Scroll to discover
Schedule Live Demo
Skip to content

Case Study: ABN Amro

Implementing secure design with IriusRisk as part of digital transformation to the cloud

Discover how ABN Amro built a self-service threat modeling process for DevOps and scaled secure design across its organisation

ABN Amro reached out to IriusRisk as they embarked on a major digital transformation program - Project Apollo - moving from their private data centers to the cloud - which would affect 500+ teams across the organization. Threat modeling took centre stage in planning conversations as their security engineering team embarked on the ultimate effort to ‘start left’ in security - by implementing a self-service secure design process for developers.

Case study highlights
ABN Amro highlights-01

Download Case Study

Hear direct from our client:

Irfaan Santoe-02"IriusRisk isn’t just our tooling. We see IriusRisk as a co-creator of the successful adoption, rollout, and scaling of threat modeling within ABN Amro, both across the organisation globally, and beyond the security team to DevOps.

Our partnership doesn’t stop there; we look forward to exploring the possibilities of enhanced reporting and integration with the other existing tooling in our value chain. Their dedicated people have a unique mindset to help make their clients successful, and without IriusRisk, our digital transformation to the cloud would not have been efficient. We are now realising our vision to start left with security.”

- Irfaan Santoe, former Global Head of Security Engineering, and Programme Lead

Want to discover more about the Apollo Programme - ABN Amro's Threat Modeling Initiative?

Watch an exclusive online discussion between Irfaan Santoe, Irene Michlin (Threat Modeling Manifesto), and our Head of Customer Success, Jonny Tennyson:

Starting Left: How ABN Amro scaled Security to Development

  • Why threat modeling is the only way to really 'start left'
  • Why ABN Amro chose to automate its threat modeling
  • How to promote the value of threat modeling to peers and stakeholders - AND secure buy-in
  • How to get your developers practicing threat modeling
Watch on demand