Reliable threat modeling for operational technology
![](https://cdn.prod.website-files.com/650038f43bd74338d2d25f41/656098243d3431228fe24ae4_Threat%20Modeling%20Tool%20Screenshot%202.webp)
The ATT&CK Matrix for Enterprise is already available in IriusRisk. It provides threats (mapped from techniques and sub-techniques), mitigations, and even data sources and detections.
Industrial Control Systems and their operational technology assets remain a prime target for persistent attacks - particularly those deemed as Critical National Infrastructure (CNI). These critical, high-risk systems have unique security requirements to prevent compromise - but how do you identify these?
See an example on how IriusRisk can be used to quickly and easily determine what the specific countermeasures for a given Security Level should be; and how to move a component from one SL to another and see the corresponding changes to the countermeasures required.