Welcome to our Blog

This article outlines some of the key assistance that will aid the building and use of threat models through a champions programme.

Based on our recent commissioned Total Economic Impact™ (TEI) study conducted by Forrester Consulting, this webinar will go into a deep analysis of how a composite organization comprised of interviewees with experience using the IriusRisk Threat Modeling Platform

The National Institute of Standards and Technology (NIST) has recommended threat modeling as the first technique (out of six recommended techniques) for software security.

Hacking and the loss of patient data, let alone the risk of a medical compromise, is a real and growing problem.

The STRIDE Categories are mapped to particular CAPEC threats, which in turn lead you to define your own countermeasures to mitigate each threat.

With patients’ health and potentially even their lives at risk, the medical devices they and their doctors rely upon must be robust, safe, and work perfectly time and again.

62443 4-2 contains specific guidance for various component types. In this exercise a 62443 EDR or NDR component could be selected and secured according to the design.

And how threat modeling can help operationalize vulnerability disclosure and threat intelligence.

As more medical device manufacturers put cybersecurity at the forefront of development, significant healthcare breaches will fall. This is critical because the threat is higher than ever.