Scribd
Upload
21 views7 pages

Not Imp

Uploaded by

shahida sultana
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
21 views7 pages

Not Imp

Uploaded by

shahida sultana
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 7

Overview

User Access and Authentication


The security architecture begins with the User attempting to access resources
within the system. The User’s identity is verified using Multi-factor
Authentication (MFA) to ensure secure access.

Network Security
The request then passes through the Firewall, which filters the traffic based on
the organization’s security policies. The request is then distributed by the
Load Balancer to the appropriate Web Server.

Application and Data Security


The Web Server forwards the request to the Application Server, which may
need to query the Database Server for data. The data is encrypted to protect
sensitive information. The Application Server also communicates with the
Intrusion Detection System (IDS) and the Anti-Virus System to monitor for any
suspicious activity or malware.

Security Alerts and Incident Management


If any such activity is detected, an alert is sent to the Security Administrator.
The Security Administrator manages the overall security of the system. They
use a Security Information and Event Management (SIEM) system for real-
time analysis of security alerts. They also follow an Incident Response Plan to
manage cyber attacks or data breaches.

Disaster Recovery and Data Loss Prevention


The Security Administrator plans for Disaster Recovery/Business Continuity
and uses Data Loss Prevention tools to prevent potential data breaches.

Security Training and Vendor Management


The Security Administrator conducts Security Awareness Training for
employees. If the organization works with third-party vendors, the Security
Administrator ensures that these vendors meet the organization’s security
standards.

Cloud and Physical Security


If the organization uses cloud services, the Security Administrator ensures
that appropriate Cloud Security Controls are in place. The Security
Administrator also ensures that Physical Security Measures are in place to
protect the physical infrastructure housing the organization’s IT assets.

Legend
 User: The individual or system attempting to access resources within the
architecture.
 Multi-factor Authentication (MFA): A security system that requires more
than one method of authentication from independent categories of credentials
to verify the user’s identity.
 Firewall: A network security device that monitors and filters incoming and
outgoing network traffic based on an organization’s previously established
security policies.
 Load Balancer: A device that distributes network or application traffic across
a number of servers to enhance the experience of users interacting with the
application.
 Web Server: A server that serves content to the internet.
 Application Server: A server that hosts applications.
 Database Server: A server that provides database services to other computer
programs or computers.
 Data Encryption: The process of converting data into a code to prevent
unauthorized access.
 Intrusion Detection System (IDS): A system that monitors a network for
malicious activities or policy violations and reports these to the Security
Administrator.
 Anti-Virus System: Software used to prevent, detect, and remove malware.
 Security Administrator: The individual responsible for the overall security of
the system.
 Security Information and Event Management (SIEM): A system that
provides real-time analysis of security alerts generated by applications and
network hardware.
 Disaster Recovery/Business Continuity Planning (DR/BCP): A strategy
that outlines how an organization will continue operating after an adverse
event.
 Security Awareness Training: A formal process for educating employees
about computer security.
 Incident Response Plan (IRP): A set of instructions to help IT staff detect,
respond to, and recover from network security incidents.
 Data Loss Prevention (DLP): A set of tools and processes used to ensure
that sensitive data is not lost, misused, or accessed by unauthorized users.
 Cloud Security Controls: Security controls specific to the cloud services.
 Third-Party Vendor Security: Policies and procedures to ensure that third-
party vendors meet the organization’s security standards.
 Physical Security Measures: Measures taken to protect the physical
infrastructure housing the organization’s IT assets.
How to Create a Security Architecture
Diagram
Here’s a step-by-step guide on how to create a security architecture diagram:

Step 1: Identify the Scope


Before you start drawing your diagram, you need to identify the scope of your
security architecture. This could be an entire organization, a single
department, or a specific system or application.

Step 2: List All Components


List all the components that will be part of your security architecture. This
could include firewalls, intrusion detection systems, authentication
mechanisms, data encryption, and more.

Step 3: Define Relationships


Define the relationships between these components. For example, a user
might connect to a web server, which then interacts with a database server.
Step 4: Choose a Diagramming Tool
Choose a diagramming tool that you’re comfortable with. There are many
tools available, such as Microsoft Visio, Lucidchart, or online diagramming
tools like draw.io.
Step 5: Draw the Diagram
Start drawing your diagram. Begin with the user or external interface and work
your way through the system, following the flow of data. Use arrows to
indicate the direction of data flow and interaction.

Step 6: Add Details


Add details to your diagram. This could include adding labels to your
components, or adding additional information like data protocols, security
measures, etc.

Step 7: Review and Refine


Review your diagram and refine it as necessary. Make sure it accurately
represents your security architecture and is easy to understand.

Step 8: Share and Get Feedback


Share your diagram with others and get feedback. This could include your
team members, stakeholders, or a security expert. Use their feedback to
improve your diagram.

Step 9: Update Regularly


Keep your diagram updated. As your security architecture evolves, so should
your diagram. Regular updates will ensure that your diagram remains a useful
tool for understanding and improving your security architecture.
Remember, the goal of a security architecture diagram is not just to create a
pretty picture, but to provide a useful tool for understanding and improving
your security posture.

RECENT POSTS

 How to Implement Rate Limiting for Laravel API Endpoints


 Common Security Vulnerabilities in PHP Laravel Applications and
Remediation Strategies
 Common Web Application Security Vulnerabilities: A Comprehensive Guide
 What Can Cybersecurity Professionals Use Logs For?
 Generative AI and Cybersecurity: Unpacking David J. Bianco’s Key Insights

CATEGORIES

 Chrome
 Cloud Security
 Cyber Security
 Data Security
 Drone Detection
 Ethical Hacking
 Fraud Detection
 GOGET SECURE
 Https
 Network Security
 SSL Certificates
 Web Security

Copyright 2023 © GOGET SECURE


Powered by Orpical Group

A Website Investment Trust™ Property

Ethical Hacking

 What is Ethical Hacking?


 Ethical Hacking Services
 Is Hacking Legal or Illegal?
Bug Bounties

 What is a Bug Bounty Program?


 How to Start a Bug Bounty Program
 Best Bug Bounty Platforms
Newsletter

Get GOGET SECURE, website security, cloud security, data security, and other updates
delivered to your inbox.

Subscribe

You might also like