Brook Schoenfield, author, Master Security Architect and Director of Advisory Services for IOActive, will be sharing deep insights to Secure Design, and Security Systems Architecture concerns.
This is the first installment of a 4 part webinar series and will focus on an introduction to Threat Modeling.
"Secure Design Through Threat Modeling"
Many cyber compromises could have been prevented or at least contained, had the systems under attack been designed to resist attack. This is called "secure design". But organizations struggle with the problem due to a general lack of secure design knowledge and experience. Easily compromised designs are released every day for attackers to exploit.
Threat modeling is the technique that security architects employ in order to identify attackable design patterns and their solutions.
In this webinar, Brook provides an introduction to identifying more secure designs by analyzing which attacks are most likely and the defenses that will mitigate the enumerated attack scenarios. That is, secure design through threat modeling.
Answering following questions as the Secure Design and Threat Modeling concepts are explored:
What is secure software?
The secure design problem and what are we trying to achieve?
What is threat modeling and wow does threat modeling help to achieve secure software design?
Where does threat modeling fit with a secure development process?
The presentation will conclude with tips on building a threat modeling program, and a culture of security - conducive to a more effective security posture from the start.