Case Studies and Testimonials

IriusRisk isn’t just our tooling. We see IriusRisk as a co-creator of the successful adoption, rollout, and scaling of threat modeling within ABN Amro, both across the organization globally, and beyond the security team to DevOps. This partnership doesn’t stop there; we look forward to exploring the possibilities of enhanced reporting and integration with the other existing tooling in our value chain.

Their dedicated people have a unique mindset to help make their clients successful, and without IriusRisk, our digital transformation to the cloud would not have been efficient. We are now realizing our vision to start left with security.

Irfaan Santoe

Global Head of Security Engineering - ABN Amro

When we released the first OWASP Testing Guide, we introduced the notion of threat modeling as part of the design process for applications. This was in 2003 and back then, threat modeling was still a hard exercise for most to do. What IriusRisk has done is made it iOS-like, in that it is easy to use and doesn't require vast amounts of experience to understand what is needed.

When performed right, a threat model shows you all the ways someone could make your life miserable with regards to the application or architecture being modeled and it allows you to truly think evil() and plan for the worst. It's proactive security and not reactive security that has been the norm.

Daniel Cuthbert

Founding Member of OWASP

The integration between Iriusisk and Jira has been invaluable to our workflow. Speeding up our processes and removing the need to create lengthy documentation. Jira tickets are created seamlessly for any controls which need to be put in place making the process flow smoothly for all teams.

Chris Ramirez

Principal Software Security Engineer , Axway