In 2021 I want to tackle a Security Architecture framework that solidifies analysis, preparation and execution of a security program taking into consideration risk and business needs to appropriately map out what needs to be put in place to increase security posture. During my research I came across three main “standards”. TOGAF, SABSA and Zackman’s. My question is which one of the three is more pertinent to the pursuit of establishing a security program and building it from the ground up as well as analyzing the current posture/business needs and building out a roadmap to improve upon that posture.
Any other suggestions outside of what was mentioned above are welcome as well. Thanks in advance.