Overview
Explore a practical approach to prioritizing cybersecurity defenses through threat modeling in this 20-minute conference talk from Shmoocon 2020. Learn a simple four-step process to identify and focus on the most relevant threats to your organization. Discover how to assess your organization's assets, understand potential adversaries, match threats to your environment, and take actionable steps to improve defenses. Gain insights from Katie Nickels, a seasoned cybersecurity expert, on implementing threat modeling techniques that can benefit analysts and defenders of all levels. Walk away with a clear understanding of how to apply threat modeling to enhance your organization's security posture and efficiently allocate resources against the most pertinent cyber threats.
Syllabus
Intro
whoami
Research on Threat Modeling
Our Threat Modeling Definition
A Simple Process to Start
Know Your Organization
Know Your Threats
Prioritize and Match Them Up
Make it Actionable
Rinse and Repeat
Takeaways
References
Taught by
0xdade