Presentation
Invited Talk: Information Security Controls Prioritization – SABSA for HPC
DescriptionThe SABSA (Sherwood Applied Business Security Architecture) model is a useful generic means of exploring users’ preferences for reducing residual risks to acceptable levels given budgetary (financial, resource, time frames etc.) constraints while traceably supporting business objectives.
This talk presents why and how SABSA can be used in the HPC context to optimize selection of controls to address mandatory (e.g. pursuant to USA's National Strategic Computing Initiative establishment by Presidential Executive Order 13702) and discretionary security requirements.
This talk presents why and how SABSA can be used in the HPC context to optimize selection of controls to address mandatory (e.g. pursuant to USA's National Strategic Computing Initiative establishment by Presidential Executive Order 13702) and discretionary security requirements.