Welcome to our Blog

From software security to threat modeling to compliance & risk management frameworks (and everything inbetween). We've got it covered.

Featured Posts

Latest Posts

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Charles Marrow
Head of Center of Excellence - Embedded Device Security
November 26, 2024
Elevating Embedded Device Security: The EMB3D™ Threat Modeling Framework
MITRE EMB3D is a comprehensive framework for securing embedded devices in critical infrastructure. Learn how EMB3D can help you identify and mitigate threats to your devices. Now available as a Security Library in IriusRisk.
Threat Modeling
Risk Management
Operational technology
IriusRisk Team
The Threat Modeling Experts
November 21, 2024
Product Release 4.36
To support new users, truthfully zones are now optional, we have a new and improved compliance report, customer can also configure the visibility of Assets at Business Unit level. Read the full list of improvements for release 4.36.
Product Release
Claire Allen-Addy
Head of Product Marketing
November 19, 2024
9 Secure by Design Tools
Achieving robust and secure applications is no easy task, see these 9 potential tools to consider for your Secure by Design strategies.
Threat Modeling
Risk Management
Claire Allen-Addy
Head of Product Marketing
November 15, 2024
History of Threat modeling
Threat modeling provides savings in both remediation, finances and resources. It has evolved over time with differing use cases and implementations. But one thing that remained consistent is its ability to produce secure by design software.
Threat Modeling
Intro to Threat Modeling
IriusRisk Team
The Threat Modeling Experts
November 6, 2024
Understanding CWEs and CVEs: and how they impact your threat models
While CVEs deal with individual vulnerabilities, CWEs provide a broader, future-focused view by focusing on weaknesses that can cause multiple vulnerabilities. But is one option better than the other?
Threat Modeling
Risk Management
Methodologies & Frameworks
IriusRisk Team
The Threat Modeling Experts
October 24, 2024
Product Release 4.34
Latest enhancements include a new beta feature for AWS Cloud. Developers can directly connect to their AWS cloud infrastructure and import it into their IriusRisk projects - automatically, quickly, and securely. Find out more.
Product Release
Claire Allen-Addy
Head of Product Marketing
October 18, 2024
Penetration Testing and Threat Modeling - a unified approach to security
Threat modeling can better define your pen testing efforts. Penetration testing can give your threat model a full feedback loop. Are you effectively implementing both security practices?
Threat Modeling
Software security
Cloud Security
Risk Management
John Taylor
Information Security Leader
October 17, 2024
Driving Your Threat Modeling Program Further
Threat modeling should connect various teams, break down silos and foster a culture of security. Read more for advice on how to drive your program forward.
Intro to Threat Modeling
Threat Modeling
IriusRisk Team
The Threat Modeling Experts
October 1, 2024
Hybrid Threat Modeling: Bridging Manual and Automated Approaches
Hybrid Threat Modeling blends automated tools with manual efforts for a robust, tailored security approach.
Intro to Threat Modeling
Threat Modeling