Welcome to our Resources Centre

Threat Modeling Software Features vs Architecture

The Open Threat Model (OTM) standard is a generic and tool agnostic way of describing a threat model in a simple to use and understand format.

Doubling Down on Threat Modeling. When we reflect on 2021, we will see it as a landmark year for the adoption of threat modeling solutions.

Threat modeling as a way of thinking about design flaws - Log4j case - In this article we’d like to explore some lessons learnt regarding how we all can improve collaboration in our SDLC workflows to avoid similar flaws at design time in the future.

The ISA-62443 series, provides detailed technical control system or control requirements (SRs or CRs) associated with the seven foundational requirements (FRs) described in ISA-62443-1-1 including defining the requirements for control system capability security levels, SL C (control system).

The ISA-62443 series, provides detailed technical control system or control requirements (SRs or CRs) associated with the seven foundational requirements (FRs) described in ISA-62443-1-1 including defining the requirements for control system capability security levels, SL C (control system).

As the edge computing architecture continues to rise and enhance data management, this article discusses various cybersecurity-related aspects of edge and how they correspond to industrial plant infrastructure.

This article explains the basics of FedRAMP, impact levels, and security objectives, and how IriusRisk automatically generates steps for compliance.

One of the keys to scaling Threat Modeling across a business is to create a standard library of Threats and Countermeasures. IriusRisk’s security team explains how to manage this process.

We welcome any initiative that brings DevSecOps practices to the forefront, so it is great to see that NIST is truly unifying these efforts.