This session will review why having a security reference architecture will allow companies to adhere to NIST and CISA security frameworks and achieve business outcomes such as Zero Trust and SASE. Let's not forget the need for an effective Security Operations to manage and respond to daily threats. Companies continue to buy more tools, but the people and process matters more over technology.