When we released the first OWASP Testing Guide, we introduced the notion of threat modeling as part of the design process for applications. This was in 2003 and back then, threat modeling was still a hard exercise for most to do. What IriusRisk has done is made it iOS-like, in that it is easy to use and doesn't require vast amounts of experience to understand what is needed.
When performed right, a threat model shows you all the ways someone could make your life miserable with regards to the application or architecture being modeled and it allows you to truly think evil() and plan for the worst. It's proactive security and not reactive security that has been the norm.
IriusRisk helps me plan and be prepared.
Daniel Cuthbert Founding Member of OWASP
.png?width=508&height=124&name=Event_Illustration_508x124_04%20(3).png)
ABN Amro: Secure design for digital transformation to the cloud
Discover how ABN Amro built a self-service threat modeling process for DevOps and scaled secure design across its organisation
See MoreTrusted by Global Organizations
Discover how
IriusRisk can help
your business
Complete the form to schedule a demo with one of our threat modeling specialists - on-hand to answer all of your questions from what threat modeling is, to how to scale.
Explore your current application security plans and assess how threat modeling, or the scalable automation of secure design, will benefit your organisation specifically. We're here to help you on your journey.