The organisation has a strategy for cybersecurity architecture, which may be developed and managed in an ad hoc manner
Context and Guidance: There is a desired outcome for the cybersecurity architecture strategy and general agreement on how to achieve it. For example, the architecture strategy may be focused on preventing unauthorised access, and there is consensus on the design decisions concerning proposed authentication and authorisation solutions.
Related Practices • Progression: This practice is part of a practice progression. Practice progressions are groups of related practices that represent increasingly complete or more advanced implementations of an activity. The practices in this progression include: ARCHITECTURE-1a, ARCHITECTURE-1b, ARCHITECTURE-1h.