"topic:security-architecture" — Search

77 results for “topic:security-architecture”

How to systematically secure anything: a repository about security engineering

secure-designsecure-systemssecuritysecurity-architecturesecurity-assurancesecurity-engineeringthreat-modeling

《数据安全架构设计与实战》：本书系统性地介绍数据安全架构的设计与实践，融入了作者多年在安全领域积累的实践经验。全书分四大部分，共20章。第一部分介绍安全架构的基础知识，内容包括安全、数据安全、安全架构、5A方法论、CIA等基本概念,为后续论述奠定基础。第二部分介绍产品安全架构，内容包括：身份认证、授权、访问控制、审计、资产保护等，讲解如何从源头设计来保障数据安全和隐私安全，防患于未然。第三部分介绍安全技术体系架构，内容包括：安全技术架构、网络和通信层安全架构、设备和主机层安全架构、应用和数据层安全架构、安全架构案例分析等。第四部分介绍数据安全与隐私保护治理，内容包括：数据安全治理、数据安全政策文件体系、隐私保护基础与增强技术、GRC治理框架、数据安全与隐私保护的统一等。

Python14750Updated 1 month ago

data-securitysecurity-architecture

mylamour/blog

Your internal mediocrity is the moment when you lost the faith of being excellent. Just do it.

SCSS6314Updated 1 day ago

blogmachine-learningsecuritysecurity-architecturewisdom

opensecurityarchitecture/osa-data

Security architecture patterns and NIST 800-53 controls from opensecurityarchitecture.org

Python251Updated 21 hours ago

complianceiso-27001nistnist-800-53pci-dsssecuritysecurity-architecture

Hack23/ISMS-PUBLIC

Hack23 Public Information Security Management System:Security Through Transparency and Open Documentation Demonstrating Security Excellence Through Public ISMS Disclosure

247Updated 3 days ago

businesscontinuitycis-controlscompliancecybersecuritydevsecopsenterprise-security-architecturegovernanceinformation-securityinformation-security-policiesismsiso27001management-systemnistcsfrisk-managementsecure-developmentsecurity-architecturesecurity-policysupplierstransparencyvulnerability-management

elementalsecurity/sec-arch

No description provided.

186Updated 3 months ago

architecture-principlescybersecurityinfosecopen-knowledgesecurity-architecturesecurity-designs

anunay-bhatt/secure-serverless-reference-architecture

A walkthrough of security controls for a serverless architecture via a demo application

HCL110Updated 5 months ago

cloud-securityreference-architecturesecuritysecurity-architectureserverless

ethansilvas/security-plus

Notes and practice exam analysis I completed when preparing for my CompTIA Security+ exam

102Updated 2 months ago

cloud-securitycomptia-securitycybersecuritylinuxnetwork-securityrisk-managementsecurity-architecturesecurity-plussecurity-plus-examthreat-analysis

abhaybhargav/tmdl

An attempt at creating a unifying Threat Model Definition Language using a declarative syntax with cuelang

92Updated 10 months ago

cuelangdesired-state-configurationinfrastructure-as-codesecurity-architecturesecurity-toolsthreatmodeling

austinsonger/Infosec-Questions

Common (and Advanced) Information Security Questions. Questions you should know the answer to for your information security career.

85Updated 1 year ago

careerconfidentialitycryptographycyber-securitycybersecuritydata-leaksdiffie-hellman-exchangeencryption-keyinformation-securityinformationsecurityrisk-managementsecurity-architecturesecurity-auditsecurity-soaservice-attacks

sergey-pronin/excalidraw-threatmodeling

Excalidraw library for threat modeling diagrams

70Updated 1 week ago

appsecdata-flow-diagramdata-flowsdfddfd-diagramssdlcsecure-software-developmentsecurity-architecturesystem-designthreat-modelingthreatmodeling

icdfa/ccc-program

Certified Cybersecurity Consultant (CCC) Program - A comprehensive 4-month, 320-hour training curriculum for experienced cybersecurity professionals. Developed by Aminu Idris, AMCPN | International Cybersecurity and Digital Forensics Academy (ICDFA)

77Updated 19 hours ago

certificationcomplianceconsultingcybersecurityeducationgrciso27001security-architecturetraining

paulveillard/cybersecurity-TOGAF

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about The Open Group Architecture Framework (TOGAF) in Cybersecurity.

52Updated 5 months ago

architecturesecurity-architecturetogaftogaf9

steve-gibbons/astra-threat-modeling-framework

ASTRA (Architecture and Security Threat Review and Analysis) is a collaborative, business-driven methodology for security architecture review and threat modeling. NOT an audit.

30Updated 3 months ago

cybersecurityframeworkgrcinfosecopen-source-securityrisk-managementsecurity-architecturethreat-modeling

0rlych1kk4/quantum-vault-architecture

Architecture and threat model for a post-quantum cryptography (PQC) key management system.

30Updated 1 month ago

key-managementkmspost-quantum-cryptographyrustsecurity-architecture

obsTR/threat-modeling-templates-product-security

Reusable STRIDE and PASTA threat modeling templates for Agile product teams. Standardize your DevSecOps security design reviews with Markdown and draw.io.

30Updated 3 weeks ago

agile-securitydevsecopssecurity-architecturestridethreat-modeling

Threat-Vector-Security/contextcypher

Offline-first threat modeling and architecture diagram editor with AI-powered security analysis, MITRE ATT&CK/NIST mapping, local Ollama support, and integrated GRC attack-path workflows.

