More

Cisco U

Cisco U. is customized to achieve your learning needs as this provides learning paths that includes wide range of topics, including CCNA, Cloud and Network Automation Essentials.

Browse Catalogue

Cisco Business Enablement

The Cisco Business Enablement Partner Program focuses on sharpening the business skills of Cisco Channel Partners and customers.

View More

Fortinet Technical Certifications

Insoft Services´ training capabilities rely on the excellence of our exclusive Fortinet Certified Trainers (FCT). We are dedicated to providing high-quality training to Fortinet Customers and Partners.

View More

Fortinet Technical Courses

Insoft is recognised as Fortinet Authorized Training Center in selected locations across EMEA.

View More

ATC Status

Check our ATC Status across selected countries in Europe.

View More

Fortinet Services Packages

Insoft Services has developed a specific solution to streamline and simplify the process of installing or migrating to Fortinet Products.

Browse Packages

Prepforce Bootcamp

The only comprehensive source available today to prepare for Fortinet NSE 8 certification globally.

View More

Microsoft Training

Insoft Services provides Microsoft training in EMEAR. We provide Microsoft technical training and certification courses that are led by world-class instructors.

View More

Technical Training

The evolution of Extreme Networks Technical Training provides a comprehensive progressive pathway from Associate to Professional accreditation.

View More

ATP Accreditation

As an authorised training partner (ATP), Insoft Services ensures that you receive the highest standards of education available.

View More

What we do

Through our global presence and partner ecosystem, we provide strategic IT consulting services to align IT services with customers' business goals.

View More

 

We are pleased to launch pre-scoped Enterprise Networking Consulting Packages, our ready-made solutions, tailored to ensure efficiency and cost containment.

 

View More

 

We specialize in the deployment of vendor-specific automation tools as well as open-source and vendor-independent solutions, that can be tuned in accordance with the business needs of a specific organization.

 

View More

 

We provide comprehensive IoT consultancy, deployment and support solutions for businesses that want to launch or improve their use of connected technologies.

 

In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

View More

 

In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

View More

 

In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

 

View More

 

In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

 

View More
Cisco Training Courses

 

We provide the highest level of expertise on Cisco consultancy services, that target audits of your current network and implementing updates for improved operational performance, secure data and compliant systems.

View More

 

We provide the highest level of expertise on Fortinet consultancy services that target audits of your current network and implementing updates for improved operational performance, secure data and compliant systems.

View More

 

Our team can help enterprises, get the most value from Extreme products and services following our predefined value-added packages or custom ones that fits business needs.

 

View More

 

TXOne Networks provides cybersecurity solutions that ensure the reliability and safety of ICS and OT environments through the OT zero trust methodology protecting assets for their entire life cycle.

 

View More

About Us

Our training portfolio includes a wide range of IT training from IP providers, including Cisco, Extreme Networks, Fortinet, Microsoft, to name a few, in EMEA.

View More

Interpretation of Enterprise Security Architecture

Interpretation of Enterprise Security Architecture

16 May 2024

A robust approach to information security is top-down and business aligned to provide traceability and justification for security controls, both technical and non-technical. Information security and risk management practices should be practical, appropriate, and economically proportionate to ensure effort and resources are focused accordingly.

A holistic approach to information security ensures compliance and conformance to all best practice standards and frameworks, as well as internal and external security influences. While offering adaptable, agile environments that promote and facilitate business activities, proven approaches present strong security structures to guard against the most recent and sophisticated attacks.

The following layered architecture views, as defined by SABSA, present holistic enterprise information security and should be considered in organizational security architecture engagements:

Business View – Contextual LayerBusiness assets, goals, and objectives



Service Manager’s View – Service Management: Risk assessments, audits, reviews, and Management
Architect’s View – Conceptual LayerSecurity domains, frameworks, and strategies
Designer’s View – Logical LayerInformation assets, systems, host platforms, layout, and networks
Builder’s View – Physical LayerApplications, systems, host platforms, layout, networks
Tradesman’s View – Component LayerICT products, tools, protocols, identities, and addresses

Technical security architectures should present controls that manage identified risks, aligned to a set of business-driven policies (for each risk domain), to enable governability. Where policies don’t exist to drive technical security architectures, they should at least follow industry best practices to ensure common, fundamental IT risks can be identified and managed.

From a logical perspective, it doesn’t really matter how the physical and component controls are applied or which vendors and technologies are used, as long as they adhere to the requirements set out by the first three security architecture layers: Contextual, Conceptual and Logical.

This approach ensures repeatability and consistency using a methodology that presents adaptive and dynamic security that supports and enables all business initiatives, including Cloud, Enterprise Mobility and BYOD.

Security on its own is meaningless. Getting this right ensures longevity and relevance to the business to securely enable opportunities and manage risk according to an appropriate risk appetite.

The engagement should focus on all security layers or any subset of these to deliver a detailed report that presents a snapshot of your current-state security profile and, where necessary, defines new security policies, procedures, and standards.

The layers shown in the SABSA Framework can be broken down into technical and non-technical areas – as in, controls versus paper-based controls.

The general tendency has been to adopt a traditional focus on information security, which has meant a focus on the bottom three layers only, namely: Physical Architecture, Component Architecture and Service Management Architecture.

With a focus on the bottom three layers alone, we can lose sight of and lose alignment with what the business is trying to achieve. This is one of the primary reasons why security project funding has decreased as a percentage of total IT spend over recent years in most organisations.

So if we expand the focus to include the upper three layers, we become far more business aligned, thus more relevant to the business, not just IT. This results in us being more adaptable when the business comes to us with new challenges and projects that need to be enabled through a risk management approach to ensure a secure initiative, e.g. Cloud or Enterprise Mobility.

A security strategy is about integrating security into the business, specifically involving upper management and changing the way business is done. Your information security program should enable your business to accomplish its business objectives.

For example, if one of your business objectives is to conduct a certain percentage of business electronically, your information security program should support this objective and increase the likelihood of success.

Insoft Services

  • Relevant Blogs

  • Recent Blogs

  • No Comments

    Comments are closed.