webinar register page

Webinar banner
Scaling Threat Modeling Beyond STRIDE and Data Flows
Speakers: Dhruv Chandra, Spencer Koch, Ayhan Tek & Altaz Valani (See Bio's Below)

Many of us grew up using STRIDE and data flow diagrams for threat modeling. But, our context has changed now and our applications are highly distributed with architectures like microservices. Moreover, cross-functional business teams are fast becoming the norm.

In light of these changes, we need to rethink our approach to threat modeling and move away from it being a security design activity performed once.

Threat modeling is now an integral part of ongoing risk assessments throughout the DevSecOps delivery and feedback lifecycle. This means we need to accommodate diverse perspectives into threat modeling (both technical and non-technical).

Join our panel discussion as we discuss how threat modeling is evolving into a multi-stakeholder activity that suggests mitigations on an ongoing basis to drive down risk for critical business assets.

Expected Learning:

• The limitations of using STRIDE and Data Flow Diagrams (DFDs) in threat modeling.
• The emergence of an integrated knowledge base which incorporates diverse perspectives on threats and mitigations (including business risk and compliance).
• Next steps in evolving your threat modeling practice.

Can’t attend? Sign up anyway and we will send you a copy of the recording.

May 26, 2021 11:00 AM in Eastern Time (US and Canada)

Webinar is over, you cannot register now. If you have any questions, please contact Webinar host: Raquel Rodrigues.