We use cookies to deliver you the best experience on our website. By continuing to use our website, you consent to our cookie usage and revised Privacy Statement.

Filter By:

Type

Topic

Recent Blogs & Podcasts

44 Results for: "Adam Shostack"

 


February 16, 2018 | Threat Intelligence and Modeling
By Adam Shostack, IANS Faculty

 Comprehensive, Structured and Systematic: Engineering for Security

The hardest part of security is going from random discovery of problems as you create new features to a systematic, comprehensive and structured approach to finding problems early. In this webinar, IANS Faculty Adam Shostack identifies ways to bring security engineering to the very earliest parts of product or service cycles, align with agile practices and reap the benefits that come from such efforts: faster, more predictable and more secure launches.

Read More »


January 17, 2018 | Insider Threats
By Adam Shostack, IANS Faculty

 Prevent Data Loss Prior to Employee Job Termination

Preventing newly terminated employees from stealing corporate data prior to their departure is critical but increasingly difficult, especially as more organizations provide mobile and cloud access to sensitive applications. In this Ask-an-Expert written response, IANS Faculty Adam Shostack explains the importance of treating people fairly and having strong strategies for preventing/detecting data exfiltration at all times, not just during layoffs. 

Read More »


August 14, 2017 | AppDev Frameworks
By Adam Shostack, IANS Faculty

 Shostack: Learning From npm's Rough Few Months

The node package manager (npm) is having a bad few months. Organizations need to look at their controls for identification, protection and detection around package management, and if they make a package manager, threat model the heck out of it. 

Read More »


May 4, 2017 | Threat Intelligence and Modeling
By Adam Shostack, IANS Faculty

 Threat Modeling in an Agile Environment

Threat modeling can be seen as a heavy, complex set of tasks that gets cast aside as we move at the speed of Agile, but in reality, it helps make the shift faster. In this report, IANS Faculty Adam Shostack explains why threat modeling is important, addresses concerns about fitting threat modeling practices into an Agile world and highlights some traps to avoid along the way.

Read More »