COSAC 2024 COSAC Connect COSAC APAC 2025

COSAC APAC: Melbourne, 25-27 February 2025. For 30 years COSAC has delivered a trusted environment in which to deliver information security value from shared experience and intensive, productive, participative debate and development. #COSAC2025 Call for Papers is now open.

Monday 26th February 2024

Pre-Conference Training - Enterprise Security Architecture Essentials

09:00 - 17:00 Full-day Training Course - ESA Essentials Speaker(s): David Lynas

David Lynas

Chairman, COSAC (Northern Ireland)

David Lynas is currently enjoying his 42nd year of experience in Information Security, during which he has been invited to provide strategic advice to governments and industry clients on every continent. A globally renowned Enterprise Security Architect, Security Strategist, and Thought-Leader, he is the co-author of SABSA (the world’s leading free-use, open-source Security Architecture Methodology), CEO of the SABSA Institute and CEO of David Lynas Consulting.

Gain an essential insight into the power of SABSA, the world’s most prevalent Enterprise Security Architecture framework and method

This optional 1-day training course will run Monday 26th February 2024, the day prior to COSAC 2024.

COSAC delegates can avail of this 1-day training course delivered by SABSA co-author David Lynas, for the reduced price of $500 +gst.

This innovative and condensed one-day course delivers a jump-start to your Enterprise Security Architecture journey. Understand what SABSA is, the essentials of how it works, and why it is important. Evaluate first-hand the value that it can deliver to you, your career, and your wider organisation.

Learn how to change the security conversation and reframe the way we approach our work by transforming information / cyber security, architecture, and risk into Business-enabling, value-driven functions. Understand how to define requirements and articulate solutions value in clear business terms.

Critically and realistically evaluate the limitations of current checklist-based security practices and tactical solutions thinking. Take the first step in elevating your security to a new level and discover a better way to serve your customers in the age of ever-changing, hyper-connected, multi-dimensional complexity. Uncover how to be the difference that contributes to stakeholder success through this short introduction to a new approach of realising the business benefit, innovation, and adaptability demanded by stakeholders.


The Fundamentals

  • - Security and Enterprise Security Architecture
  • - Introduction to SABSA
  • - Principles, advantages, and benefits
  • - The framework for solving complex problems
  • - Traceability to enable business and inform solutions

The Conceptual Frameworks

  • - Security and Enterprise Security Architecture in Business Context
  • - Business-driven requirements
  • - SABSA Attributes: a normalised, measureable, common language for what’s important
  • - SABSA Domains: a normalised structure for accountability, authority, and ownership of what’s important
  • - Business-driven Governance, Risk, Compliance & Policy frameworks

Solutions Architecture

  • - Calibrating and scaling the framework in a solutions context
  • - Practical traceability to demonstrate solutions value
  • - The role of dependency models
  • - Integrating and aligning security

Security Strategy

  • - The integrated lifecycle
  • - Strategic, transformation & operation risk
  • - Where to start
  • - The security roadmap

Enterprise Security Architecture Essentials is available during COSAC registration as an add-on.