Threat Modeling: Tools, DevOps, and Flaw Patterns
An open discussion about your Threat Modeling experience.
I actually have some questions:
- What should tools be like that help DevOps Teams to perform continuous threat modeling?
- Is there a learning curve for teams? Shall one start with the most advanced tool?
- Beyonde STRIDE: Which are the controls we really need to look at? What are the Flaw patterns?
Room:  PROGRESSIVE IT