Skip to main content

Integrate Threat Modeling Into Your DevOps Pipelines

Historically, threat modeling consisted of manual threat analysis and a proposed list of prioritized mitigations. In DevOps, however, our teams emphasize rapid delivery and automation.  We find ourselves at a crossroads: do we decelerate to threat model or speed up and risk releasing code with vulnerabilities?