Security Forum

A trusted, collaborative environment for both the customer and supply sides of industry, government, and academia, who share a common goal of securely and pragmatically enabling business needs within organizational risk threshold and tolerance in light of achievable and cost-effective technical solutions. 
Who We Are & What We Do
The Open Group Security Forum provides a vendor-neutral environment where Members, who tend to be security and risk generalist practitioners, can obtain relevant knowledge, exert influence, grow professionally, and network with a world-class community of experts and peers. 
Security Forum contributors have the reputation of vigorously but cordially debating hard questions and concepts to establish next-generation risk evaluation and security technology approaches, methods, applications, and best practices. These areas include: 
  • • A Standard, quantitative, information risk framework and taxonomy with supporting resources to enable business by managing and reducing technology-related risks. 

    • A certification program for quantitative risk analysts

    • The intersection of enterprise architecture, security architecture, and risk

  • • Security assurance for business technology operations

    • Clear guidelines to secure the technology environment in an era of increased business agility and competitiveness

  • • Zero Trust Security Architectures to enable Digital Transformation

    • A framework for managing information security and for managing information in the wider context (O-ISM3)

The Security Forum produces general purpose intellectual property: reusable theory, principles, best practices, methods, white papers, guides, and standards to help suppliers and users of technology implement safe, secure, and cost-effective systems. 



Projects & Activities

Security Forum in Action

The Open Group Security Forum regularly presents as part of various conferences and events. Speakers and their presentations at upcoming events are below:



The Open Group Security Forum has published numerous documents over its 20+ years of existence. These documents are grouped below in their own webpages containing links to the documents on The Open Group Library with brief introductions for each grouping.
For a breakdown of The Open Group document classifications, please read A Handbook for Publications Development. The Open Group Standards Process describes the consensus-decision process for developing publications.

The Open FAIR Certification for People program is aimed at meeting the needs of risk analysts and organizations employing risk analysts. The program is based on the Open FAIR (Factor Analysis of Information Risk), which provides a model and taxonomy for understanding, analyzing, and measuring information risk.


The Open FAIR Certification Program is based on the Open FAIR™ Body of Knowledge, which is comprised of two standards:

Join the 830+ Open FAIR Certified Individuals

The Open Group Platinum Members