ABSTRACT
Enterprise security architecture (ESA) comprises all aspects of a security program, including corporate
leadership, strategy, organizational structure, policies, procedures, standards, and technical components.
The purpose of this chapter is to present a road map for achieving an effective ESA, via implementation
of common security models, standards, and practices.
