Threat Modeling to Reduce Real Software Security Risk
Application security risk management is about identifying key threats, implementing countermeasures, and validating your defenses are robust. It is technique often used just prior to testing; however, it has value from requirements gathering all the way through to application construction and deployment.
Threat modeling helps you understand risk and communicate the pros and cons of defensive measures to both technical and business staff. This webcast will present key threat modeling concepts so your team can triage vulnerabilities in the context of business impact and relate threats to operational risk, criticality, and mitigation.
- What is Threat Modeling and why is it important
- Threat Modeling in action - activity examples
- STRIDE and DREAD threat classification techniques
- Leveraging a threat model at every phase of the SDLC
Meet the Presenter