Jonathan is part of the collective that published the Threat Modeling Manifesto in 2020 and just released Threat Modeling Capabilities in 2024. He is passionate about Application Security and enjoys architecture analysis, code review, threat modeling and debunking security tools. Jonathan holds a bachelor's degree in Software Engineering from ETS Montreal and has 20 years of experience in Information Technology and Security.
English session - Intermediate
Threat Modeling is critical to achieving design goals for system security and data privacy.
This talk presents Threat Modeling Capabilities you can use to implement or reorganize an organization wide practice.
Using a business capability format, we will cover those areas at a high level: Strategy, Education, Creating and Acting on Threat Models, Communications, Measurement and Program Management.