When to use this
Use this record to document architecture review against secure engineering principles.
Related controls
- A.8.27 Secure System Architecture and Engineering Principles
- Secure Architecture Principles Standard
Review record
| System/project | Review date | Principles reviewed | Key risks | Required changes | Approved by | Status |
|---|---|---|---|---|---|---|
| TBD | TBD | TBD | TBD | TBD | TBD | TBD |
Minimum checks
- Trust boundaries reviewed.
- Authentication and authorization reviewed.
- Data flows reviewed.
- Cryptography needs reviewed.
- Logging and monitoring reviewed.
- Resilience and failure modes reviewed.
- Deviations documented.
- Template
- Iso27001
- Technological controls
- Secure architecture
Note Metadata
Aliases: Architecture Security Review
Source: 90 Templates/Security Architecture Review Record.md
Related Notes
- A.8.27 Audit Evidence Pack
- ISO 27001 A.8.27 - Secure System Architecture and Engineering Principles
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Audit Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- A.8.27 Audit Checklist
- Secure Architecture Principles Standard
- Templates MOC