Overview

ThreatModeler™ is the world’s first enterprise threat modeling solution. The easy to use, architecturally based interface allows both security and non-security experts to build detailed threat models in minutes. Threat models can be built for application, on-premises and cloud-based deployment environments, IoT and mobile devices, and industrial control and cyber-physical systems.

The unique capacity of ThreatModeler™ to allow nesting of threat models as an architectural component within another threat model is a significant advantage. Through nesting, users can understand threats from application interactions, shared components, and 3rd party elements – including the downstream impact and upstream threats inherent in today’s highly interconnected cyber ecosystem.

With ThreatModeler™, architects can white board new DevOps projects directly on the diagramming canvas – automatically creating a new threat model with an enumeration of the detailed security requirements that will mitigate potential threats – prior to the DevOps team’s initial sprint. Furthermore, ThreatModeler™ automatically integrates with JIRA and other developer tools, creating seamless collaboration with security and DevOps.

Senior managers benefit from the high-level dashboards and organization-wide reporting capabilities of ThreatModeler™ that provide an analysis of the comprehensive attack surface and communicates the organization’s threat posture and risk profile in terms easily conveyed to top executives. CISOs can perform dynamic “what-if” analysis of their entire cyber ecosystem to evaluate the effectiveness of deployed or contemplated compensating controls, objectively establish pro forma ROIs for new security initiatives, and establish or update organization-wide security policy. ThreatModeler™ even provides contextual analysis to help organizations prepare for and stay compliant with GDPR and other regulations.

ThreatModeler™ is utilized by leading Fortune 1000 companies. It empowers security architects, application security directors, chief information officers, and other decision makers to better plan, prepare, and protect themselves from attackers. Organizations utilizing ThreatModeler™ reduce the cost of fixing production vulnerabilities by as much as 80%.