TypeScript31Updated 4 days ago

architecture-diagramsattack-pathcybersecuritydata-flow-diagramdiagram-editorgrclocal-llmmitre-attacknistoffline-firstollamaowaspreactflowrisk-assessmentsecurity-architecturethreat-analysisthreat-intelligencethreat-modeling

paulveillard/cybsecurity-security-assurance

31Updated 1 year ago

secsecurity-advisoriessecurity-analysissecurity-architecturesecurity-assessmentssecurity-assurancesecurity-auditsecurity-automationsecurity-awarenesssecurity-by-designsecurity-compliancesecurity-engineeringsecurity-frameworksecurity-managementsecurity-matrixsecurity-testingsecurity-tools

RadiumCosm/radium-corpus

Radium corpus — Execution Governance for Complex Automated Systems

20Updated 2 days ago

ai-governanceauthority-bound-systemsautonomous-systemsdistributed-systemsexecution-controlexecution-governanceexecution-securityinfrastructure-securitymachine-authoritysecurity-architecture

MatusKysel/Medusa

Medusa is a package that improves the overall security of the Linux OS by extending the standard Linux (Unix) security architecture while preserving backward compatibility.

C21Updated 1 year ago

constablekernellinux-kernellinux-osmedusasecuritysecurity-architecture

scottnorton-io/defensible-pci-frameworks

Threat-oriented defensive frameworks reorganizing PCI DSS v4.0.1 requirements by attack type rather than compliance checklist. Educational guide for security professionals implementing strategic layered defense.

20Updated 2 months ago

compliancedefense-in-depthhreat-modelingpcipci-dsssecurity-architecturesecurity-frameworks

MarcKarbowiak/consulting-architecture-playbook

Architecture decision records, system design case studies, and delivery templates demonstrating pragmatic SaaS architecture, cloud trade-offs, and consulting-grade technical leadership.

20Updated 3 days ago

adrai-architecturearchitecture-decision-recordscloud-architectureconsultingdesign-patternsdistributed-systemsengineering-practicesenterprise-architecturesaas-architecturesecurity-architecturesoftware-architecturesystem-designtechnical-leadership

laugiov/security-operating-model

Pragmatic security operating model for engineering-driven organizations. Strategic docs, governance templates, and decision frameworks for Security Directors and Architects.

20Updated 1 month ago

cisocompliancecybersecuritydevsecopsgrcincident-responseinformation-securityiso27001risk-managementsecuritysecurity-architecturesecurity-engineeringsecurity-gouvernancesecurity-leadershipsoc2threat-modelingvulnerability-management

shevonnepolastre/azure-hub-spoke-platform

Azure Government–aligned hub-and-spoke network architecture modeling a regulated enterprise environment with centralized security, strict workload isolation, and scalable spoke design.

Bicep10Updated 2 weeks ago

azurebicepbicep-azurecloudarchitecturehub-and-spokeinfrastructure-as-codesecurity-architecturezero-trust

rijal028/Fortress-File-Architecture

A conceptual architecture designed to make file-based malware attacks fundamentally impossible

Python10Updated 8 months ago

cdrconceptual-frameworkcontent-disarm-and-reconstructioncybersecurityinformation-securityproactive-securitysecurity-architecturethreat-neutralizationuebazero-trust

Yashodhanvivek/STEVAL-SENSORTILEBOX-THREAT-MODEL

Threat model and security analysis for STEVAL-SENSORTILEBOX product from ST Microelectronics

10Updated 2 years ago

arm-psabledata-loggerhardware-securityiotiot-securityplatform-securityproduct-securitypsa-armsecuritysecurity-analysissecurity-architecturesecurity-objectivessensornodesensortilesteval-mki109v3stm32stm32l4threat-modeling

niranjanbala/security-guides

Security implementation guides covering modern security practices, authentication, authorization, and compliance frameworks

10Updated 5 months ago

application-securityauthenticationauthorizationbest-practicescompliancecybersecuritydata-protectiondocumentationenterpriseframeworkguidesinfosecprivacyproduction-readysafetysecure-codingsecuritysecurity-architecturesecurity-best-practicessoftware-development

alaamjadi/TryHackMe-Workspace

A portfolio of completed rooms, challenges, and CTFs from TryHackMe.com, showcasing hands-on experience with real-world cybersecurity scenarios — from hacking machines to investigating attacks. This collection highlights my practical skills across diverse technologies, reflecting my growth and learning through various cybersecurity learning paths.

Python10Updated 3 weeks ago

ctfcybersecuritydigital-forensicsenumerationexploitationexploitationsidentity-securityincident-responsemalware-analysispenetration-testingprivilege-escalationred-teamingsecurity-analysissecurity-architecturesecurity-automationsecurity-operationsthreat-huntingthreat-managementvulnerability-analysis

TanishkaMarrott/Secure-Cloud-Architecture-with-SCPs-and-OPCs

Repository containing best practices for securing cloud architectures using SCPs and OPCs, with sample policies and implementation scripts to enforce a holistic security posture

10Updated 5 months ago

awscloud-architecturecloud-infrastructurecloud-securitygcpiamsecurity-architecture

zeroday450/T512-OPSEC

Projet centré sur un ThinkPad T512 conçu comme artefact OPSEC. Machine volontairement banale, traitée comme terminal non fiable. Les fonctions critiques sont externalisées et cloisonnées. L’objectif n’est pas la perfection, mais la cohérence face à des menaces élevées.

10Updated 1 day ago

corebootcybersecurityhardware-securityinfosecoperational-securityopsecprivacyprivacy-toolssecurity-architecturethreat-modeling

Page 1 of 3