Oct 27, 2021 | Cloud security, DevOps, Recent News
When you think about using a threat modeling tool in DevOps or DevSecOps, you think about modeling threats in an effort to make your application secure. You may even think about using a threat modeling tool to ensure your application meets some compliance...
Oct 19, 2021 | Cloud security, DevOps, Recent News
When developing software, whether employing the older waterfall methodology or one of the new agile methodologies, everything starts with requirements. No requirements, no software. When developers think about turning requirements into software, what they primarily...
Oct 11, 2021 | Cloud security, DevOps, Recent News
NOTE: This is part three of a three-part series on making the business case for using commercial threat modeling tools. In part one, we put a dollar figure on the cost of a missed threat. In part two, we put a dollar figure on the extra hours required to produce a...
Oct 4, 2021 | Cloud security, DevOps, Recent News
NOTE: This is part two of a three-part series on making the business case for using commercial threat modeling tools. In part one, we put a dollar figure on the cost of a missed threat. In part two, we’ll put a dollar figure on the extra hours required to produce a...
Sep 28, 2021 | Cloud security, DevOps, Recent News
NOTE: This is part one of a three part series on making the business case for using commercial threat modeling tools. Anyone that’s been around the block software wise can tell you that as things start to really scale up, using free, open source software quickly...
Sep 20, 2021 | Cloud security, DevOps, Recent News
Developers are starting to embrace the idea that threat modeling is a best practice as part of the secure development lifecycle (SDLC). And if it is, it can no longer be seen as a project. It must evolve into a process. A Project vs a Process Projects and processes...
