Explore a practical approach to prioritizing cybersecurity defenses through threat modeling in this 20-minute conference talk from Shmoocon 2020. Learn a simple four-step process to identify and focus on the most relevant threats to your organization. Discover how to assess your organization's assets, understand potential adversaries, match threats to your environment, and take actionable steps to improve defenses. Gain insights from Katie Nickels, a seasoned cybersecurity expert, on implementing threat modeling techniques that can benefit analysts and defenders of all levels. Walk away with a clear understanding of how to apply threat modeling to enhance your organization's security posture and efficiently allocate resources against the most pertinent cyber threats.
Resistance Isn't Futile - A Practical Approach to Prioritizing Defenses with Threat Modeling
Overview
Syllabus
Intro
whoami
Research on Threat Modeling
Our Threat Modeling Definition
A Simple Process to Start
Know Your Organization
Know Your Threats
Prioritize and Match Them Up
Make it Actionable
Rinse and Repeat
Takeaways
References
Taught by
0xdade
Related Courses
-
Threat Modeling Without the Buzzwords - An Overview of What It Means for Your Organization
-
Threat Modeling In and For Your Organization
-
Proactive Defense - Advanced Threat Modeling for Robust Cybersecurity
-
Simplifying Threat Modeling
-
Know the Enemy - How to Make Threat Intelligence Work
-
Adaptive Threat Modeling
