Security architecture applies security principles to system and network design — zero trust, defense in depth, least privilege, fail-secure, separation of concerns, and layered controls.
Security architecture decisions are expensive to reverse — invest in design upfront. Security architects translate business risk requirements into technical controls. Key documents: security architecture principles, reference architectures, design patterns. SABSA, TOGAF are enterprise architecture frameworks with security components.