Welcome to our Blog
From software security to threat modeling to compliance & risk management frameworks (and everything inbetween). We've got it covered.
Featured Posts
Roles & Responsibilities of Threat Modeling
All roads lead to threat modeling, albeit the journey may differ by organization. If you can get contributions from multiple stakeholders, you will boost the success of your threat modeling program.
Read MoreLatest Posts
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
April 27, 2022
IriusRisk appoints Elise Hayes as Strategic Alliance Director for North America
Hayes joins fast-growth startup after partner base quadruples in 2021.
News
April 22, 2022
Product Update: Release 4.3
We are proud to announce the release of IriusRisk 4.3 containing a brand new way to navigate projects, as well as: A new Terraform API endpoint
Concurrent editing of diagrams
New filtering and bulk action for countermeasures
Faster Rules Engine performance
Compliance Report improvements
Plus more…
Product Release
April 6, 2022
IriusRisk Community Edition Hits Four Thousand Users
IriusRisk updates popular free Community edition to add more functionality for an ever growing user base
Community Edition
April 4, 2022
IriusRisk and CVE-2022-22965
IriusRisk update on actions taken for all customer installations
Product Release
March 25, 2022
Product Update: Release 4.2
We are proud to announce the release of IriusRisk 4.2 containing ....
Product Release
March 23, 2022
Open Threat Model Standard under a Creative Commons License
The Open Threat Model Standard will allow greater connectivity and interoperability between threat modeling and other parts of the Software Development Lifecycle (SDLC)
Infrastructure as Code
February 22, 2022
How to create an OTM parser
In this article we are going to create a simple Python script that parses a threat model represented as a Graphviz DOT file, and generates a threat model defined in the Open Threat Model standard.
Infrastructure as Code
February 22, 2022
Threat Modeling Software Features vs Architecture
This blog discusses two approaches to threat modeling: architectural-driven threat modeling and feature-driven threat modeling. It highlights the importance of considering security in the design stage and introduces a new library of functional components to enhance the threat modeling process, allowing developers to focus on specific user story-related threats.
Methodologies & Frameworks
Cloud Security
February 22, 2022
Introduction to the Open Threat Model standard
The Open Threat Model (OTM) standard is a versatile way to describe threat models, fostering connectivity and interoperability within the Software Development Lifecycle and cybersecurity ecosystem. It enables automation, enhances scalability, and aligns with existing design artifacts, improving threat modeling's maturity and application in various contexts.
Infrastructure as Code
Intro to Threat Modeling