From the course: Advanced Threat Modeling and Risk Assessment in DevSecOps
Join today to access over 25,200 courses taught by industry experts.
Continuous threat modeling
From the course: Advanced Threat Modeling and Risk Assessment in DevSecOps
Continuous threat modeling
- [Presenter] Traditional threat modeling was often a one-time activity, performed at the beginning of a project. However, in today's fast-paced DevSecOps environments, this approach is no longer sufficient. That is why continuous threat modeling is the answer. Let's dive in. What is continuous threat modeling? As I mentioned before, traditional threat modeling often happens once during design. But in a DevSecOps environment, that's not enough. Continuous threat modeling is the practice of revisiting and updating your threat models frequently, and iteratively as the system evolves. It's integrated across the software development lifecycle, from planning to development to monitoring. Now, I would like to share something, one colleague in the field of security set, as hackers are constantly evolving using more intricate infiltration methods, they discover more and more vulnerabilities on application layers. To be honest here, the application layer is counterintuitive to me because my…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.