Running EA as a Capability

Running architecture as a capability means deciding how it operates, who owns what, and which decisions get governed, so it strengthens delivery instead of slowing it.

TOGAF 10 Phases G and H, the architecture capability

The architecture capability is the way an enterprise organises, sustains, and governs its architecture work so that it actually shapes change rather than simply describing it. It is the operating side of the discipline: who does the work, what they own, which decisions are governed, and how all of that connects to strategy and delivery.

Why it matters is straightforward. Good models and roadmaps achieve nothing if no one decides between them, no one tracks whether delivery follows them, and no one can grant a sensible exception. A capability turns architecture from a set of documents into a function that the rest of the enterprise relies on and respects.

Governance also has a forward-facing job. Once an architecture is live, Phase H, Architecture Change Management, watches it for business and technology change, triages each request, and decides whether the change needs only simplification, a contained incremental update, or a full return to the architecture method. That decision is the feedback loop that keeps the target architecture honest, so governance is not only about approving today's work but about knowing when yesterday's architecture has to change.

The stage builds in order. It opens with the capability as an operating model, then narrows to the board and its decision rights, then to compliance, contracts, and waivers, then to the skills and maturity that sustain it, and finally to tailoring the method so the whole thing stays useful under real delivery pressure.

The stage builds up in this order. Read it straight through on the first pass, or jump to any concept.

  1. Operating model
  2. Decision rights
  3. Compliance
  4. Skills and maturity
  5. Minimum viable

EA capability as an operating model

Picture a retailer that announces an architecture team, gives it a manager and a few desks, and then waits for value to appear. An architecture capability is not that. It is an operating choice: a set of responsibilities, defined touchpoints with strategy and delivery, clear ownership of the repository, named review forums, and a deliberate decision about how much central coordination the enterprise actually wants. The capability is the machine, not the box on the chart.

The frequent error is to assume that standing up a team is the same as having a capability, so attention goes to headcount and reporting lines while the real questions stay unanswered. A more durable approach defines the capability by its interfaces, its owned outputs, and its measures of usefulness rather than by where it sits in the hierarchy. Ask what it hands off, to whom, and how anyone would know it was working; if those answers are vague, a team has been named but no capability has been built.

EA operating model: who sits where and what authority each level holds A federated operating model shown as three authority levels stacked top to bottom, each read across three bands. The top central board decides principles, standards and waivers alone, consults domain leads, and cannot pick a local stack. The middle domain boards, emphasised as the pivot, decide the domain model, contracts and vendor alone, consult central on principle, and cannot override a principle without a waiver. The foot project teams decide component design within standards and cannot add a pattern outside the catalogue. A green band marks what each level decides alone, blue what it consults first, red what it cannot do. An arrow down the left carries principles from central to local. Decides aloneConsults firstCannot do Central boardEnterprise levelDecides alonePrinciples, standardsand waiversConsults firstDomain leads oncross-domain changeCannot doPick a local vendor orplatform stack Domain boardsFederated levelPivot of the modelDecides aloneDomain model, contractsand vendorConsults firstCentral on principleand standardCannot doOverride a principlewithout a waiver Project teamsLocal levelDecides aloneComponent design withinstandardsConsults firstDomain board onintegration choiceCannot doAdd a pattern outsidethe catalogue principles down Decides aloneConsults firstCannot do Authority is not budget.A level may decide a thing without owning the money for it. The middle domain level is the federated pivot, freewithin central principles and answerable for them.
The operating elements of an architecture capability: sponsor, chief and domain architects, governance forums, the repository, and the interfaces to strategy and delivery.
Go deeper in the module

Architecture Board and decision rights

When a streaming firm asks its architecture board to sign off every screen design, the board becomes a queue, decisions slow to a crawl, and delivery teams quietly learn to route around it. An effective Architecture Board holds a narrow but meaningful remit instead: a short set of decision rights, a way to handle exceptions, a few genuinely important review points, and explicit criteria for when something must be escalated to it. Its authority comes from being selective and willing to decide, not from inspecting everything.

The tempting belief is that a board adds value by reviewing every design so that nothing slips through, but a board that reviews everything usually decides very little and teaches teams to avoid it. It is better to give the board a short list of decisions that are truly cross-enterprise, such as data authority or a major roadmap change, and delegate the rest to architects and teams under named escalation thresholds. The clearest sign of the wrong scope is a board pulled into routine local choices while the cross-enterprise questions stay unresolved.

