Security solutions are increasingly becoming a vital component of telecommunications and internetworking systems for all organizations. There are increased vulnerabilities due to online access that allow malicious intervention to IT and network systems from remote locations. Traditionally, the thought of insider attack has been viewed as the key risk affecting businesses, however the threat of cyber attacks upon the communications network has become a primary source of concern. A key challenge facing communication network providers is how to effectively manage and secure the enterprise Information and Communications Technologies (ICT). There are many prevailing standards and emerging products now available. However, the integration and cohesive design of these security solutions is becoming an obstacle to the effective deployment of security solutions. In this paper we propose a security enterprise architecture for communication network providers. The security architecture is based upon our experience in deploying enterprise architectures and security solutions world wide, whilst drawing upon key standards such as SABSA and TOGAF. The security architecture may be used as a blueprint and framework for network providers to ensure coverage in security, reduce risk of malicious threats, and for mitigating delivery risk due to integration and deployment challenges. The framework is also applicable to the broader industry seeking to develop their enterprise security architectures.
Tom Graves reviews The Checklist Manifesto: How to Get Things Right by Atul Gawande.
Message from Scott Bernard.
John Gøtze interviews Roberto Severo de A. Coelho.
This purpose of this article is to investigate the systemic properties of Enterprise Architecture Planning (EAP) in the Australian government sector. Based on a case study of the Land and Property Management Authority of New South Wales, the article examines and outlines the crucial necessity for including systems thinking, systems learning, and organizational sense-making in Enterprise Architecture (EA) theory and planning. The main argument is based on qualitative research into the limitations of capturing and modeling organizations using EA methodologies and modeling approaches. The EA discipline, including its tools and methodologies, relies on the metaphor of engineering the enterprise and building stable taxonomies of knowledge and process. The practical reality that e-government programs are facing is technical, sociological, and messy. However, EA tends to operate within an engineering metaphor that assumes stability, predictability, and control. Here, the author highlights the necessity of an alternative, less positivist approach to EA planning in order to understand and articulate the tacit knowledge dimensions and messy, wicked problems of organizational life. Soft systems thinking, socio-technical theory, and sense-making are introduced as theoretical and practical frames to overcome these limitations and produce a better, more viable and realistic model of planning in government enterprises. These concepts are finally amalgamated into a general, integrative model of EA planning.