May 1, 2018 | Cyber Risk, Enterprise Threat Modeling, Risk Management, Threat Models
For four years, running cybersecurity and interconnected infrastructure have topped the list of risk sources, according to the results of the 11th Annual Survey of Emerging Risks.[1] Risk sources considered in the survey include climate change, asset price collapse,...
Jan 24, 2018 | Enterprise Threat Modeling, Threat Models
With Meltdown and Spectre, 2018 could set a new standard for the “year of the cyber-attack.” Getting on top of these critical vulnerabilities will require enterprise threat modeling. Meltdown and Spectre recently discovered hardware vulnerabilities affecting chips...
Oct 5, 2017 | DevOps, DevSecOps, Threat Models, ThreatModeler
A flat tire on your morning commute can leave you stranded for hours, and a broken cog in the factory can wreak havoc on the entire assembly line. The same is true for DevOps implementation. It is virtually impossible to realize the promised benefits of DevOps from a...
Jul 24, 2017 | Endoint Security, Threat Models
The need to analyze endpoint security is becoming increasingly important for organizations. Layered network security defenses are difficult to penetrate. However, once inside the perimeter, legitimate users and adversaries alike have much more freedom of movement....
Mar 27, 2017 | Cloud security, Cloud Threat Modeling, Threat Models
In today’s rapidly evolving, highly interconnected cyber ecosystems, attempting to produce that increase through fixed-capacity, on-premise infrastructures and data centers are infeasible. Cloud computing – whether through Amazon Web Services (AWS), Azure, or other...
Feb 11, 2017 | IoT Cybersecurity, Threat Models
Organizations may need to consider a broader cyber ecosystem than their deployed on-premises and cloud-based systems, according to Intel Security’s Christopher Young who addressed the issues at the 2017RSA Conference.[1] Smart homes are increasingly becoming a part of...
