Archives For Threat Modeling

Project Managers, Product Owners and the like: what would they want from a Threat Model? Perhaps nothing. Perhaps much is in it for them. This article will shed new light on how less technical roles will benefit from Threat Models.

Continue Reading...

Let’s continue to investigate Threat Modeling vNext by example. This new installment of the series is about Lucy, an expert Threat Modeler.

Continue Reading...

Threat Modeling vNext can be an interesting idea, but what would that practically mean for you? This article tries to provide an answer to that question.

Continue Reading...

I’m happy to announce that on Monday, the 23rd of April, I will participate to WhiteSource’s Secure Coding Virtual Summit with a speak on Threat Modeling vNext.
Please participate!

The link to register is https://securecoding.com/virtual-summit/?utm_source=linkedin&utm_medium=social&utm_campaign=simone-curzi.

What is Threat Modeling vNext? To really understand it, we get a closer look at its genesis, discussing how the need has helped to evolve the vision to what it is now.

Continue Reading...

I’m happy to announce that on Tuesday, the 31st of March, I will participate to a Webinar hosted by Altaz Valani from Security Compass, together with Ayhan Tek from Cyber Electra. We will talk about Threat Modeling, Quality and some of the factors needed to make Threat Modeling a successful practice for your Organization. Please participate!

The link to register is https://www.brighttalk.com/webcast/14155/389234/modern-best-practices-to-accelerate-your-threat-modeling-for-enterprise-security.

It is important to identify multiple mitigations, but how to do that? Security Controls are a great way to do that. The article introduces the main concepts and shows some ideas you can use to improve your Threat Models.

Continue Reading...