Sabsa Enterprise Security Architecture May 2026

Developed by John Sherwood in the 1990s, SABSA is not a "one-size-fits-all" blueprint. Instead, it provides a set of models, matrices, and processes that help security architects design a system that is right for their specific organization .

This is where comes in. Unlike a product or a compliance checklist, SABSA is a methodology —a way of thinking about security that starts with your business goals and works backward to the technology. What is SABSA? SABSA stands for Sherwood Applied Business Security Architecture . It is an open-standard, risk-driven framework for developing enterprise security architectures that support business objectives. sabsa enterprise security architecture

In the world of cybersecurity, it’s easy to get lost in the noise of firewalls, antivirus software, and intrusion detection systems. Many organizations fall into the trap of buying products first and figuring out the strategy later. Developed by John Sherwood in the 1990s, SABSA