Scroll to discover
See a Demo
Skip to content

Welcome to our Resources Centre

Read our latest threat modeling and architectural security news, articles, and thought leadership, and watch some of our most popular talks, tips, and tricks on-demand.

Stay up to date with the latest news

Click here

Threat modeling workflow for AWS Cloudformation architectures using IriusRisk

IaC defined architectures can be a powerful way for developers to shift left and achieve cloud security and compliance in a positive, proactive manner. 

See More

Threat modeling workflow for Terraform defined architectures using IriusRisk

Terraform is an open-source infrastructure as code software tool created by HashiCorp. Terraform enables you to create, maintain and improve infrastructure reliably and predictably on major infrastructure cloud providers (e.g. AWS, GCP, Azure, OpenStack, CloudStack).

See More

IEC/ANSI  62443 Example 4 - OT Communications Protocols

IEC 62443 Example 4 - OT Communications Protocols

See More

Threat Modeling Software Features vs Architecture

Threat Modeling Software Features vs Architecture

See More

Introduction to the Open Threat Model standard

The Open Threat Model (OTM) standard is a generic and tool agnostic way of describing a threat model in a simple to use and understand format.

See More

Doubling Down on Threat Modeling

Doubling Down on Threat Modeling. When we reflect on 2021, we will see it as a landmark year for the adoption of threat modeling solutions.

See More

Threat modeling as a way of thinking about design flaws - Log4j case

Threat modeling as a way of thinking about design flaws - Log4j case - In this article we’d like to explore some lessons learnt regarding how we all can improve collaboration in our SDLC workflows to avoid similar flaws at design time in the future.

See More

IEC/ANSI 62443 Example 2 - Motors, Shaft and Panels

The ISA-62443 series, provides detailed technical control system or control requirements (SRs or CRs) associated with the seven foundational requirements (FRs) described in ISA-62443-1-1 including defining the requirements for control system capability security levels, SL C (control system).

See More

IEC/ANSI 62443 Example 1 - SL-A to SL-T Basic Component

The ISA-62443 series, provides detailed technical control system or control requirements (SRs or CRs) associated with the seven foundational requirements (FRs) described in ISA-62443-1-1 including defining the requirements for control system capability security levels, SL C (control system).

See More

Threat modeling the edge: Building security into industrial control systems

As the edge computing architecture continues to rise and enhance data management, this article discusses various cybersecurity-related aspects of edge and how they correspond to industrial plant infrastructure.

See More

FedRAMP: A simple guide to a strict cloud security standard

This article explains the basics of FedRAMP, impact levels, and security objectives, and how IriusRisk automatically generates steps for compliance.

See More