Welcome to our Blog

From software security to threat modeling to compliance & risk management frameworks (and everything inbetween). We've got it covered.

Featured Posts

Charles Marrow
Head of Center of Excellence - Embedded Device Security
September 3, 2024
Threat modeling for IIoT Devices and Gateways
The ISASecure ICSA certification, supported by the ICSA-500 document, provides a robust framework for ensuring that IIoT components meet high-security standards. IriusRisk now includes both IEC 62443 4-2 and ICSA-500 to support the ICSA certification and standard threat modeling process of IIoT devices and gateways.
Read More

Latest Posts

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Claire Allen-Addy
Head of Product Marketing
December 19, 2023
11 Recommended Threat Modeling Tools
We’re passionate about threat modeling, and lack of budget shouldnt prevent you from learning. Check out these top free tools.
Intro to Threat Modeling
IriusRisk Team
The Threat Modeling Experts
December 15, 2023
Two Heads Are Better Than One
One process complements the other. It's a real case of two heads being better than one. So, what is the crucial difference between risk management and threat modeling?
Risk Management
Threat Modeling
Claire Allen-Addy
Head of Product Marketing
December 13, 2023
Securing software? A little less conversation and a little more action (please).
Elvis was onto something. Actions really do speak louder than words. If your role or your organization is building secure software find out how Elvis can help.
Threat Modeling
IriusRisk Team
The Threat Modeling Experts
December 11, 2023
Product Update: Release 4.23
Automation on the next level with beta access to our v2 API endpoints. Create threat models from your existing diagrams.net diagrams with our OTM endpoint
Product Release
Claire Allen-Addy
Head of Product Marketing
December 8, 2023
What is the CDLC vs. the SDLC?
As we all know, the SDLC primarily focuses on the overall software development process, encompassing planning, design, coding, testing, deployment, maintenance. On the other hand, the CDLC (Cloud Development Lifecycle) addresses the unique challenges and opportunities introduced by cloud computing.
Cloud Security
Threat Modeling
Software Security
Claire Allen-Addy
Head of Product Marketing
December 4, 2023
How do I apply Threat Modeling in my organization?
No two organizations are the same. Even if we take two car manufacturing firms, the likelihood is, there will be nuances, varying processes, different sized teams, and their own culture and attitude towards security.
Intro to Threat Modeling
Methodologies & Frameworks
Threat Modeling
IriusRisk Team
The Threat Modeling Experts
November 16, 2023
Common Vulnerability Scoring System (CVSS) version 4.0. The Key Changes.
The new standard for CVSS v4 has now been released. We are thrilled to have our very own Global Head of Cybersecurity at IriusRisk, Francisco Luis de Andres Perez, mentioned in the Acknowledgements section.
Standards, Compliance and Regulations
IriusRisk Team
The Threat Modeling Experts
November 9, 2023
Product Update: Release 4.22
Maximum canvas for maximum productivity - our updated project navigation gives you more screen for an even better threat modeling experience.
Product Release
Claire Allen-Addy
Head of Product Marketing
November 3, 2023
What is the Threat Modeling Manifesto?
Discover the Threat Modeling Manifesto, a pivotal industry initiative reshaping security practices. Formed by a group of experts, including IriusRisk's CEO and VP of Product.
Intro to Threat Modeling
Methodologies & Frameworks