Security Architecture,
Open Source

Free security patterns and control mappings for enterprise architects. Used by security professionals worldwide since 2008.

Browse Patterns Control Catalogue
23
Security Patterns
191
NIST Controls
6
Framework Mappings
17+
Years Active

Popular Patterns

SP-001 80 controls

Client Module
SP-002 90 controls

Server Module
SP-003 0 controls

Privacy Mobile Device Pattern
SP-004 10 controls

SOA Publication and Location Pattern
SP-005 14 controls

SOA Internal Service Usage Pattern
SP-006 19 controls

Wireless Private Network Pattern
View all 23 patterns →

NIST 800-53 Rev 5 Control Families

Access Control Awareness and Training Audit and Accountability Security Assessment and Authorization Configuration Management Contingency Planning Identification and Authentication Incident Response Maintenance Media Protection Physical and Environmental Protection Planning Personnel Security Personally Identifiable Information Processing and Transparency Risk Assessment System and Services Acquisition System and Communications Protection System and Information Integrity Supply Chain Risk Management

Full catalogue includes mappings to ISO 27001:2022, ISO 27002:2022, COBIT 2019, CIS Controls v8, NIST CSF 2.0, and SOC 2 TSC.

Open Source, Open Standards

All OSA content is released under CC BY-SA 4.0. Use it in your security architecture practice, contribute improvements, or build tools on top of our structured data.

View on GitHub