Integrating Threat Modeling with DevOps
Because DevOps has effectively joined the Operational and Dev domains, it introduces security dependencies which neither domain had to consider before.
threatmodeling
2 posts
Who’s Threat Modeling the Threat Modelers?
When an org's security personnel carry out threat modeling exercises, they tend to make unconscious assumptions about the efficacy of their own security controls. This is dangerous.