This white paper will highlight the most important steps for building a threat model for AWS and Azure environments while establishing a scalable threat modeling process for cloud ecosystems.
Some of the most valuable key points discussed are:
- Promotion of secure coding, requiring organization standards
- Creation of checklists to ensure that security controls meet compliance objectives.
- Implementation of threat modeling as a self-service model by leveraging workflow integration
- Leverage security tools and technologies to reduce attack surface