Information Technology Reference
In-Depth Information
Chapter 10
Aligning iA
2
and
eA Standards
10.1 introduction
Architecture is the art of consciously forming a coherent structure. This definition
applies to physical architecture (the Frank Lloyd Wright kind), to enterprise archi-
tecture, and to security architecture. Architecture is not engineering, not design,
not a network, and not a system. So many times, people speak of architecture
while looking at a network diagram—that is not architecture, that is engineering
(maybe), and more often just a network design.
Enterprise architecture is a holistic practice that considers business drivers,
and then aligns technology to them. Any business endeavor includes risk. IA
2
architecture is a business risk focus on people, policy, business process, systems
and applications, information, and infrastructure. IA
2
provides a discipline to find
the risks (
identify
), list the risks (
enumerate
), describe the business implications of
risks (
articulate
), and manage the risks in an appropriate manner (
address
), which
accepts, ignores, shares, transfers, or mitigates risks. Then IA is aligned with busi-
ness drivers and integrated to the enterprise architecture. This chapter provides
an overview of how IA
2
works with EA to integrate an understanding of risk and
risk management.
279
