by threatmodeler1 | Feb 27, 2020 | EU GDPR, Risk Management, ThreatModeler
The EU General Data Protection Regulation (GDPR) is the European Union’s upgrade of the current Data Protection Direction. The GDPR is one of the most sweeping overhauls of data protection the world has ever seen. Not only does GDPR come with real teeth – including...
by threatmodeler1 | Jan 22, 2020 | Attack Surface Analysis, DevOps, Extended Capabilities, Methodology, Threat Modeling Process, ThreatModeler
Threat modeling is catching on. Increasingly, organizations are coming to the realization that securing DevOps projects as early as possible – preferably during the initial whiteboard planning and design stages – not only reduces risk, it makes good business sense....
by threatmodeler1 | Jan 16, 2020 | CISO, Cloud security, DevOps, ThreatModeler, Uncategorized
Cloud computing is now one of the most pervasive technology trends in technology, as more companies migrate to cloud computing. The cloud continues to gain momentum as more organizations adopt the use of this software service over monolithic applications. In today’s...
by threatmodeler1 | Jan 9, 2020 | Attack Surface Analysis, AWS, DevSecOps, ThreatModeler
As technology advances, so does cybercrime. Hackers find increasingly sophisticated ways to compromise IT systems and applications. Organizations are in a position to take more proactive approaches to cybersecurity. Chief Information Security Officer (CISOs) and...
by threatmodeler1 | Jan 7, 2020 | Methodology, Security, Threat Modeling, Threat Modeling Process, ThreatModeler
When threat modeling methodologies first moved from theory to application in the early 2000s, completing one model for every 40 hours of personnel resource was considered acceptable. Increasingly, internal compliance, external regulatory pressures and financial...
by threatmodeler1 | Dec 4, 2019 | AWS, Cloud security, DevSecOps, ThreatModeler
Serverless refers to the innate structural design of the cloud that allows users to move more of their active tasks to Amazon Web Services (AWS). The migration expands their responsiveness and allots more areas for improvement. With serverless, it is possible to run...