Enable digital transformation with this proven enterprise-level framework and method for understanding priorities, defining objectives and requirements, and quickly deploying targeted capabilities.
Most organizations are focused on digital transformation and finding ways to incorporate technologies such as artificial intelligence, cloud, mobility and the internet of things into core operations. However, security is often the biggest obstacle to the business and the last thing to be considered.
Cyber security teams are under pressure to provide better strategic planning to turn security into an enabler of digital change. Security teams must think beyond technology-focused approaches and consider business risks and objectives. The problem is most security teams and business units don’t even speak the same language.
DXC’s Cyber Reference Architecture is a framework of strategies, tactics and capabilities that provides a common language, a consistent approach and long-term vision to help organizations align security strategies with the business.
What is the Cyber Reference Architecture?
DXC Technology has spent decades monitoring billions of threats globally, responding to some of the world’s largest attacks. We provide manage security services for the world’s largest organizations and have implemented thousands of security solutions for customers. DXC has applied that experience to create a security framework and methodology that advises customers throughout the organization, including the boardroom, on how to secure the enterprise while pursuing new digital initiatives.
DXC’s Cyber Reference Architecture is a framework of strategies, tactics and capabilities that provides a common language, a consistent approach and long-term vision to help organizations align security strategies with the business and accelerate their digital transformation. This architecture helps organizations:
- Understand what objectives matter the most to the business
- Define security requirements to achieve those objectives
- Map out the best approach for deploying targeted security capabilities to support the plan
How does it work?
The awarding-winning Cyber Reference Architecture is composed of an enterprise architecture framework that describes security with a common taxonomy and nomenclature and aligns with known security standards and approaches such as TOGAF, SABSA, COBIT, NIST and ISO. This architecture consists of 12 domains that cover the entire security program:
- Strategy, leadership and governance
- Risk and compliance management
- Security resilient architecture
- Resilient workforce
- Cyber defense
- Security orchestration
- Identity and access management
- Infrastructure and endpoint security
- Application security
- Data protection and privacy
- Converged security
- Physical security
Each domain is composed of sub-domains, with a total of 55 sub-domains. In addition, the architecture includes 347 capabilities, which represent the organization’s ability to achieve specific outcomes to support the execution of their security strategy.
How does it speed up the process?
Using this framework, DXC created Cyber Reference Architecture Blueprints that provide a conceptual view that maps key functional security areas to applicable domains and applicable sub-domains.
These blueprints accelerate the process of defining a detailed plan for deploying security capabilities through a story-board approach that defines discreet statements of work, called work packages, that will address each business objective.
What are the benefits?
DXC’s Cyber Reference Architecture helps organizations in all industries move from a reactive mode to higher levels of cyber maturity. Organizations are become better equipped to visualize their future state and develop a roadmap of short- and long-term timeline for getting there.
As a result, organizations can develop a resilient and agile security strategy and architecture that supports a risk-based approach to business strategy. This crucial planning helps organizations:
- Define how to protect what matters and enable digital business initiatives
- Optimize security budget and operational cost
- Avoid financial loss by managing existing and emerging risks
- Ensure compliance with laws and regulations
Take a deeper dive
Learn more about DXC’s Cyber Reference Architecture: