Welcome to the official SABSA website


24 Hours of SABSA Around the World -- Date Set for Thursday May 22, 2014


Welcome to the official website of SABSA – the world’s leading free-use and open-source Security Architecture development and management method and framework.

24 Hours of SABSA is a rallying theme that is meant to build local communities of SABSA Practitioners, while at the same time, reinforcing our global connectin. This is a volunteer led effort in collaboration with The SABSA Institute to initiate small regional forums of SABSA Practitioners arouthe world which may in the future lead to regional chapters.



SABSA is a proven methodology for developing business-driven, risk and opportunity focused Security Architectures at both enterprise and solutions level that traceably support business objectives. It is also widely used for Information Assurance Architectures, Risk Management Frameworks, and to align and seamlessly integrate security and risk management into IT Architecture methods and frameworks.

SABSA is comprised of a series of integrated frameworks, models, methods and processes, used independently or as an holistic integrated enterprise solution, including:

  • Business Requirements Engineering Framework (known as Attributes Profiling)

  • Risk and Opportunity Management Framework

  • Policy Architecture Framework

  • Security Services-Oriented Architecture Framework

  • Governance Framework

  • Security Domain Framework

  • Through-life Security Service Management & Performance Management Framework

The SABSA Institute develops and maintains the method and certifies and accredits the professional Architects who use it in approximately 50 countries around the world.