Architecture board decision rights on two axes: scope and reversibility A two-by-two matrix of decision rights on two blue axis rails: a vertical Scope rail, local to cross-domain, and a horizontal Reversibility rail, reversible to irreversible, along the bottom. The owner of each quadrant is colour-coded: green for the team, blue for a domain board, red for the central board. Local plus reversible is the lightest path: the team decides, no board involvement. Local plus irreversible and cross-domain plus reversible both go to the domain board, central board informed. Cross-domain plus irreversible, marked in red, is the only call the central board owns outright: deliberate and slow by design. A closing red note names the two errors the grid prevents. Scope: local to cross-domain Reversibility: reversible to irreversible Cross-domain, reversible Domain board decides Central board informed Standard review Cross-domain, irreversible Central board owns Deliberate, slow by design Heaviest review Local, reversible Team decides No board involvement Lightest path Local, irreversible Domain board decides Central board informed Standard review Team decidesDomain board decidesCentral board owns The grid prevents two errors.Sending a reversible local choice up to the board wastes time, and leaving a cross-domain irreversiblecall with one team creates risk. Each quadrant assigns the right owner.
What the board decides, what it delegates to architects and teams, and the thresholds that send a decision upward.
Go deeper in the module

Compliance, waivers, and architecture contracts

At a bank with no disciplined route for deviation, teams swing between two bad habits: they ignore architecture guidance, or they treat any departure from it as a political crisis. Compliance assessment, architecture contracts, and waivers exist to replace both. Together they make a deviation visible, reasoned, time-bound where that helps, and traceable to the risk and the enterprise consequence it carries, so the conversation is about evidence rather than blame.

Many people equate good governance with a strict no-waiver rule, on the assumption that standards are safest when they are never broken. In practice a rigid ban pushes non-compliant decisions into the shadows, while having no compliance position at all lets the architecture drift. The managed middle path is to allow an exception through an explicit waiver that the right forum can see, with a reason stated against enterprise risk and an end date where appropriate. The aim is to be strict about visibility and reasoning, not strict for the sake of ceremony.

A compliance review is not a yes or no verdict either. The standard grades an implementation along a spectrum, from irrelevant and consistent, through compliant and conformant, to fully conformant, with non-conformant kept for a real breach. Placing a system on that scale is what makes the assessment objective rather than a matter of opinion, and it is the evidence that shows whether a waiver is genuinely needed or whether the gap can be accepted as it stands.

Compliance, waiver and contract: one flow that ends in audit evidence Four stage panels run left to right, joined by labelled flow arrows. Stage 1, Compliance check, owned by the architect, tests a requirement and outputs a named gap; its red spine marks the start. An arrow labelled raises leads to Stage 2, Waiver request, owned by the requester, which outputs a decision request. An arrow labelled decides leads to Stage 3, Contract, owned by the board, setting the agreed terms. An arrow labelled files leads to Stage 4, Audit evidence, owned by the auditor, filing the trail as the audit record; its red spine marks the end. A red note states this is one flow, not three: each stage hands its artefact to the next, so the trail must hold from the first check. Stage 1Compliance checkRequirement testedOwned byArchitectOutput: a named gap Stage 2Waiver requestGap justified, owner setOwned byRequesterOutput: decision request Stage 3ContractScope, expiry, conditionsOwned byBoardOutput: agreed terms Stage 4Audit evidenceWhole trail filedOwned byAuditorOutput: the audit record raises decides files Start and end of the flowStage within the flow One flow, not three.Each stage hands its artefact to the next; the auditor only ever sees the evidence the final stage files, so the trail must hold from the first check.
The path of a proposed deviation from request through review and decision to monitoring, showing where board sign-off is needed and where local approval suffices.
Go deeper in the module

Skills, roles, and maturity models

A hospital that declares it needs stronger architecture but never names the actual gaps has nothing to act on. Work on skills, roles, and maturity earns its place only when it reveals what the enterprise cannot yet do reliably, such as keeping the repository accurate or holding governance consistent, and ties each weakness to a concrete operating consequence. Done that way it becomes a diagnosis the organisation can use rather than a benchmarking ritual detached from how the place runs.

The trap is to treat the maturity score as the goal in itself, so reaching level three is logged as progress even though nothing has improved on the ground. A score on its own is close to useless; a gap is useful only when it points to the specific capability it limits and the risk that gap creates. Reporting each weakness with its operating consequence keeps the assessment honest and turns maturity language away from vanity and back toward something the enterprise can prioritise and fix.

