Loading…
Saturday April 5, 2025 11:00am - 11:25am EDT
How can we make threat modeling scalable, actionable, and accessible for all stakeholders? Traditional threat modeling methodologies struggle to scale in agile environments. They often result in over-scoped, resource-heavy processes that lack actionable insights and rely on scarce security expertise, limiting adoption in large organizations. This talk introduces Rapid Developer-Driven Threat Modeling (RaD-TM), a lightweight, tool-agnostic approach designed for developers to embed threat modeling into the SDLC without relying on security experts. RaD-TM focuses on targeted assessments of specific functionalities rather than application-wide models, enabling iterative and efficient risk mitigation. Using Risk Templates, which are predefined collections of relevant risks and controls tailored to specific contexts, RaD-TM fosters collaboration among stakeholders to build a scalable threat modeling process. This session will offer real-world examples and step-by-step guidance on integrating RaD-TM into the development workfow.
Speakers
avatar for Aedan Lawrence

Aedan Lawrence

Sr. Security Engineer, SecureFlag
Aedan is a seasoned Senior Security Engineer with a robust background in secure coding, threat modeling, and offensive security. He specializes in designing and delivering Cloud, DevOps, and Threat Modeling training, partnering with clients worldwide to develop tailored solutions... Read More →
Saturday April 5, 2025 11:00am - 11:25am EDT
Track 3, 5 Wayside Rd 5 Wayside Rd, Burlington, MA 01803, USA

Log in to save this to your schedule, view media, leave feedback and see who's attending!

Share Modal

Share this link via

Or copy link