by threatmodeler | Jan 22, 2020 | Attack Surface Analysis, DevOps, Extended Capabilities, Methodology, Threat Modeling Process, ThreatModeler
Threat modeling is catching on. Increasingly, organizations are coming to the realization that securing DevOps projects as early as possible – preferably during the initial whiteboard planning and design stages – not only reduces risk, it makes good business sense....
by threatmodeler | Jan 7, 2020 | Methodology, Security, Threat Modeling, Threat Modeling Process, ThreatModeler
When threat modeling methodologies first moved from theory to application in the early 2000s, completing one model for every 40 hours of personnel resource was considered acceptable. Increasingly, internal compliance, external regulatory pressures and financial...
by threatmodeler | Sep 26, 2019 | Attack Surface Analysis, CISO, DevSecOps, Events, Methodology, Threat Modeling Process
On Friday, September 20, 2019, the Cyber Tech Accord invited ThreatModeler to speak on its panel appearing at the 2nd Annual Cybersecurity Summit. Alex Bauert, CISSP, CSSLP – ThreatModeler’s Senior Director of Threat Research – sat alongside esteemed Tech Accord panel...
by threatmodeler | Sep 12, 2019 | AWS, Cloud security, Methodology, Uncategorized
For organizations looking to improve on operational efficiencies, more and more CIOs are migrating to the cloud. Amazon Web Services (AWS) is one of the most trusted, reliable cloud service providers with the Amazon Virtual Private Cloud. In order to build an AWS...
by threatmodeler | Sep 10, 2019 | Attack Surface Analysis, DevSecOps, Methodology, Threat Modeling Process, Threat Modeling Software, Uncategorized
Here at ThreatModeler HQ, we’ve had conversations with customers recently, each telling a similar story. Business owners are signing exceptions to launch products without conducting a complete risk analysis. The reason? Project leaders invested time in manual threat...
by threatmodeler | Aug 12, 2019 | Methodology, Threat Modeling
The overwhelming number of new threats added daily to cyber ecosystems has moved threat modeling from a theoretically interesting concept into a current information security standard. As threat modeling methodologies evolve, security professionals are recognizing the...
