Skip to main content

3. Identify Mission and Business to support

With leadership's endorsement, the next step is to identify the missions and business functions that your systems will support, helping to prioritize investments and allocate resources effectively.

These missions and functions influence the design of the mission or business processes needed to carry them out. Prioritizing missions and functions shapes investment strategies, funding, resource allocation, and risk decisions, directly impacting enterprise and security architecture development. Stakeholders provide insights to help understand these elements from a security and privacy perspective

As CSFaaS supports this alignment through various catalogues used across different application components, we recommend focusing on the following catalogues:


Business Goals and Objectives

The Business Goals and Objectives catalog outlines strategic outcomes the organisation aims to achieve. Its purpose is to ensure that the security architecture aligns with these goals, supporting both risk management and compliance while enabling business success. This catalog serves as a foundation that connects business strategy with security, ensuring security practices support strategic initiatives.


Business Attributes

The "Business Attributes" catalog (based on SABSA) lists essential qualities and characteristics that define the organisation's security needs and objectives. These attributes are derived from assessing business risks and are used to ensure that all security measures align effectively with business drivers. This catalog is instrumental in guiding the design, implementation, and management of the organisation’s security architecture, ensuring it supports and enhances the overall business strategy.


Business Units

The Business Units catalog lists the organisation’s operational divisions, facilitating precise tracking and management of each functional area.


Functional Domains

The Functional Domains catalog categorizes key areas of business operations, enabling strategic alignment with business goals. This structure helps synchronize organisational activities, ensuring each domain contributes effectively to the overarching business strategy.


Architectural Domains

The Architectural Domains catalog organizes aspects of the business and IT environment to support targeted security strategies. It encompasses internal components like people, processes, and systems, as well as external interactions, ensuring comprehensive security coverage.