Can Threat Modeling Actually Improve Incident Response?
You threat model to identify threats and implement mitigations before you deploy an application. In this regard, the overarching reason for your commitment to do threat modeling is to avoid incident response altogether. Theoretically, an application with no...
Whitepaper: What’s Needed to Turn DevOps into DevSecOps
DevOps is a natural byproduct of the shift to agile software development and the move to the cloud. One of the main benefits of DevOps is the speed of software iteration, based on user stories and development sprints. The drawback to all this speedy development,...
How to Maximize the Impact of Your Threat Modeling: An Overview of the ThreatModeler Community Resources
If you’re a first-time threat modeler, threat modeling can seem overwhelming. Maybe you’re following one of the common threat modeling frameworks like STRIDE or OWASP. Or maybe you’ve already invested in an automated threat modeling tool like ThreatModeler. Either...
Are Your Threat Models Ready for Q-Day?
Threat models are really good at identifying and mitigating cybersecurity threats. But they’re not much good at addressing threats nobody knows about. And that brings us to the security threats expected to arrive on Q-Day. We know about some of the threats that are...- Does the New National Cybersecurity Strategy Make Threat Modeling Essential?
- How Threat Modeling Can Help Minimize Your Application’s Blast Radius
- Can Threat Modeling Actually Improve Incident Response?
- Whitepaper: What’s Needed to Turn DevOps into DevSecOps
- How to Maximize the Impact of Your Threat Modeling: An Overview of the ThreatModeler Community Resources
