Frameworks, guidance, and publications for practical security architecture

Assured Control Enterprise Security Architecture

Assured Control

Security architecture guidance, publications, and working diagrams.

Assured Control is a portfolio of practical architecture work: published thinking, reusable models, downloadable diagrams, and advice shaped by real delivery and operating experience.

Explore Resources Browse Publications

Content

Real working artefacts rather than placeholder marketing copy

Focus

Advice, models, and publications that can be reused in practice

Use

Reference material for architects, programme teams, and operators

What’s inside

01

Downloadable matrices, ontologies, posters, and supporting diagrams

02

Practical guidance on domains, certificates, security operations, and policy

03

Published articles, long-form papers, and book contributions

20+

downloadable frameworks and diagrams

16

core pages and specialist topics

2005

origin of the Controls Matrix work

What This Site Is For

A working library of security architecture material that people can actually use.

The priority here is not the shell of the site. It is the body of work: the controls matrix, the risk ontology, frameworks, posters, architecture writing, and practical guidance that supports real programmes and decisions.

A resource for practical security architecture with guidance, examples, and templates designed to make security work more effective in the real world.

What You Can Find

  • Diagram-heavy resources with direct downloads in PDF, SVG, Graffle, Visio, JPG, and ZIP formats.
  • Advice pages covering certificate management, policy, domain governance, and security operations.
  • Publications that connect strategy, architecture, governance, and cloud design to practical delivery.

Guidance

Advice that supports live decisions.

View guidance

Guidance

Certificate Management

Guidance for managing digital certificates across internal and external environments, with an emphasis on lifecycle discipline and operational reliability.

Read guidance

Featured Resources

Frameworks and diagrams that carry the work.

View all resources
Risk Ontology

ontology

Resource

Risk Ontology

A structured way to define threats, vulnerabilities, controls, metrics, and their relationships in a business-led risk model.

5 downloads

Explore resource

download bundle

Resource

Models and Frameworks

A curated library of ontologies, frameworks, presentations, and supporting diagram bundles from the original Models and Other Madness section.

12 downloads

Explore resource

Popular Downloads

Preview the diagrams, then open the originals.

Security Controls Matrix

Download

Security Controls Matrix

Large-format PDF of the Assured Control matrix.

PDF
Open file
Risk Ontology

Download

Risk Ontology

Scalable PDF version of the risk ontology.

PDF
Open file

Download

Cloud Architecture Posters

Supporting diagram bundle for the business-driven cloud architecture material.

ZIP
Open file

Publications

Published work and longer-form thinking.