Certified Information Security Manager (CISM) Practice Exam

The primary concern of the Sherwood Applied Business Security Architecture (SABSA) is adopting an enterprise-wide approach to security architecture. This framework emphasizes aligning security processes and technologies with the overall business goals and objectives, rather than treating security as a standalone aspect that only addresses specific threats or vulnerabilities.

By focusing on the integration of security with business strategies, SABSA ensures that security measures not only protect assets but also support the enterprise's mission and values. This holistic perspective facilitates the development of a security architecture that is scalable, adaptable, and capable of addressing the diverse needs of the organization across various layers, including operational, tactical, and strategic levels.

In contrast, the other choices emphasize narrower aspects of security: protocols for intrusion detection, only technical solutions, or integration of business applications without necessarily connecting them to an overarching security framework. These approaches may overlook the broader implications of security within the business context that SABSA aims to encompass.