Building Your Own Security Architecture Chapter 02: Know your business

Understand the basic knowledge of the enterprise’s industry

Fully understand the relevant knowledge of the enterprise’s industry, the latest laws and regulations, how to evolve the business form, key systems and communication protocols, specific business processes and systems, etc; At the same time, pay attention to the development and changes of it in the industry, the percentage of it in business profits, the proportion of security budget in it, and the tendency of CIOs and CTOs in the same industry to technology trends. Understand the industry foundation, understand the core value and development trend of the business. The business core is the part that needs the active and long-term attention of the security architecture. Assuming that the advantage of an enterprise lies in cross-border payment, all businesses and corresponding systems around cross-border payment are the core values.

Pay attention to the financial report of enterprises

Pay attention to the profitability of enterprises. Public financial data can know whether the enterprise is transparent enough. Enterprises with benign competition have always been generous to discuss these indicators openly. Employees can often see how many transactions and volumes there are on the dashboard. Whether it is public or only internal financial data, only when there is enough profit or sufficient reserves can we build a security team and improve the construction of security system.

Know your customers

Understand business architecture, application architecture, data architecture, technical architecture, etc; Understand the specific users of the business; Understand the needs of users and provide services to customers in combination with existing resources. For security architects, sometimes they are not directly facing users, but the team within the enterprise. Customers are not equal, because each customer is differentiated.

Know your industry

Understand the current situation of the Cyber Security Industry and the advantages and disadvantages of various manufacturers, including technical research, after-sales support, cost performance, etc;

ALL CHAPTERS:

1. Building Your Own Security Architecture Chapter 01: Basic Viewpoint
2. Building Your Own Security Architecture Chapter 02: Know your business
3. Building Your Own Security Architecture Chapter 03: Know your organization
4. Building Your Own Security Architecture Chapter 04: Yin and Yang
5. Building Your Own Security Architecture Chapter 05: Know Your Architecture
6. Building Your Own Security Architecture Chapter 06: Enterprise Security Architecture Basics
7. Building Your Own Security Architecture Chapter 07: Security Architecture Basics
8. Building Your Own Security Architecture Chapter 08: Security Solutions
9. Building Your Own Security Architecture Chapter 09: Continuous Delivery
10. Building Your Own Security Architecture Chapter 10: Become A Security Architect

This translation was based on 《安全架构要参：构建企业适用的安全架构》，and if you can read Chinese, please visit https://securityarchitecture.pro/