Architecture skills ladder: five rungs from practitioner to coach A five-rung skills ladder drawn as an ascent, with a left-hand axis pointing up labelled growing capability, wider scope. From the bottom up: Level 1 Practitioner, the entry rung marked in red, owns components within a project, scope component. Level 2 Architect owns the architecture of a project, scope project. Level 3 Senior architect owns one domain end to end, scope domain. Level 4 Lead architect owns architecture across a programme, scope programme. Level 5 Coach at the top shapes other architects and owns the practice, scope centre of excellence. A closing note in red states that maturity is capability, not tenure, so promotion rests on demonstrated scope rather than years served. Growing capability, wider scope L5CoachShapes other architects and owns the practiceCentre of excellence L4Lead architectOwns architecture across a programmeProgramme L3Senior architectOwns one domain end to endDomain L2ArchitectOwns the architecture of a projectProject L1PractitionerOwns components within a projectComponent Maturity is capability, not tenure.Each rung names what the person can deliver alone, so a promotion is earned by demonstrated scope ratherthan years served.
Role coverage, skill depth, and maturity weaknesses in one view, with each gap linked to the capability it limits.
Go deeper in the module

Running TOGAF without bureaucracy

A fast-growing scale-up that runs a lightweight architecture-decision-record practice keeps the method's value without the ceremony. The standard is designed to be tailored, and sensible tailoring preserves the parts that create value: a clear scope, explicit principles, traceable decisions, sensible artefacts, and controlled governance. Everything else is shaped to fit the enterprise's pace, risk, and size, so the rigour is kept while the weight is not.

The misreading is that tailoring simply means dropping steps to move faster, and that lighter is therefore always better. The word can hide two very different behaviours: smart simplification, or quiet erosion of the method. The test is whether the enterprise can still explain its architecture logic, track its key decisions, and control its exceptions with confidence. Tailor up to that line and the method stays useful; go past it and it has been over-stripped, leaving an organisation that can no longer say why it is changing or who may approve a departure.

Minimum viable TOGAF on two axes: programme size and regulatory weight A two-by-two map of minimum viable TOGAF on two blue axis rails: a vertical Programme size rail, small to large, and a horizontal Regulatory weight rail, light to heavy, along the bottom. Each quadrant names the right posture, with a green marker for the method it keeps and an amber marker for what it drops. Small and light is Principles only. Small and heavy adds phases B, D and G for governance while dropping C and E to F. Large and light runs ADM A to D with H skipped. Large and heavy, marked in red, is full ADM with all artefacts and board governance, dropping nothing. The closing note states the rule: full method everywhere is bureaucracy, none at all is chaos. Programme size: small to large Regulatory weight: light to heavy Large, light ADM A to D, skip H Vision and content, lighter governance Drops change-management phase H Large, heavy Full ADM All artefacts, full board governance Drops nothing: every phase runs Small, light Principles only Plus one viewpoint per stakeholder Drops the formal ADM cycle Small, heavy Principles plus B, D, G Keeps governance for the regulator Drops phases C and E to F Method the posture keepsMethod it drops Only large and heavy earns full TOGAF.Full method on a small light programme is bureaucracy; none on a large regulated one is chaos. Scale themethod to the work.
Method controls grouped into always keep, often tailor, and context specific, marking the line below which tailoring becomes erosion.
Go deeper in the module

Practise with the stage's tools

Printable, fillable artefacts for putting this stage to work. Each cites its source, opens in the diagram workspace, and downloads as it stands.

A governance decision has a path that passes and a path that stalls

An architecture change moves through submission, board review and decision. At each stage the green card is what carries it forward and the red card is what sends it to waiver, rework or rejection.

Phase G, Implementation Governance

EA operating model: how the architecture function actually runs

A board mandate gives the architecture function its authority, and that authority flows down through the people, cadence, tooling and engagement that run it, all aimed at one maturity target each year.

ADM-wide

London governance repository assurance: from board decision to Ofgem-readable evidence

Five owned stages carry an LGD board decision from capture through assurance to a filed evidence pack, and each stage hands the next a specific artefact the regulator expects to see.

Phase G, Implementation Governance

Test yourself on this stage

Check what has landed. The practice set gives instant feedback as you go; the timed assessment mirrors a real sitting, with a pass record and a breakdown by domain.