SABSA Chartered Foundation (SCF) Certificate Practice Exam Answered Correctly latest update 2025

SABSA Chartered Foundation (SCF) Certificate
Practice Exam Answered Correctly latest
update 2025


1: What does SABSA stand for?--- correct answer ---

SABSA stands for Sherwood Applied Business Security Architecture.




2: What is the primary objective of the SABSA framework?--- correct answer
---

The primary objective of the SABSA framework is to provide a method for
developing business-driven, risk and opportunity-focused enterprise
security architectures.




3: At which levels does the SABSA framework operate?--- correct answer ---

The SABSA framework operates at six levels: Contextual, Conceptual,
Logical, Physical, Component, and Operational.




4: What is the SABSA Matrix used for?--- correct answer ---

The SABSA Matrix is used to map business requirements to security
solutions across different architectural layers and perspectives.

,5: What is the purpose of the Contextual Security Architecture in SABSA?---
correct answer --- The purpose of the Contextual Security Architecture is to
understand the business context, including goals, objectives, and
requirements, to ensure alignment between business needs and security
measures.




6: How does the Conceptual Security Architecture contribute to the SABSA
framework?--- correct answer ---

The Conceptual Security Architecture defines the security concepts and
models that address the business requirements identified in the contextual
layer.




7: What role does the Logical Security Architecture play in SABSA?--- correct
answer ---

The Logical Security Architecture translates conceptual models into logical
security structures and services, defining how security should be
implemented without specifying technologies.




8: Describe the Physical Security Architecture in SABSA.

The Physical Security Architecture specifies the technology and
infrastructure required to implement the logical security architecture,
including hardware, software, and network components.




9: What is the focus of the Component Security Architecture in SABSA?---
correct answer --- The Component Security Architecture focuses on the

, detailed design of security components and their interactions, ensuring they
meet the requirements specified in the higher layers.




10: Explain the Operational Security Architecture in SABSA.

The Operational Security Architecture ensures that security measures are
effectively implemented, managed, and monitored in the operational
environment.




11: How does SABSA define security services?--- correct answer ---

SABSA defines security services as capabilities that support the business by
protecting assets, processes, and information against threats and
vulnerabilities.




12: What is a SABSA Business Attribute Profile (BAP)?--- correct answer ---

A SABSA Business Attribute Profile is a tool used to capture and document
the specific security requirements of a business, aligning them with
strategic objectives.




13: Why is risk management important in SABSA?--- correct answer ---

Risk management is important in SABSA because it helps identify, assess,
and prioritize risks to ensure that security measures are aligned with
business priorities and resources are allocated effectively.




14: What is the significance of the SABSA Lifecycle?--- correct answer ---