TalkSecure

Threat Modeling for the Future

Posted on

by

Video Interview with threat modeling expert, Adam Shostack

 

{{ script_embed(‘wistia’, ‘1ej6vkkjeb’, ”, ‘inline,responsive’, ”wistia’, ‘1ej6vkkjeb’, ”, ‘inline,responsive”) }}

 

Threat modeling in DevOps boils down to four simple questions, according to Adam Shostack: What are we working on? What can go wrong? What do we do about it? Did we do it well?

In this interview, he explains how to use threat modeling to anticipate threats to the finished application before development gets started. He is author of the book, Threat Modeling for Security, president of security consultancy and training firm Shostack + Associates, and an early thought leader around threat modeling for cyber security. He’s also developed an elevation of privilege card game—click here for description and links on where to buy them.

threat2

 

Related Posts

Check out all of CodeSecure’s resources and stay informed.

view all posts

Book a Demo

We’re ready to help you integrate SAST and SCA security into your DevSecOps flow. Get a personally guided tour of our solution offerings to ensure you are receiving the right solution for your development team. 

book now